CVE-2026-41653

BentoPDF is a client-side PDF toolkit that is self hostable. Prior to version 2.8.3, a cross-site scripting vulnerability was identified in BentoPD. An attacker may be able to execute arbitrary JavaScript in certain circumstances in Markdown to PDF Tool. This issue has been patched in version 2.8...

@bloggrify/bento (>=3.0.0 <=3.0.1), @bloggrify/core (>=3.0.0 <=3.1.2) +22 more potentially affected by CVE-2026-47200 via nuxt (>=4.0.0-rc.0 <=4.4.4)

nuxt NPM version =4.0.0-rc.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =1.0.3, =10.0.2, =1.1.11, =1.0.4, =0.4.5, =0.0.0, =0.0.1, =1.0.0, =1.1.0, =2.0.1 and more Source cves: CVE-2026-47200 Source advisory: OSV:GHSA-HG3F-28RG-4JXJ...

PYSEC-2026-189

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, src/bentoml/internal/container/frontend/dockerfile/templates/basev2.j2 interpolates docker.baseimage raw with no escaping, newline filtering, or validation. A malicious...

PYSEC-2026-190

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs.name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentom...

CVE-2026-44345 BentoML: Dockerfile command injection via docker.base_image

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, src/bentoml/internal/container/frontend/dockerfile/templates/basev2.j2 interpolates docker.baseimage raw with no escaping, newline filtering, or validation. A malicious...

EUVD-2026-32609

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs.name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentom...

PT-2026-45980

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs.name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentom...

CVE-2026-40610 BentoML has Information Disclosure in `bentoml build` via symlink traversal in the build context

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. In versions 1.4.38 and prior, the build packaging workflow follows attacker-controlled symlinks inside the build context and copies the referenced file contents into the generated Bento...

BentoML 后置链接漏洞

BentoML is an open-source model service library developed by BentoML. It is used to build high-performance and scalable artificial intelligence applications using Python. Versions of BentoML prior to 1.4.38 contained a post-link vulnerability. This vulnerability stemmed from the fact that the bui...

CVE-2026-33813 vulnerabilities

Vulnerabilities for packages: seaweedfs, seaweedfs-fips, seaweedfs-rocksdb-fips, kubescape-server-fips, bento, pdfcpu, rclone-fips, kubescape, gitea-fips, bento-fips, gitea, mattermost-fips, mattermost, seaweedfs-rocksdb, kubescape-server, seaweedfs-operator, ollama, seaweedfs-operator-fips,...

PT-2026-39663

Name of the Vulnerable Software and Affected Versions BentoML versions prior to 1.4.39 Description BentoML is a Python library used for building online serving systems optimized for AI applications and model inference. The issue occurs because the template src/bentoml/...

CVE-2026-41602 vulnerabilities

Vulnerabilities for packages: seaweedfs, seaweedfs-fips, peerdb-flow, tempo-fips, vault-fips, nri-cassandra-fips, datadog-agent-fips, grafana-fips, jitsucom-bulker, apm-server, beats-fips, seaweedfs-rocksdb-fips, agentbeat-fips, agentbeat, falcosidekick-fips, bento, grafana-alloy, grafana,...

GHSA-WF45-Q9CH-Q8GH vulnerabilities

Vulnerabilities for packages: seaweedfs, seaweedfs-fips, peerdb-flow, tempo-fips, vault-fips, nri-cassandra-fips, datadog-agent-fips, grafana-fips, jitsucom-bulker, apm-server, beats-fips, seaweedfs-rocksdb-fips, agentbeat-fips, agentbeat, falcosidekick-fips, bento, grafana-alloy, grafana,...

CVE-2026-41653 BentoPDF: Stored XSS via Markdown Editor Leading to Persistent File Exfiltration

BentoPDF is a client-side PDF toolkit that is self hostable. Prior to version 2.8.3, a cross-site scripting vulnerability was identified in BentoPD. An attacker may be able to execute arbitrary JavaScript in certain circumstances in Markdown to PDF Tool. This issue has been patched in version 2.8...

GHSA-MCFX-4VC6-QGXV BentoML has Information Disclosure in `bentoml build` via symlink traversal in the build context

Summary BentoML's bentoml build packaging workflow follows attacker-controlled symlinks inside the build context and copies the referenced file contents into the generated Bento artifact. If a victim builds an untrusted repository or other attacker-supplied build context, the attacker can place a...

CVE-2026-41602 vulnerabilities

Vulnerabilities for packages: aws-otel-collector, loki, temporal-server, temporal, grafana-alloy, nri-kafka, seaweedfs, dapr, falcosidekick, opentelemetry-collector, grafana, bento, jaeger, tempo, jitsucom-bulker, amazon-cloudwatch-agent, minio, telegraf, datadog-agent, nri-jmx,...

GHSA-WF45-Q9CH-Q8GH vulnerabilities

Vulnerabilities for packages: aws-otel-collector, loki, temporal-server, temporal, grafana-alloy, nri-kafka, seaweedfs, dapr, falcosidekick, opentelemetry-collector, grafana, bento, jaeger, tempo, jitsucom-bulker, amazon-cloudwatch-agent, minio, telegraf, datadog-agent, nri-jmx,...

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: rabbitmq-messaging-topology-operator, wgcf, redpanda, bank-vaults, nri-mssql, mcp-grafana, eksctl, flannel, opentelemetry-collector, step, cri-tools, github-mcp-server, knative-client, malcontent, cert-manager-csi-driver, kind, helm-set-status, ip-masq-agent,...

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: rabbitmq-messaging-topology-operator, redpanda, bank-vaults, kubernetes-csi-driver-nfs, ko, opentelemetry-operator, wal-g, temporal, bom, dkron, dex, mcp-grafana, eksctl, flannel, grafana-mimir, kubernetes-csi-node-driver-registrar, step, cri-tools,...

GHSA-HFVC-G4FC-PQHX vulnerabilities

Vulnerabilities for packages: rabbitmq-messaging-topology-operator, steampipe, guac, sops, terraform-provider-grafana, azure-workload-identity-webhook, bank-vaults, loki, opentelemetry-operator, cert-manager-webhook-pdns, containerd, temporal, vcluster, dkron, cluster-api-gcp-controller,...