26517 matches found
arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +49 more potentially affected by CVE-2026-7666 via django (>=5.2.0 <=5.2.14)
django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-7666 Source advisory: OSV:PYSEC-2026-200...
arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +49 more potentially affected by CVE-2026-8404 via django (>=5.2.0 <=5.2.14)
django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-8404 Source advisory: OSV:PYSEC-2026-201...
arches (=8.0.0a1), avaintegration-metapackage (>=6.0.4.3 <=6.0.5.32) +47 more potentially affected by CVE-2026-6873 via django (>=6.0.0 <=6.0.5)
django PYPI version =6.0.0, =6.0.4.3, =2.0.0, =1.1.0, =0.1.0, =0.4.5 - django-ndr-core =0.70.2 - django-sb-simple-migrations =0.9.0 and more Source cves: CVE-2026-6873 Source advisory: OSV:PYSEC-2026-199...
arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +49 more potentially affected by CVE-2026-6873 via django (>=5.2.0 <=5.2.14)
django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-6873 Source advisory: OSV:PYSEC-2026-199...
arches (=8.0.0a1), avaintegration-metapackage (>=6.0.4.3 <=6.0.5.32) +47 more potentially affected by CVE-2026-48587 via django (>=6.0.0 <=6.0.5)
django PYPI version =6.0.0, =6.0.4.3, =2.0.0, =1.1.0, =0.1.0, =0.4.5 - django-ndr-core =0.70.2 - django-sb-simple-migrations =0.9.0 and more Source cves: CVE-2026-48587 Source advisory: OSV:PYSEC-2026-198...
arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +49 more potentially affected by CVE-2026-48587 via django (>=5.2.0 <=5.2.14)
django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-48587 Source advisory: OSV:PYSEC-2026-198...
alexa-browser-client (>=1.2.0 <=3.3.2), argus-server (>=1.0.0 <=1.11.1) +109 more potentially affected by CVE-2026-44546 via daphne (>=1.3.0 <=4.2.1)
daphne PYPI version =1.3.0, =1.2.0, =1.0.0, =0.1.3, =0.1.0, =2.0.90, =0.2.85, =202209.1088.0, =2.4.0, =1.1.2, =0.2.0, =0.0.0, =2.0.1, =0.1.1, =0.9.1 - django-channels-handlers =0.1.0 and more Source cves: CVE-2026-44546 Source advisory: OSV:PYSEC-2026-214...
alexa-browser-client (>=1.2.0 <=3.3.2), argus-server (>=1.0.0 <=1.11.1) +109 more potentially affected by CVE-2026-44545 via daphne (>=1.3.0 <=4.2.1)
daphne PYPI version =1.3.0, =1.2.0, =1.0.0, =0.1.3, =0.1.0, =2.0.90, =0.2.85, =202209.1088.0, =2.4.0, =1.1.2, =0.2.0, =0.0.0, =2.0.1, =0.1.1, =0.9.1 - django-channels-handlers =0.1.0 and more Source cves: CVE-2026-44545 Source advisory: OSV:PYSEC-2026-213...
arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +49 more potentially affected by CVE-2026-35193 via django (>=5.2.0 <=5.2.14)
django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-35193 Source advisory: OSV:PYSEC-2026-197...
arches (=8.0.0a1), avaintegration-metapackage (>=6.0.4.3 <=6.0.5.32) +47 more potentially affected by CVE-2026-35193 via django (>=6.0.0 <=6.0.5)
django PYPI version =6.0.0, =6.0.4.3, =2.0.0, =1.1.0, =0.1.0, =0.4.5 - django-ndr-core =0.70.2 - django-sb-simple-migrations =0.9.0 and more Source cves: CVE-2026-35193 Source advisory: OSV:PYSEC-2026-197...
ai.h2o:sparkling-water-core_2.11 (>=3.46.0.1-1-2.3 <=3.46.0.6-1-2.4), ai.h2o:sparkling-water-core_2.12 (>=3.46.0.1-1-3.0 <=3.46.0.6-1-3.5) +762 more potentially affected by CVE-2026-47065 via org.apache.mina:mina-core (>=2.2.0 <=2.2.7)
org.apache.mina:mina-core MAVEN version =2.2.0, =3.46.0.1-1-2.3, =3.46.0.1-1-3.0, =3.46.0.1-1-2.3, =3.46.0.1-1-3.0, =3.46.0.1-1-2.3, =3.46.0.1-1-3.0, =3.46.0.1-1-2.3, =3.46.0.1-1-3.0, =1.5.4.RELEASE, =0.0.2, =3.0.0, =1.0.9, =1.6.9, =1.2.5, =1.1.7, =1.2.8 and more Source cves: CVE-2026-47065 Sourc...
com.github.niupengyu.schedule:ahead-schedule-distributed (>=1.2.6-RELEASE <=1.2.8-RELEASE), com.github.niupengyu:ahead-frame-socket (>=1.2.1-RELEASE <=1.2.3-RELEASE) +40 more potentially affected by CVE-2026-47065 via org.apache.mina:mina-core (>=2.1.0 <=2.1.12)
org.apache.mina:mina-core MAVEN version =2.1.0, =1.2.6-RELEASE, =1.2.1-RELEASE, =2.2.1, =2.2.1, =3.0.0, =1.0.0, =3.0.11, =3.6.7, =3.6.7, =3.6.7, =3.6.11 and more Source cves: CVE-2026-47065 Source advisory: SNYK:JAVA-ORGAPACHEMINA-17152200...
au.com.versent.jenkins.plugins:ignore-committer-strategy (>=37.v0d3157c4a_ef8 <=57.v0756db_b_f6926), be.mogo.iam:mogo-provisioning (>=1.0.1.RELEASE <=1.1.7.RELEASE) +1174 more potentially affected by CVE-2026-47065 via org.apache.mina:mina-core (>=2.0.0-M1 <=2.0.28)
org.apache.mina:mina-core MAVEN version =2.0.0-M1, =37.v0d3157c4aef8, =1.0.1.RELEASE, =1.1.8.RELEASE, =1.1.5.RELEASE, =2.7.4.0, =1.0.0.RELEASE, =1.0.0.RELEASE, =1.0.0.RELEASE, =1.0.2.RELEASE, =1.0.3.RELEASE - cn.javaboot:nacos-address =1.4.1 - cn.javaboot:nacos-console =1.4.1 -...
azure-ai-generative (>=1.0.0b1 <=1.0.0b3), azure-ai-resources (>=1.0.0b1 <=1.0.0b9) +30 more potentially affected by CVE-2026-4035 via mlflow-skinny (>=3.0.0 <=3.11.0rc0)
mlflow-skinny PYPI version =3.0.0, =1.0.0b1, =1.0.0b1, =0.1.0, =0.1.0, =2.5.0, =0.0.13, =7.1.1, =0.2.0, =0.2.1 and more Source cves: CVE-2026-4035 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-17135850...
databricks-agents (>=0.1.0 <=1.0.0rc1), datamint (>=2.5.0 <=2.5.2) +18 more potentially affected by CVE-2026-4035 via mlflow (>=3.0.0rc2 <=3.10.1)
mlflow PYPI version =3.0.0rc2, =0.1.0, =2.5.0, =7.1.1, =0.2.0, =3.10.1, =1.0.1, =1.0.1, =3.0.15, =0.2.0.dev0, =0.6.7, =0.1.19, =0.1.0, =0.1.8 and more Source cves: CVE-2026-4035 Source advisory: SNYK:PYTHON-MLFLOW-17135851...
5dee (=0.1.0), a2 (>=0.1.0 <=0.3.17) +4842 more potentially affected by CVE-2026-10705 via dask (>=0.11.0 <=2.9.2)
dask PYPI version =0.11.0, =0.1.0, =0.4.0, =25.9.23, =0.1.0, =0.4.5, =1.0.0, =0.4.1, =0.0.1, =2026.4.17, =0.1.14, =0.1.0, =2.0.0a22, =2.3.0a24 and more Source cves: CVE-2026-10705 Source advisory: SNYK:PYTHON-DASK-17138893...
@accounter/client (>=0.0.3 <=0.0.11-alpha-20260404002702-9340365def1af08a5cdbbf734a87d1d4839bdaff), @asamanvay/auth-service (>=0.0.2 <=0.0.4) +122 more potentially affected by CVE-2026-34077 via react-router (>=7.0.0 <=7.14.0-pre.0)
react-router NPM version =7.0.0, =0.0.3, =0.0.2, =3.5.2, =1.1.0, =1.0.1-MON-198808-web-js-deps-batch-1.0, =0.0.1, =3.4.9, =0.1.9, =1.27.1, =1.27.1, =0.3.1, =7.13.1-depup.0, =7.13.2-depup.0 and more Source cves: CVE-2026-34077 Source advisory: SNYK:JS-REACTROUTER-17138883...
@0xmike/web-kit (>=0.0.6 <=0.1.1), @abundiko/expo-template (=1.0.0) +316 more potentially affected by CVE-2026-34077 via turbo-stream (=2.4.1)
turbo-stream NPM version =2.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on turbo-stream and may be impacted: - @0xmike/web-kit =0.0.6, =4.0.0, =4.15.0, =1.4.0, =0.0.1, =1.2.0, =1.2.0, =0.1.0, =1.0.10, =1.0.0, =0.0.2, =0.0.1, =1.0.6, =2.1.0 -...
@accounter/client (>=0.0.3 <=0.0.12-alpha-20260421081155-bb6cc4c0b0b59fff41df172e2f4212eca6906193), @appigram/react-code-split-ssr (=1.3.7) +128 more potentially affected by CVE-2026-40181 via react-router (>=7.0.0 <=7.14.0)
react-router NPM version =7.0.0, =0.0.3, =0.0.2, =3.5.2, =1.1.0, =1.0.1-MON-198808-web-js-deps-batch-1.0, =0.0.1, =3.4.9, =0.1.9, =1.27.1, =1.27.1, =0.3.1, =0.5.1 and more Source cves: CVE-2026-40181 Source advisory: SNYK:JS-REACTROUTER-17138887...
@accounter/client (>=0.0.3 <=0.0.12-alpha-20260508071110-20f5becdec9522d09c6a97f123f7c572407661fb), @appigram/react-code-split-ssr (>=1.3.7 <=1.3.8) +229 more potentially affected by CVE-2026-42342 via react-router (>=7.0.0 <=7.14.2)
react-router NPM version =7.0.0, =0.0.3, =1.3.7, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.2, =3.5.2, =1.1.0, =1.0.1-MON-198808-web-js-deps-batch-1.0, =0.0.1, =1.1.0 and more Source cves: CVE-2026-42342 Source advisory: SNYK:JS-REACTROUTER-17138701...
@accounter/client (>=0.0.3 <=0.0.12-alpha-20260427054851-6925deba4595cf0c72d3875df0a094608b394a27), @appigram/react-code-split-ssr (=1.3.7) +130 more potentially affected by CVE-2026-42211 via react-router (>=7.0.0 <=7.14.1)
react-router NPM version =7.0.0, =0.0.3, =0.0.2, =3.5.2, =1.1.0, =1.0.1-MON-198808-web-js-deps-batch-1.0, =0.0.1, =3.4.9, =0.1.9, =1.27.1, =1.27.1, =0.3.1, =0.5.1 and more Source cves: CVE-2026-42211 Source advisory: SNYK:JS-REACTROUTER-17137394...
edf-centrifuge (=1.0.0) potentially affected by CVE-2026-35212 via pycti (=6.9.29)
pycti PYPI version =6.9.29 is affected by a known vulnerability. The following packages have a transitive dependency on pycti and may be impacted: - edf-centrifuge =1.0.0 Source cves: CVE-2026-35212 Source advisory: OSV:PYSEC-2026-203...
@easbot/ollama-sdk (=0.1.0) potentially affected by unknown CVE via ai-sdk-ollama (=2.2.0)
ai-sdk-ollama NPM version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on ai-sdk-ollama and may be impacted: - @easbot/ollama-sdk =0.1.0 Source cves: unknown CVE Source advisory: SNYK:JS-AISDKOLLAMA-17146454...
autotel-adapters (>=0.2.10 <=0.3.5), autotel-audit (>=0.1.2 <=0.1.15) +8 more potentially affected by unknown CVE via autotel (>=3.0.0 <=3.4.2)
autotel NPM version =3.0.0, =0.2.10, =0.1.2, =0.12.10, =2.12.10, =0.0.10, =0.4.10, =0.4.16, =0.19.10, =1.13.11, =0.4.10, =0.4.26 Source cves: unknown CVE Source advisory: SNYK:JS-AUTOTEL-17146458...
autotel-cli (>=0.8.10 <=0.8.14) potentially affected by unknown CVE via autotel-mcp (>=0.1.10 <=0.1.13)
autotel-mcp NPM version =0.1.10, =0.8.10, =0.8.14 Source cves: unknown CVE Source advisory: SNYK:JS-AUTOTELMCP-17146470...
autotel-adapters (>=0.1.1 <=0.2.9), autotel-aws (>=0.4.0 <=0.12.9) +8 more potentially affected by unknown CVE via autotel (>=2.10.0 <=2.26.3)
autotel NPM version =2.10.0, =0.1.1, =0.4.0, =2.0.1, =0.0.2, =0.1.1, =0.2.0, =0.4.0, =0.1.1, =1.4.0, =0.2.0, =0.4.9 Source cves: unknown CVE Source advisory: SNYK:JS-AUTOTEL-17146458...
@arc-laboratories/arclocale-compiler (=0.2.0-alpha.8), @iharkharytanovich/found (>=0.1.1 <=0.1.4) +8 more potentially affected by unknown CVE via ai-sdk-ollama (>=3.0.0 <=3.8.4)
ai-sdk-ollama NPM version =3.0.0, =0.1.1, =0.1.5, =0.4.2-canary-0ba39cdeb6, =0.1.303, =0.1.303, =0.1.303, =0.1.303, =0.4.2, =0.1.5, =1.1.0 Source cves: unknown CVE Source advisory: SNYK:JS-AISDKOLLAMA-17146454...
@activepieces/piece-vapi (>=0.0.1 <=0.0.2), @keyman500/voice-ai-sdk (>=0.1.0 <=1.1.0) +2 more potentially affected by unknown CVE via @vapi-ai/server-sdk (>=0.10.2 <=0.11.0)
@vapi-ai/server-sdk NPM version =0.10.2, =0.0.1, =0.1.0, =1.0.0, =1.1.0 Source cves: unknown CVE Source advisory: SNYK:JS-VAPIAISERVERSDK-17146457...
@byside/llm (>=0.1.0 <=0.1.1), agentic-control (=1.1.0) potentially affected by unknown CVE via ai-sdk-ollama (=1.1.0)
ai-sdk-ollama NPM version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on ai-sdk-ollama and may be impacted: - @byside/llm =0.1.0, =0.1.1 - agentic-control =1.1.0 Source cves: unknown CVE Source advisory: SNYK:JS-AISDKOLLAMA-17146454...
ai.chronon:online_2.11 (>=0.0.25 <=revert-391-thread-0.0.24), ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +1464 more potentially affected by CVE-2026-46718 via org.apache.calcite:calcite-core (>=1.0.0-incubating <=1.41.0)
org.apache.calcite:calcite-core MAVEN version =1.0.0-incubating, =0.0.25, =0.0.86, =local, =0.0.1, =0.2.7, =1.0.1, =1.1.0, =1.7.0, =1.7.0, =1.0.0, =0.0.12, =1.0.0, =1.0.0, =1.0.0, =1.13.3, =2.14.0 and more Source cves: CVE-2026-46718 Source advisory: SNYK:JAVA-ORGAPACHECALCITE-17151967...
a-mailx (=0.1.0), a2 (>=0.1.0 <=0.3.17) +90 more potentially affected by CVE-2026-5422 via jupyter-server (>=2.0.0rc3 <=2.17.0)
jupyter-server PYPI version =2.0.0rc3, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =3.0.0, =0.1.0, =0.0.1, =0.0.6 and more Source cves: CVE-2026-5422 Source advisory: SNYK:PYTHON-JUPYTERSERVER-17152947...
a2 (>=0.1.0 <=0.3.17), abadpour (>=6.13.1 <=7.24.1) +952 more potentially affected by CVE-2026-3198 via mlflow (>=0.8.2 <=3.9.0)
mlflow PYPI version =0.8.2, =0.1.0, =6.13.1, =9.273.1, =1.1.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.0.5, =1.0.0, =0.1.0, =1.1.1 - ai-helpers-pytorch-utils =0.1.0a1 - ailine-core =0.5.5 and more Source cves: CVE-2026-3198 Source advisory: SNYK:PYTHON-MLFLOW-17231495...
ai.apiverse:apipulse (=1.0.1), be.personify.iam:personify-api (>=1.5.0.RELEASE <=1.5.7.RELEASE) +454 more potentially affected by CVE-2026-41006 via org.springframework.hateoas:spring-hateoas (>=1.5.0 <=2.5.2)
org.springframework.hateoas:spring-hateoas MAVEN version =1.5.0, =1.5.0.RELEASE, =1.5.1.RELEASE, =1.5.0.RELEASE, =2.1.0.RELEASE, =1.0.1, =1.0.1, =1.0.1, =2.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =2.1.18 and more Source cves: CVE-2026-41006 Source advisory:...
com.bgiddens:spring-data-rest-utils (>=0.0.1-BETA <=0.0.7-BETA), com.boschsemanticstack:semanticstack-rql-examples-querydsljpa (=3.0.0) +44 more potentially affected by CVE-2026-41006 via org.springframework.hateoas:spring-hateoas (>=3.0.0-M1 <=3.0.3)
org.springframework.hateoas:spring-hateoas MAVEN version =3.0.0-M1, =0.0.1-BETA, =4.0, =4.0, =3.0.9, =3.0.9, =3.0.9, =3.0.0, =1.0.45, =1.0.78 and more Source cves: CVE-2026-41006 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORKHATEOAS-17258562https://vulners.com/snyk/SNYK:JAVA-O...
com.bgiddens:spring-data-rest-utils (>=0.0.1-BETA <=0.0.7-BETA), com.boschsemanticstack:semanticstack-rql-examples-querydsljpa (=3.0.0) +44 more potentially affected by CVE-2026-41007 via org.springframework.hateoas:spring-hateoas (>=3.0.0-M1 <=3.0.3)
org.springframework.hateoas:spring-hateoas MAVEN version =3.0.0-M1, =0.0.1-BETA, =4.0, =4.0, =3.0.9, =3.0.9, =3.0.9, =3.0.0, =1.0.45, =1.0.78 and more Source cves: CVE-2026-41007 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORKHATEOAS-17255295https://vulners.com/snyk/SNYK:JAVA-O...
ai.apiverse:apipulse (=1.0.1), be.personify.iam:personify-api (>=1.5.0.RELEASE <=1.5.7.RELEASE) +454 more potentially affected by CVE-2026-41007 via org.springframework.hateoas:spring-hateoas (>=1.5.0 <=2.5.2)
org.springframework.hateoas:spring-hateoas MAVEN version =1.5.0, =1.5.0.RELEASE, =1.5.1.RELEASE, =1.5.0.RELEASE, =2.1.0.RELEASE, =1.0.1, =1.0.1, =1.0.1, =2.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =2.1.18 and more Source cves: CVE-2026-41007 Source advisory:...
aaanalysis (>=0.1.2 <=1.0.2), aadetools (>=0.0.3 <=0.0.5) +589 more potentially affected by CVE-2026-8643 via pip (>=10.0.0b2 <=26.1.1)
pip PYPI version =10.0.0b2, =0.1.2, =0.0.3, =0.5.14, =0.1.1, =2.0.0, =0.2.1, =0.1.2, =0.0.1, =0.1.0, =0.1.10, =0.2.0, =0.68.0, =1.8.15, =1.8.17, =1.8.19 and more Source cves: CVE-2026-8643 Source advisory: OSV:PYSEC-2026-196...
kas-dagger-utils (=1.0.0) potentially affected by CVE-2026-47191 via kas (=4.8.2)
kas PYPI version =4.8.2 is affected by a known vulnerability. The following packages have a transitive dependency on kas and may be impacted: - kas-dagger-utils =1.0.0 Source cves: CVE-2026-47191 Source advisory: OSV:GHSA-QJWP-HRQ6-R26R...
mahoraga (>=0.5.1 <=0.6.0), pixi-browse (>=0.0.1 <=0.0.13) +2 more potentially affected by CVE-2026-47425 via py-rattler (>=0.22.0 <=0.23.2)
py-rattler PYPI version =0.22.0, =0.5.1, =0.0.1, =0.1.0, =0.8.0 Source cves: CVE-2026-47425 Source advisory: OSV:GHSA-Q53Q-5R4J-5729...
mahoraga (>=0.5.1 <=0.6.0), pixi-browse (>=0.0.1 <=0.0.13) +3 more potentially affected by CVE-2026-47425 via py-rattler (>=0.10.0 <=0.23.2)
py-rattler PYPI version =0.10.0, =0.5.1, =0.0.1, =0.3.1, =0.1.0, =0.1.0, =0.8.0 Source cves: CVE-2026-47425 Source advisory: SNYK:PYTHON-PYRATTLER-17661108...
@a1st/aix (>=0.0.3 <=0.5.1), @a1st/aix-core (>=0.2.0 <=0.5.1) +74 more potentially affected by CVE-2026-47428 via vitest (>=4.0.17 <=4.1.5)
vitest NPM version =4.0.17, =0.0.3, =0.2.0, =0.79.1, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =0.0.231, =0.0.231, =4.0.0-alpha.49, =4.0.0-alpha.66 and more Source cves: CVE-2026-47428 Source advisory: SNYK:JS-VITEST-17120487...
@vitest/browser-playwright (>=5.0.0-beta.1 <=5.0.0-beta.2), @vitest/browser-preview (>=5.0.0-beta.1 <=5.0.0-beta.2) +1 more potentially affected by CVE-2026-47428 via @vitest/browser (>=5.0.0-beta.1 <=5.0.0-beta.2)
@vitest/browser NPM version =5.0.0-beta.1, =5.0.0-beta.1, =5.0.0-beta.1, =5.0.0-beta.1, =5.0.0-beta.2 Source cves: CVE-2026-47428 Source advisory: SNYK:JS-VITESTBROWSER-17120486...
@aamini/config (>=0.0.1 <=0.0.13), @baic/preset-yolk-taro-miniprogram (>=2.1.0-alpha.278 <=2.1.0-alpha.281) +9 more potentially affected by CVE-2026-47428 via @vitest/browser (>=4.0.17 <=4.1.5)
@vitest/browser NPM version =4.0.17, =0.0.1, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =4.0.2, =4.0.2, =4.0.2, =0.5.0, =0.1.13, =0.2.2 Source cves: CVE-2026-47428 Source advisory: SNYK:JS-VITESTBROWSER-17120486...
@aamini/config (>=0.0.1 <=0.0.13), @baic/preset-yolk-taro-miniprogram (>=2.1.0-alpha.278 <=2.1.0-alpha.281) +9 more potentially affected by CVE-2026-47428 via @vitest/browser (>=4.0.17 <=4.1.5)
@vitest/browser NPM version =4.0.17, =0.0.1, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =4.0.2, =4.0.2, =4.0.2, =0.5.0, =0.1.13, =0.2.2 Source cves: CVE-2026-47428 Source advisory: OSV:GHSA-2H32-95RG-CPPP...
@vitest/browser-playwright (>=5.0.0-beta.1 <=5.0.0-beta.2), @vitest/browser-preview (>=5.0.0-beta.1 <=5.0.0-beta.2) +1 more potentially affected by CVE-2026-47428 via @vitest/browser (>=5.0.0-beta.1 <=5.0.0-beta.2)
@vitest/browser NPM version =5.0.0-beta.1, =5.0.0-beta.1, =5.0.0-beta.1, =5.0.0-beta.1, =5.0.0-beta.2 Source cves: CVE-2026-47428 Source advisory: OSV:GHSA-2H32-95RG-CPPP...
@etherna/sdk-js (>=2.0.1 <=2.0.3), @regardio/dev (>=1.3.0 <=1.16.2) +13 more potentially affected by CVE-2026-47429 via @vitest/ui (>=4.0.16 <=4.0.3)
@vitest/ui NPM version =4.0.16, =2.0.1, =1.3.0, =0.3.5, =0.3.0, =0.3.5, =0.3.5, =0.3.5, =0.3.5, =0.3.5, =0.3.5, =0.3.5, =0.3.5, =0.3.5, =0.3.5, =0.2.0-alpha.1, =0.2.0-alpha.4 Source cves: CVE-2026-47429 Source advisory: SNYK:JS-VITESTUI-17120328...
@astralis-os/vitest (=2.4.1), @aws/nx-plugin (>=0.79.1 <=0.84.2) +65 more potentially affected by CVE-2026-47429 via vitest (>=4.0.0-beta.11 <=4.0.9)
vitest NPM version =4.0.0-beta.11, =0.79.1, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =4.0.0-alpha.31, =1.2.3-preview-a960555.0, =7.2.0, =11.0.33, =11.0.49 - @forsakringskassan/vitest-config =1.1.0 - @frovahappy/brush =0.2.0 and more Source cves:...
@0xkamal7/sui-agent (>=1.1.2 <=1.1.5), @1771technologies/oneplay (>=0.0.1 <=0.0.6) +2034 more potentially affected by CVE-2026-47429 via vitest (>=0.0.141 <=3.2.4)
vitest NPM version =0.0.141, =1.1.2, =0.0.1, =0.2.4, =1.0.0, =0.0.1, =1.0.7, =0.1.0, =4.9.1, =1.0.2, =0.0.14, =0.1.0, =1.1.0, =1.0.30, =0.2.2, =0.3.3 and more Source cves: CVE-2026-47429 Source advisory: OSV:GHSA-5XRQ-8626-4RWP...
@astralis-os/vitest (=2.4.1), @aws/nx-plugin (>=0.79.1 <=0.84.2) +64 more potentially affected by CVE-2026-47429 via vitest (>=4.0.13 <=4.0.9)
vitest NPM version =4.0.13, =0.79.1, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =2.1.0-alpha.278, =4.0.0-alpha.31, =1.2.3-preview-a960555.0, =7.2.0, =11.0.33, =11.0.49 - @forsakringskassan/vitest-config =1.1.0 - @frovahappy/brush =0.2.0 and more Source cves:...
@1771technologies/oneplay (>=0.0.1 <=0.0.6), @24hr/ettapi (>=0.2.4 <=0.2.5) +81 more potentially affected by CVE-2026-47429 via vitest (>=3.0.2 <=3.2.4)
vitest NPM version =3.0.2, =0.0.1, =0.2.4, =0.5.0, =2.2.1, =2.1.0-alpha.249, =2.1.0-alpha.249, =2.1.0-alpha.249, =2.1.0-alpha.249, =2.1.0-alpha.249, =0.0.0, =4.0.0-alpha.5, =0.1.2-next.95, =1.0.0, =1.0.2 - @chrom-ar/solver-sdk =1.0.2 and more Source cves: CVE-2026-47429 Source advisory:...