FLAT-9YE6L (CVE-2026-47760)
Reflected cross-site scripting (XSS) In tinymce/tinymce
7.3
High
Ecosystem: Packagist
Package: tinymce/tinymce
FLAT-NQS97 (GHSA-wx3m-whqv-xv47)
Lack of data validation - Path Traversal In skillctl
6.1
Medium
Ecosystem: Cargo
Package: skillctl
FLAT-8F1HV (MAL-2026-5272)
Use of software with malware In goodoltoulas
5.2
Medium
Ecosystem: PyPI
Package: goodoltoulas
FLAT-8URNW (CVE-2026-47731)
Lack of data validation - Path Traversal In ait-core
7.9
High
Ecosystem: PyPI
Package: ait-core
FLAT-23UEP (MAL-2026-5271)
Use of software with malware In goodoldtoulas
5.2
Medium
Ecosystem: PyPI
Package: goodoldtoulas
FLAT-10HQR (GHSA-x9f6-9rvm-mmrg)
Improper authorization control for web services In vantage6
2.7
Low
Ecosystem: PyPI
Package: vantage6
FLAT-V95NA (GHSA-fgmc-2hqj-86v4)
Enabled default credentials In vantage6
2.7
Low
Ecosystem: PyPI
Package: vantage6
FLAT-EJ6GP (GHSA-g72g-r7m4-9x4g)
Insecure session management In nocodb
1.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-V6PRJ (GHSA-rm5c-5x2p-48wr)
Asymmetric denial of service In github.com/klever-io/klever-go
7.7
High
Ecosystem: Go
Package: github.com/klever-io/klever-go
FLAT-UPD5M (GHSA-w4c6-7r69-w7j9)
Improper resource allocation In github.com/klever-io/klever-go
6.3
Medium
Ecosystem: Go
Package: github.com/klever-io/klever-go
FLAT-CUF22 (GHSA-hf2g-6j7h-98wg)
Improper resource allocation In github.com/klever-io/klever-go
7.7
High
Ecosystem: Go
Package: github.com/klever-io/klever-go
FLAT-Z4LPM (CVE-2026-49343)
Improper resource allocation In github.com/klever-io/klever-go
6.3
Medium
Ecosystem: Go
Package: github.com/klever-io/klever-go
FLAT-VC97V (CVE-2026-48017)
Remote command execution In dbgate-api
7.7
High
Ecosystem: Npm
Package: dbgate-api
FLAT-VXVQ6 (CVE-2026-47684)
Server-side request forgery (SSRF) In @sync-in/server
3.8
Low
Ecosystem: Npm
Package: @sync-in/server
FLAT-OH1IX (CVE-2026-47680)
Lack of data validation - Path Traversal In github.com/fluxcd/source-controller
1.3
Low
Ecosystem: Go
Package: github.com/fluxcd/source-controller
FLAT-YQW21 (CVE-2026-47670)
Remote command execution In dbgate-api
7.7
High
Ecosystem: Npm
Package: dbgate-api
FLAT-SRRQT (CVE-2026-47419)
Improper authorization control for web services In praisonai-platform
6.1
Medium
Ecosystem: PyPI
Package: praisonai-platform
FLAT-8GJ65 (CVE-2026-47669)
Lack of data validation - Path Traversal In dbgate
8.1
High
Ecosystem: Npm
Package: dbgate
FLAT-SXNJ1 (CVE-2026-47668)
Lack of data validation In dbgate-serve
9.1
Critical
Ecosystem: Npm
Package: dbgate-serve
FLAT-DG3RK (CVE-2026-47388)
Improper authorization control for web services In nocodb
0.6
Low
Ecosystem: Npm
Package: nocodb
FLAT-XG7N6 (CVE-2026-47387)
Server side cross-site scripting In nocodb
5.8
Medium
Ecosystem: Npm
Package: nocodb
FLAT-L2MIY (CVE-2026-47386)
Race condition In nocodb
1.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-G1YUJ (CVE-2026-47385)
Lack of data validation - Path Traversal In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-DAPVT (CVE-2026-47384)
SQL injection - Code In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-4YDO0 (CVE-2026-47383)
Server side cross-site scripting In nocodb
4.5
Medium
Ecosystem: Npm
Package: nocodb
FLAT-MVPGI (CVE-2026-47382)
Server-side request forgery (SSRF) In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-1U2J2 (CVE-2026-47381)
Spoofing In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-E6PU5 (CVE-2026-47380)
Lack of protection against brute force attacks In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-MHZGO (CVE-2026-47379)
Sensitive information sent insecurely In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-TZSU3 (CVE-2026-47378)
Restricted fields manipulation In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-J8D0Q (CVE-2026-47377)
Uncontrolled external site redirect In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-H6D1R (CVE-2026-47376)
Reflected cross-site scripting (XSS) In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-XJ1DS (CVE-2026-47375)
SQL injection - Code In nocodb
4.1
Medium
Ecosystem: Npm
Package: nocodb
FLAT-S2NH5 (CVE-2026-47279)
Improper authorization control for web services In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-P56UR (CVE-2026-47250)
Insecure functionality In mcp-server-kubernetes
3.8
Low
Ecosystem: Npm
Package: mcp-server-kubernetes
FLAT-2HHT0 (CVE-2026-47249)
Asymmetric denial of service - ReDoS In github.com/klever-io/klever-go
6.3
Medium
Ecosystem: Go
Package: github.com/klever-io/klever-go
FLAT-F61KM (CVE-2026-45726)
Business information leak In github.com/siderolabs/omni
4.1
Medium
Ecosystem: Go
Package: github.com/siderolabs/omni
FLAT-QSVU1 (CVE-2026-45723)
Lack of data validation - Path Traversal In github.com/siderolabs/omni
0.5
Low
Ecosystem: Go
Package: github.com/siderolabs/omni
FLAT-T0RLB (CVE-2026-45720)
Race condition In github.com/siderolabs/omni
5.6
Medium
Ecosystem: Go
Package: github.com/siderolabs/omni
FLAT-30DZD (CVE-2024-27928)
Lack of multi-factor authentication In vantage6
2.1
Low
Ecosystem: PyPI
Package: vantage6
FLAT-D13O5 (CVE-2024-24769)
Asymmetric denial of service - ReDoS In vantage6
0.5
Low
Ecosystem: PyPI
Package: vantage6
FLAT-3XJVN (MAL-2026-5270)
Use of software with malware In reactvora
5.2
Medium
Ecosystem: Npm
Package: reactvora
FLAT-4FA05 (MAL-2026-5269)
Use of software with malware In glyphr
5.2
Medium
Ecosystem: Npm
Package: glyphr
FLAT-HDAFG (RUSTSEC-2026-0172)
Improper resource allocation In diesel
2.1
Low
Ecosystem: Cargo
Package: diesel
FLAT-CM70L (MAL-2026-5268)
Use of software with malware In ulid-os
5.2
Medium
Ecosystem: Npm
Package: ulid-os
FLAT-506BK (CVE-2026-50591)
Server side cross-site scripting In znuny
1.2
Low
Ecosystem: Debian
Package: znuny
FLAT-TZW28 (CVE-2026-50592)
Reflected cross-site scripting (XSS) In znuny
1.2
Low
Ecosystem: Debian
Package: znuny
FLAT-0FL4Z (MAL-2026-5239)
Use of software with malware In awaitly-visualizer
5.2
Medium
Ecosystem: Npm
Package: awaitly-visualizer
FLAT-0GOXD (MAL-2026-5266)
Use of software with malware In node-env-resolver-vite
5.2
Medium
Ecosystem: Npm
Package: node-env-resolver-vite
FLAT-0UQIB (MAL-2026-5264)
Use of software with malware In node-env-resolver-dotenvx
5.2
Medium
Ecosystem: Npm
Package: node-env-resolver-dotenvx
FLAT-10FAO (MAL-2026-5267)
Use of software with malware In wrangler-deploy
5.2
Medium
Ecosystem: Npm
Package: wrangler-deploy
FLAT-1DV4R (MAL-2026-5234)
Use of software with malware In awaitly
5.2
Medium
Ecosystem: Npm
Package: awaitly
FLAT-1SY07 (MAL-2026-5251)
Use of software with malware In executable-stories-demo
5.2
Medium
Ecosystem: Npm
Package: executable-stories-demo
FLAT-2CTTP (MAL-2026-5218)
Use of software with malware In autotel-devtools
5.2
Medium
Ecosystem: Npm
Package: autotel-devtools
FLAT-2MW1Q (MAL-2026-5235)
Use of software with malware In awaitly-analyze
5.2
Medium
Ecosystem: Npm
Package: awaitly-analyze
FLAT-2PNWQ (MAL-2026-5262)
Use of software with malware In node-env-resolver
5.2
Medium
Ecosystem: Npm
Package: node-env-resolver
FLAT-37M63 (MAL-2026-5260)
Use of software with malware In mountly
5.2
Medium
Ecosystem: Npm
Package: mountly
FLAT-3NF90 (MAL-2026-5261)
Use of software with malware In mountly-tailwind
5.2
Medium
Ecosystem: Npm
Package: mountly-tailwind
FLAT-3OM8X (MAL-2026-5233)
Use of software with malware In autotel-web
5.2
Medium
Ecosystem: Npm
Package: autotel-web
FLAT-4VC68 (MAL-2026-5195)
Use of software with malware In @contaazul/n8n-nodes-contaazul
5.2
Medium
Ecosystem: Npm
Package: @contaazul/n8n-nodes-contaazul
FLAT-5CQOM (MAL-2026-5197)
Use of software with malware In @ethlete/cli
5.2
Medium
Ecosystem: Npm
Package: @ethlete/cli
FLAT-62YWG (MAL-2026-5252)
Use of software with malware In executable-stories-formatters
5.2
Medium
Ecosystem: Npm
Package: executable-stories-formatters
FLAT-6D06O (MAL-2026-5227)
Use of software with malware In autotel-playwright
5.2
Medium
Ecosystem: Npm
Package: autotel-playwright
FLAT-6MGM9 (MAL-2026-5206)
Use of software with malware In @forjacms/client
5.2
Medium
Ecosystem: Npm
Package: @forjacms/client
FLAT-7CCID (MAL-2026-5244)
Use of software with malware In discord-search
5.2
Medium
Ecosystem: Npm
Package: discord-search
FLAT-8YA6M (MAL-2026-5259)
Use of software with malware In github-archiver
5.2
Medium
Ecosystem: Npm
Package: github-archiver
FLAT-9BT64 (MAL-2026-5219)
Use of software with malware In autotel-drizzle
5.2
Medium
Ecosystem: Npm
Package: autotel-drizzle
FLAT-9WGIM (MAL-2026-5225)
Use of software with malware In autotel-mongoose
5.2
Medium
Ecosystem: Npm
Package: autotel-mongoose
FLAT-A0M0S (MAL-2026-5245)
Use of software with malware In effect-analyzer
5.2
Medium
Ecosystem: Npm
Package: effect-analyzer
FLAT-A7MGR (MAL-2026-5238)
Use of software with malware In awaitly-postgres
5.2
Medium
Ecosystem: Npm
Package: awaitly-postgres
FLAT-AG8K7 (MAL-2026-5246)
Use of software with malware In eslint-plugin-awaitly
5.2
Medium
Ecosystem: Npm
Package: eslint-plugin-awaitly
FLAT-CZF4E (MAL-2026-5241)
Use of software with malware In create-wrangler-deploy
5.2
Medium
Ecosystem: Npm
Package: create-wrangler-deploy
FLAT-D9V0J (MAL-2026-5243)
Use of software with malware In dbmux
5.2
Medium
Ecosystem: Npm
Package: dbmux
FLAT-DE7K4 (MAL-2026-5230)
Use of software with malware In autotel-subscribers
5.2
Medium
Ecosystem: Npm
Package: autotel-subscribers
FLAT-DK2VC (MAL-2026-5265)
Use of software with malware In node-env-resolver-nextjs
5.2
Medium
Ecosystem: Npm
Package: node-env-resolver-nextjs
FLAT-F7JR6 (MAL-2026-5215)
Use of software with malware In autotel-backends
5.2
Medium
Ecosystem: Npm
Package: autotel-backends
FLAT-FDUSP (MAL-2026-5205)
Use of software with malware In @forjacms/analytics
5.2
Medium
Ecosystem: Npm
Package: @forjacms/analytics
FLAT-FIBEO (MAL-2026-5201)
Use of software with malware In @ethlete/dsp
5.2
Medium
Ecosystem: Npm
Package: @ethlete/dsp
FLAT-GFE8N (MAL-2026-5214)
Use of software with malware In autotel-aws
5.2
Medium
Ecosystem: Npm
Package: autotel-aws
FLAT-H1FOJ (MAL-2026-5237)
Use of software with malware In awaitly-mongo
5.2
Medium
Ecosystem: Npm
Package: awaitly-mongo
FLAT-H57YC (MAL-2026-5217)
Use of software with malware In autotel-cloudflare
5.2
Medium
Ecosystem: Npm
Package: autotel-cloudflare
FLAT-H91X9 (MAL-2026-5198)
Use of software with malware In @ethlete/components
5.2
Medium
Ecosystem: Npm
Package: @ethlete/components
FLAT-HMWLP (MAL-2026-5200)
Use of software with malware In @ethlete/core
5.2
Medium
Ecosystem: Npm
Package: @ethlete/core
FLAT-JM16Q (MAL-2026-5212)
Use of software with malware In autotel-adapters
5.2
Medium
Ecosystem: Npm
Package: autotel-adapters
FLAT-K05ZO (MAL-2026-5232)
Use of software with malware In autotel-vitest
5.2
Medium
Ecosystem: Npm
Package: autotel-vitest
FLAT-LUDD3 (MAL-2026-5229)
Use of software with malware In autotel-sentry
5.2
Medium
Ecosystem: Npm
Package: autotel-sentry
FLAT-MU7DW (MAL-2026-5222)
Use of software with malware In autotel-hono
5.2
Medium
Ecosystem: Npm
Package: autotel-hono
FLAT-MXO0R (MAL-2026-5208)
Use of software with malware In @forjacms/sections-react
5.2
Medium
Ecosystem: Npm
Package: @forjacms/sections-react
FLAT-N7YUK (MAL-2026-5248)
Use of software with malware In eslint-plugin-executable-stories-playwright
5.2
Medium
Ecosystem: Npm
Package: eslint-plugin-executable-stories-playwright
FLAT-NRSDW (MAL-2026-5258)
Use of software with malware In executable-stories-vitest
5.2
Medium
Ecosystem: Npm
Package: executable-stories-vitest
FLAT-OJCH5 (MAL-2026-5216)
Use of software with malware In autotel-cli
5.2
Medium
Ecosystem: Npm
Package: autotel-cli
FLAT-P1A1B (MAL-2026-5207)
Use of software with malware In @forjacms/sections
5.2
Medium
Ecosystem: Npm
Package: @forjacms/sections
FLAT-POZOO (MAL-2026-5226)
Use of software with malware In autotel-pact
5.2
Medium
Ecosystem: Npm
Package: autotel-pact
FLAT-PWYFW (MAL-2026-5249)
Use of software with malware In eslint-plugin-executable-stories-vitest
5.2
Medium
Ecosystem: Npm
Package: eslint-plugin-executable-stories-vitest
FLAT-Q17GX (MAL-2026-5242)
Use of software with malware In creditcard.js
5.2
Medium
Ecosystem: Npm
Package: creditcard.js
FLAT-R3T24 (MAL-2026-5253)
Use of software with malware In executable-stories-init
5.2
Medium
Ecosystem: Npm
Package: executable-stories-init
FLAT-RAWPP (MAL-2026-5250)
Use of software with malware In executable-stories-cypress
5.2
Medium
Ecosystem: Npm
Package: executable-stories-cypress
FLAT-RCJIE (MAL-2026-5203)
Use of software with malware In @ethlete/theming
5.2
Medium
Ecosystem: Npm
Package: @ethlete/theming
FLAT-SBGXU (MAL-2026-5236)
Use of software with malware In awaitly-libsql
5.2
Medium
Ecosystem: Npm
Package: awaitly-libsql
FLAT-SSMDL (MAL-2026-5196)
Use of software with malware In @ethlete/cdk
5.2
Medium
Ecosystem: Npm
Package: @ethlete/cdk