26517 matches found
01os (>=0.0.5 <=0.0.13), 3m (>=0.1.0 <=0.1.3) +2548 more potentially affected by CVE-2026-24688 via pypdf (>=3.10.0 <=6.6.0)
pypdf PYPI version =3.10.0, =0.0.5, =0.1.0, =0.0.1, =0.2.0, =0.4.0, =0.3.0, =0.3.0, =0.1.1, =0.1.0, =0.0.2, =0.2.0, =1.2.27, =3.0.145 and more Source cves: CVE-2026-24688 Source advisory: OSV:GHSA-2Q4J-M29V-HQ73...
@saltcorn/cli (>=1.1.1 <=1.5.0-beta.18), @saltcorn/mobile-builder (>=1.1.1 <=1.5.0-beta.18) potentially affected by unknown CVE via @saltcorn/server (>=1.1.1 <=1.5.0-beta.18)
@saltcorn/server NPM version =1.1.1, =1.1.1, =1.1.1, =1.5.0-beta.18 Source cves: unknown CVE Source advisory: OSV:GHSA-CR3W-CW5W-H3FJ...
@saltcorn/cli (>=1.1.1 <=1.4.1-beta.3), @saltcorn/mobile-builder (>=1.1.1 <=1.4.1-beta.3) potentially affected by unknown CVE via @saltcorn/server (>=1.1.1 <=1.4.1)
@saltcorn/server NPM version =1.1.1, =1.1.1, =1.1.1, =1.4.1-beta.3 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNSERVER-15126139...
@saltcorn/admin-models (>=1.5.0-beta.0 <=1.5.0-beta.18), @saltcorn/base-plugin (>=1.5.0-beta.0 <=1.5.0-beta.18) +5 more potentially affected by unknown CVE via @saltcorn/data (>=1.5.0-beta.0 <=1.5.0-beta.18)
@saltcorn/data NPM version =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.18 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNDATA-15126137...
@saltcorn/cli (>=1.5.0-beta.0 <=1.5.0-beta.18), @saltcorn/mobile-builder (>=1.5.0-beta.0 <=1.5.0-beta.18) potentially affected by unknown CVE via @saltcorn/server (>=1.5.0-beta.0 <=1.5.0-beta.18)
@saltcorn/server NPM version =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.18 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNSERVER-15126139...
@saltcorn/admin-models (>=1.1.1 <=1.4.1-beta.3), @saltcorn/base-plugin (>=1.1.1 <=1.4.1-beta.3) +5 more potentially affected by unknown CVE via @saltcorn/data (>=1.1.1 <=1.4.1)
@saltcorn/data NPM version =1.1.1, =1.1.1, =1.1.1, =1.1.1, =1.1.1, =1.1.1, =1.1.1, =1.1.1, =1.4.1-beta.3 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNDATA-15126137...
@saltcorn/cli (>=1.5.0-beta.0 <=1.5.0-beta.18), @saltcorn/mobile-builder (>=1.5.0-beta.0 <=1.5.0-beta.18) +1 more potentially affected by unknown CVE via @saltcorn/admin-models (>=1.5.0-beta.0 <=1.5.0-beta.18)
@saltcorn/admin-models NPM version =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.0, =1.5.0-beta.18 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNADMINMODELS-15126138...
@saltcorn/cli (>=1.1.1 <=1.4.1-beta.3), @saltcorn/mobile-builder (>=1.1.1 <=1.4.1-beta.3) +1 more potentially affected by unknown CVE via @saltcorn/admin-models (>=1.1.1 <=1.4.1)
@saltcorn/admin-models NPM version =1.1.1, =1.1.1, =1.1.1, =1.1.1, =1.4.1-beta.3 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNADMINMODELS-15126138...
10xscale-agentflow-cli (=0.1.5), admin-api-lib (>=3.2.0 <=3.4.0) +440 more potentially affected by CVE-2026-24486 via python-multipart (>=0.0.10 <=0.0.21)
python-multipart PYPI version =0.0.10, =3.2.0, =0.8.2.4, =0.1.0, =1.0.202504142220, =0.1.0, =0.4.0, =0.4.0, =0.1.0, =0.4.0, =1.6.21, =0.1.1, =0.1.0, =0.1.13 and more Source cves: CVE-2026-24486 Source advisory: OSV:GHSA-WP53-J4WJ-2CFG...
10xscale-agentflow-cli (=0.1.5), admin-api-lib (>=3.2.0 <=3.4.0) +440 more potentially affected by CVE-2026-24486 via python-multipart (>=0.0.10 <=0.0.21)
python-multipart PYPI version =0.0.10, =3.2.0, =0.8.2.4, =0.1.0, =1.0.202504142220, =0.1.0, =0.4.0, =0.4.0, =0.1.0, =0.4.0, =1.6.21, =0.1.1, =0.1.0, =0.1.13 and more Source cves: CVE-2026-24486 Source advisory: SNYK:PYTHON-PYTHONMULTIPART-15117506...
dydx-trading-sdk (>=0.1.1 <=0.1.5), locast (>=0.1.0 <=0.1.9) +1 more potentially affected by unknown CVE via dydx-v4-client (=1.1.6)
dydx-v4-client PYPI version =1.1.6 is affected by a known vulnerability. The following packages have a transitive dependency on dydx-v4-client and may be impacted: - dydx-trading-sdk =0.1.1, =0.1.0, =0.1.1, =1.0.7 Source cves: unknown CVE Source advisory: SNYK:PYTHON-DYDXV4CLIENT-15244902...
@bcswaper/apis (>=1.0.0 <=1.0.138), @bcswaper/engine (>=1.0.0 <=1.0.60) +5 more potentially affected by unknown CVE via @dydxprotocol/v4-client-js (>=1.0.17 <=1.22.0)
@dydxprotocol/v4-client-js NPM version =1.0.17, =1.0.0, =1.0.0, =1.0.0, =3.0.3, =1.0.5, =0.2.1, =0.2.6 Source cves: unknown CVE Source advisory: SNYK:JS-DYDXPROTOCOLV4CLIENTJS-15244901...
aiogithubapi (=23.11.0), authsignal (=2.0.1) +17 more potentially affected by CVE-2026-24408 via sigstore (>=2.0.0rc3 <=3.6.7)
sigstore PYPI version =2.0.0rc3, =2026.5.21.dev103715, =1.50.0, =2.4.0, =3.3.0 - mcp-audit-scanner =0.1.0 - projectair =1.0.1 - pylock-attestations =0.0.1a2 and more Source cves: CVE-2026-24408 Source advisory: OSV:GHSA-HM8F-75XX-W2VR...
africa.absa:inception-test (>=1.0.0 <=1.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess (>=0.1.0 <=0.2.0) +7574 more potentially affected by CVE-2026-24400 via org.assertj:assertj-core (>=1.4.0 <=3.27.6)
org.assertj:assertj-core MAVEN version =1.4.0, =1.0.0, =0.1.0, =0.1.0, =0.0.62, =0.7.0, =0.0.10, =0.0.6, =0.8.38, =20.3.3, =20.3.3, =20.3.3, =20.3.3, =20.3.3, =20.3.3, =26.3.2 and more Source cves: CVE-2026-24400 Source advisory: SNYK:JAVA-ORGASSERTJ-15102413...
africa.absa:inception-test (>=1.0.0 <=1.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess (>=0.1.0 <=0.2.0) +7574 more potentially affected by CVE-2026-24400 via org.assertj:assertj-core (>=1.4.0 <=3.27.6)
org.assertj:assertj-core MAVEN version =1.4.0, =1.0.0, =0.1.0, =0.1.0, =0.0.62, =0.7.0, =0.0.10, =0.0.6, =0.8.38, =20.3.3, =20.3.3, =20.3.3, =20.3.3, =20.3.3, =20.3.3, =26.3.2 and more Source cves: CVE-2026-24400 Source advisory: OSV:GHSA-RQFH-9R24-8C9R...
ai.pipestream:connector-admin-service (=0.1.18), ai.pipestream:pipestream-engine (=0.0.6) +22 more potentially affected by CVE-2025-14969 via org.hibernate.reactive:hibernate-reactive-core (>=3.0.0.Final <=3.1.10.Final)
org.hibernate.reactive:hibernate-reactive-core MAVEN version =3.0.0.Final, =0.1.21, =3.2.2.Final, =3.2.2.Final, =3.2.2.Final, =3.24.0, =3.24.0, =3.24.0, =3.24.0, =3.24.0, =3.24.0, =3.30.8 and more Source cves: CVE-2025-14969 Source advisory: SNYK:JAVA-ORGHIBERNATERE...
io.quarkiverse.flags:quarkus-flags-hibernate-reactive (>=1.0.0.Beta7 <=1.0.0.CR1), io.quarkiverse.flags:quarkus-flags-hibernate-reactive-deployment (>=1.0.0.Beta7 <=1.0.0.CR1) +13 more potentially affected by CVE-2025-14969 via org.hibernate.reactive:hibernate-reactive-core (=3.2.11.Final)
org.hibernate.reactive:hibernate-reactive-core MAVEN version =3.2.11.Final is affected by a known vulnerability. The following packages have a transitive dependency on org.hibernate.reactive:hibernate-reactive-core and may be impacted: - io.quarkiverse.flags:quarkus-flags-hibernate-reactive...
ai.pipestream:connector-admin-service (=0.1.18), ai.pipestream:pipestream-engine (=0.0.6) +41 more potentially affected by CVE-2025-14969 via org.hibernate.reactive:hibernate-reactive-core (>=1.0.0.Alpha6 <=4.1.6.Final)
org.hibernate.reactive:hibernate-reactive-core MAVEN version =1.0.0.Alpha6, =0.1.7, =0.0.10, =0.0.1, =1.0.0, =2.0.0, =0.4.3, =0.4.3, =0.0.1, =2.2.0.Alpha2, =3.6.0.Beta1 and more Source cves: CVE-2025-14969 Source advisory: OSV:GHSA-FRPP-8PWQ-HJRX...
ch.iterial.keycloak.plugins:keycloak-directus-plugin (>=0.1.0 <=0.7.0), com.charlyghislain.keycloak:keycloak-importexport (>=21.0.0 <=23.0.1) +155 more potentially affected by CVE-2026-1190 via org.keycloak:keycloak-services (>=1.0-alpha-1 <=26.5.2)
org.keycloak:keycloak-services MAVEN version =1.0-alpha-1, =0.1.0, =21.0.0, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.2.0, =1.3.0 and more Source cves: CVE-2026-1190 Source advisory: OSV:GHSA-63V5-26VQ-M4VMhttps://vulners.com/osv/OSV:GHSA-63V5-26VQ-M4...
@conglomerate/weaver (>=2.1.1 <=2.6.1), @derivative/derive (>=0.1.0 <=0.1.1) +10 more potentially affected by CVE-2026-24131 via pnpm (>=0.21.0 <=10.18.3)
pnpm NPM version =0.21.0, =2.1.1, =0.1.0, =0.1.0, =3.7.16, =2.3.0, =0.1.0, =0.2.7, =1.0.4, =1.0.7 Source cves: CVE-2026-24131 Source advisory: OSV:GHSA-V253-RJ99-JWPQ...
ai-dynamo (=0.1.0), bento2seldon (>=0.1.0 <=0.4.0) +16 more potentially affected by CVE-2026-24123 via bentoml (>=0.10.1 <=1.4.3)
bentoml PYPI version =0.10.1, =0.1.0, =0.1.0, =0.0.10, =0.0.5, =0.3.12, =0.0.1, =1.0.3, =0.0.10, =0.0.1, =0.0.1, =0.0.13 and more Source cves: CVE-2026-24123 Source advisory: OSV:GHSA-6R62-W2Q3-48HF...
ai-dynamo (=0.1.0), bentoctl (=0.2.3) +6 more potentially affected by CVE-2026-24123 via bentoml (>=1.0.0a7 <=1.4.3)
bentoml PYPI version =1.0.0a7, =1.0.1, =0.3.12, =0.0.1, =1.0.3, =0.0.10, =0.6.20 - raptor-labsdk =0.3.2 Source cves: CVE-2026-24123 Source advisory: SNYK:PYTHON-BENTOML-15123972...
@kcconfigs/commitlint (>=0.1.0-beta.2 <=0.2.0), @pnpm/cache.commands (>=1000.0.52 <=1000.0.54) +35 more potentially affected by CVE-2026-23888 via @pnpm/fetching.binary-fetcher (>=1005.0.0 <=1005.0.1)
@pnpm/fetching.binary-fetcher NPM version =1005.0.0, =0.1.0-beta.2, =1000.0.52, =1001.2.17, =1001.1.13, =1016.0.0, =1002.2.21, =1003.0.24, =1002.0.3, =1000.0.52, =1001.0.16, =1001.1.10, =1002.1.28, =1000.3.8, =1002.0.23, =1000.1.51, =1000.1.53 and more Source cves: CVE-2026-23888 Source advisory:...
@conglomerate/weaver (>=2.1.1 <=2.6.1), @derivative/derive (>=0.1.0 <=0.1.1) +10 more potentially affected by CVE-2026-23888 via pnpm (>=0.21.0 <=10.18.3)
pnpm NPM version =0.21.0, =2.1.1, =0.1.0, =0.1.0, =3.7.16, =2.3.0, =0.1.0, =0.2.7, =1.0.4, =1.0.7 Source cves: CVE-2026-23888 Source advisory: OSV:GHSA-6PFH-P556-V868...
@conglomerate/weaver (>=2.1.1 <=2.6.1), @derivative/derive (>=0.1.0 <=0.1.1) +10 more potentially affected by CVE-2026-23889 via pnpm (>=0.21.0 <=10.18.3)
pnpm NPM version =0.21.0, =2.1.1, =0.1.0, =0.1.0, =3.7.16, =2.3.0, =0.1.0, =0.2.7, =1.0.4, =1.0.7 Source cves: CVE-2026-23889 Source advisory: OSV:GHSA-6X96-7VC8-CM3P...
@conglomerate/weaver (>=2.1.1 <=2.6.1), @derivative/derive (>=0.1.0 <=0.1.1) +10 more potentially affected by CVE-2026-23890 via pnpm (>=0.21.0 <=10.18.3)
pnpm NPM version =0.21.0, =2.1.1, =0.1.0, =0.1.0, =3.7.16, =2.3.0, =0.1.0, =0.2.7, =1.0.4, =1.0.7 Source cves: CVE-2026-23890 Source advisory: OSV:GHSA-XPQM-WM3M-F34H...
@conglomerate/weaver (>=2.1.1 <=2.6.1), @derivative/derive (>=0.1.0 <=0.1.1) +10 more potentially affected by CVE-2026-24056 via pnpm (>=0.21.0 <=10.18.3)
pnpm NPM version =0.21.0, =2.1.1, =0.1.0, =0.1.0, =3.7.16, =2.3.0, =0.1.0, =0.2.7, =1.0.4, =1.0.7 Source cves: CVE-2026-24056 Source advisory: OSV:GHSA-M733-5W8F-5GGW...
@4399ywkf/router (>=0.0.1 <=0.0.4), @aws/nx-plugin (>=0.44.0 <=0.59.0) +122 more potentially affected by CVE-2025-55184 +1 more via @modern-js/utils (>=2.65.2 <=2.70.4)
@modern-js/utils NPM version =2.65.2, =0.0.1, =0.44.0, =2.23.0, =0.3.53, =0.0.0-beta.1, =1.0.1, =0.1.0-next.717, =2.6.0, =2.70.4 - @modern-js/babel-preset-app =2.6.0 - @modern-js/babel-preset-base =2.6.0 and more Source cves: CVE-2025-55184, CVE-2026-23864 Source advisory:...
@cedarjs/api-server (>=1.0.0-canary.12863 <=3.0.0-canary.13332), @cedarjs/cli (>=1.0.0-canary.12863 <=3.0.0-canary.13332) +10 more potentially affected by CVE-2025-55184 +1 more via react-server-dom-webpack (>=19.2.1 <=19.2.3)
react-server-dom-webpack NPM version =19.2.1, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863, =1.0.0-canary.12863,...
@amazeelabs/bridge-waku (>=1.1.0 <=2.0.1), @amazeelabs/executors (>=3.0.0 <=3.1.14) +50 more potentially affected by CVE-2025-55184 +1 more via react-server-dom-webpack (>=19.0.0-canary-36e62c603-20240418 <=19.0.1)
react-server-dom-webpack NPM version =19.0.0-canary-36e62c603-20240418, =1.1.0, =3.0.0, =1.1.0, =1.1.0, =1.0.0-canary.12245, =0.9.1-next.19, =1.0.0-canary.12245, =0.9.1-next.19, =1.0.0-canary.12245, =1.0.0-canary.12245, =1.0.0-canary.12245, =0.9.1-next.19, =1.0.0-canary.12245, =1.0.0-canary.12245...
org.webjars.npm:degenerator (=4.0.4), org.webjars.npm:pac-resolver (=6.0.2) +1 more potentially affected by CVE-2026-22709 via org.webjars.npm:vm2 (=3.9.19)
org.webjars.npm:vm2 MAVEN version =3.9.19 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:vm2 and may be impacted: - org.webjars.npm:degenerator =4.0.4 - org.webjars.npm:pac-resolver =6.0.2 - org.webjars.npm:rocket.chatapps-engine =1.35...
@aiconnect/codelets-runner (>=0.1.0 <=0.2.0), @node-wot/cli (=0.9.2) +12 more potentially affected by CVE-2026-22709 via vm2 (>=3.0.0 <=3.10.1)
vm2 NPM version =3.0.0, =0.1.0, =0.1.64, =0.1.61, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.68.8 Source cves: CVE-2026-22709 Source advisory: SNYK:JS-VM2-15116160...
nearai-cloud-verifier (=0.0.1-alpha.1) potentially affected by CVE-2026-22696 via @phala/dcap-qvl-node (=0.3.3)
@phala/dcap-qvl-node NPM version =0.3.3 is affected by a known vulnerability. The following packages have a transitive dependency on @phala/dcap-qvl-node and may be impacted: - nearai-cloud-verifier =0.0.1-alpha.1 Source cves: CVE-2026-22696 Source advisory: OSV:GHSA-796P-J2GH-9M2Q...
@1upmonster/duel (>=0.1.0 <=0.1.8), @flash_trade/magic-trade-client (>=0.1.0 <=1.0.50) +5 more potentially affected by CVE-2026-22696 via @phala/dcap-qvl-web (>=0.2.7 <=0.3.3)
@phala/dcap-qvl-web NPM version =0.2.7, =0.1.0, =0.1.0, =0.3.6, =0.2.9, =0.1.0, =0.4.1 - magic-trade-client =0.2.0 - nearai-cloud-verifier =0.0.1-alpha.1 Source cves: CVE-2026-22696 Source advisory: OSV:GHSA-796P-J2GH-9M2Q...
@0x57/pierre (>=0.0.3 <=0.0.16), @0xshogun/sdk (>=1.1.44 <=1.1.52) +380 more potentially affected by CVE-2025-50537 via eslint (>=9.0.0-rc.0 <=9.25.1)
eslint NPM version =9.0.0-rc.0, =0.0.3, =1.1.44, =1.1.14, =0.0.1-alpha.3, =2.6.0, =2.2.9, =0.0.2, =0.0.0-dev-20250424035410, =1.0.68, =0.0.4, =0.0.66, =0.0.3, =1.0.0, =1.0.0, =1.0.2 and more Source cves: CVE-2025-50537 Source advisory: SNYK:JS-ESLINT-15102420...
libcrux-kem (>=0.0.2 <=0.0.2-beta.3), libcrux-psq (=0.0.2-beta.3) potentially affected by unknown CVE via libcrux-ecdh (>=0.0.2-beta.3 <=0.0.2)
libcrux-ecdh CARGO version =0.0.2-beta.3, =0.0.2, =0.0.2-beta.3 - libcrux-psq =0.0.2-beta.3 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0023...
a2a-sdk (=0.2.8), a3t (>=0.0.0 <=0.0.1) +398 more potentially affected by CVE-2026-0994 via protobuf (>=6.30.1 <=6.33.4)
protobuf PYPI version =6.30.1, =0.0.0, =1.0.1, =0.1.3, =2025.12.2.2, =0.1.0, =0.4.0, =0.0.1, =0.1.17, =1.0.0, =1.0.29, =25.6.0b2, =0.1.0, =0.3.0, =0.9.1 and more Source cves: CVE-2026-0994 Source advisory: SNYK:PYTHON-PROTOBUF-15090738...
a2a-sdk (>=0.2.9 <=0.3.0), a2anet (>=0.0.5 <=0.2.0) +496 more potentially affected by CVE-2026-0994 via protobuf (>=5.26.0 <=5.29.5)
protobuf PYPI version =5.26.0, =0.2.9, =0.0.5, =0.4.0, =1.0.0, =0.1.0, =0.87.2.dev9, =0.82.3, =0.1.0.dev19, =1.3.0, =0.1.0, =0.0.1, =2.47.9, =2.47.11 - aip-agents-binary =0.0.0b2 and more Source cves: CVE-2026-0994 Source advisory: SNYK:PYTHON-PROTOBUF-15090738...
a2a-sdk (=0.2.8), a3t (>=0.0.0 <=0.0.1) +398 more potentially affected by CVE-2026-0994 via protobuf (>=6.30.1 <=6.33.4)
protobuf PYPI version =6.30.1, =0.0.0, =1.0.1, =0.1.3, =2025.12.2.2, =0.1.0, =0.4.0, =0.0.1, =0.1.17, =1.0.0, =1.0.29, =25.6.0b2, =0.1.0, =0.3.0, =0.9.1 and more Source cves: CVE-2026-0994 Source advisory: OSV:GHSA-7GCM-G887-7QV7...
01os (=0.0.14), 0x-web3 (=5.0.0a5) +7339 more potentially affected by CVE-2026-0994 via protobuf (>=2.6.0 <=5.29.5)
protobuf PYPI version =2.6.0, =0.1.0, =0.1.0, =0.2.9, =0.0.5, =0.1.0, =0.1.0, =0.0.1, =0.1.2, =0.1.6, =0.2.0a0, =1.0.2, =2.3.5rc1 - abi-maker =0.1.0 and more Source cves: CVE-2026-0994 Source advisory: OSV:GHSA-7GCM-G887-7QV7...
africa.absa:inception-test (>=1.0.0 <=1.2.0), ai.dstack:server-base-local (>=0.0.12 <=0.1.15) +5233 more potentially affected by CVE-2026-0603 via org.hibernate:hibernate-core (>=5.2.8.Final <=5.6.14.Final)
org.hibernate:hibernate-core MAVEN version =5.2.8.Final, =1.0.0, =0.0.12, =0.5.0, =0.5.0, =0.1.0, =0.1.3-20210127.1838-76ab4fc, =0.1.3-20210127.1838-76ab4fc, =0.1.0, =2023.06.07.114626-93b9d6f, =0.1.0, =0.1.4-20220614.0152-5ae0eef, =1.1.0, =0.7, =0.9 and more Source cves: CVE-2026-0603 Source...
openwebui-token-tracking (=0.1.7) potentially affected by CVE-2026-0765 via open-webui (=0.6.0)
open-webui PYPI version =0.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on open-webui and may be impacted: - openwebui-token-tracking =0.1.7 Source cves: CVE-2026-0765 Source advisory: SNYK:PYTHON-OPENWEBUI-15092093...
dzbanek-langflow-base (>=0.6.0 <=0.6.1), langflow-base (>=0.7.0 <=0.8.0rc2) +5 more potentially affected by CVE-2026-0768 via lfx (>=0.1.13 <=1.11.0.dev4)
lfx PYPI version =0.1.13, =0.6.0, =0.7.0, =0.1.1, =0.1.0, =0.1.1, =0.1.0, =0.1.1rc0 Source cves: CVE-2026-0768 Source advisory: SNYK:PYTHON-LFX-15091578...
openwebui-token-tracking (=0.1.7) potentially affected by CVE-2026-0766 via open-webui (=0.6.0)
open-webui PYPI version =0.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on open-webui and may be impacted: - openwebui-token-tracking =0.1.7 Source cves: CVE-2026-0766 Source advisory: SNYK:PYTHON-OPENWEBUI-15091593...
dzbanek-langflow-base (>=0.6.0 <=0.6.1), langflow-base (>=0.7.0 <=0.8.0rc2) +5 more potentially affected by CVE-2026-0771 via lfx (>=0.1.13 <=1.11.0.dev4)
lfx PYPI version =0.1.13, =0.6.0, =0.7.0, =0.1.1, =0.1.0, =0.1.1, =0.1.0, =0.1.1rc0 Source cves: CVE-2026-0771 Source advisory: SNYK:PYTHON-LFX-15091580...
langflow-nightly (=1.8.0.dev24) potentially affected by CVE-2026-0772 via langflow-base (=0.7.2)
langflow-base PYPI version =0.7.2 is affected by a known vulnerability. The following packages have a transitive dependency on langflow-base and may be impacted: - langflow-nightly =1.8.0.dev24 Source cves: CVE-2026-0772 Source advisory: SNYK:PYTHON-LANGFLOWBASE-15091577...
dzbanek-langflow-base (>=0.6.0 <=0.6.1), langflow-base (>=0.7.0 <=0.8.0rc2) +5 more potentially affected by CVE-2026-0769 via lfx (>=0.1.13 <=1.11.0.dev4)
lfx PYPI version =0.1.13, =0.6.0, =0.7.0, =0.1.1, =0.1.0, =0.1.1, =0.1.0, =0.1.1rc0 Source cves: CVE-2026-0769 Source advisory: SNYK:PYTHON-LFX-15091581...
ai-safety-engine (=0.1.0) potentially affected by CVE-2026-0773 via upsonic (=0.60.0a1754435135)
upsonic PYPI version =0.60.0a1754435135 is affected by a known vulnerability. The following packages have a transitive dependency on upsonic and may be impacted: - ai-safety-engine =0.1.0 Source cves: CVE-2026-0773 Source advisory: SNYK:PYTHON-UPSONIC-15091585...
dzbanek-langflow-base (>=0.6.0 <=0.6.1), langflow-base (>=0.7.0 <=0.8.0rc2) +1 more potentially affected by CVE-2026-0770 via lfx (>=0.1.13 <=0.3.4)
lfx PYPI version =0.1.13, =0.6.0, =0.7.0, =0.8.0rc2 - langflow-nightly =1.8.0.dev24 Source cves: CVE-2026-0770 Source advisory: SNYK:PYTHON-LFX-15091579...
orval (>=8.0.0 <=8.0.2) potentially affected by CVE-2026-24132 via @orval/mock (>=8.0.0-rc.0 <=8.0.2)
@orval/mock NPM version =8.0.0-rc.0, =8.0.0, =8.0.2 Source cves: CVE-2026-24132 Source advisory: SNYK:JS-ORVALMOCK-15091570...