371 matches found
GHSA-W37M-7FHW-FMV9 vulnerabilities
Vulnerabilities for packages: langfuse-fips, jitsucom-jitsu, langfuse...
GHSA-MWV6-3258-Q52C vulnerabilities
Vulnerabilities for packages: langfuse-fips, jitsucom-jitsu, langfuse...
CVE-2025-66414 vulnerabilities
Vulnerabilities for packages: langfuse...
CVE-2025-66400 vulnerabilities
Vulnerabilities for packages: langfuse, keycloak...
GHSA-4FH9-H7WG-Q85M vulnerabilities
Vulnerabilities for packages: langfuse, keycloak...
GHSA-W48Q-CV73-MX4W vulnerabilities
Vulnerabilities for packages: langfuse...
CVE-2025-66400 vulnerabilities
Vulnerabilities for packages: keycloak, drupal, langfuse-fips, langfuse, librechat...
GHSA-4FH9-H7WG-Q85M vulnerabilities
Vulnerabilities for packages: keycloak, drupal, langfuse-fips, langfuse, librechat...
EUVD-2025-26361
A security flaw has been discovered in Langfuse up to 3.88.0. Affected by this vulnerability is the function promptChangeEventSourcing of the file web/src/features/prompts/server/routers/promptRouter.ts of the component Webhook Handler. Performing manipulation results in server-side request...
GHSA-WQCH-XFXH-VRR4 vulnerabilities
Vulnerabilities for packages: langfuse, tileserver-gl, code-server, saf...
GHSA-6465-JGVQ-JHGP vulnerabilities
Vulnerabilities for packages: langfuse...
CVE-2025-13466 vulnerabilities
Vulnerabilities for packages: langfuse, tileserver-gl, code-server, saf...
CVE-2025-65944 vulnerabilities
Vulnerabilities for packages: langfuse...
CVE-2025-65944 vulnerabilities
Vulnerabilities for packages: langfuse...
CVE-2025-13466 vulnerabilities
Vulnerabilities for packages: code-server, saf, opensearch-dashboards, redisinsight, langfuse, kibana, tileserver-gl, opensearch-dashboards-fips, tileserver-gl-fips, librechat...
GHSA-6465-JGVQ-JHGP vulnerabilities
Vulnerabilities for packages: langfuse...
GHSA-WQCH-XFXH-VRR4 vulnerabilities
Vulnerabilities for packages: code-server, saf, opensearch-dashboards, redisinsight, langfuse, kibana, tileserver-gl, opensearch-dashboards-fips, tileserver-gl-fips, librechat...
CVE-2025-65107
Langfuse is an open source large language model engineering platform. In versions from 2.95.0 to before 2.95.12 and from 3.17.0 to before 3.131.0, in SSO provider configurations without an explicit AUTHCHECK setting, a potential account takeover may happen if an authenticated user is made to call...
CVE-2025-65107
Langfuse is an open source large language model engineering platform. In versions from 2.95.0 to before 2.95.12 and from 3.17.0 to before 3.131.0, in SSO provider configurations without an explicit AUTHCHECK setting, a potential account takeover may happen if an authenticated user is made to call...
EUVD-2025-198512
Langfuse is an open source large language model engineering platform. In versions from 2.95.0 to before 2.95.12 and from 3.17.0 to before 3.131.0, in SSO provider configurations without an explicit AUTHCHECK setting, a potential account takeover may happen if an authenticated user is made to call...