FLAT-CB83B (CVE-2026-48527)
Server side cross-site scripting In @haxtheweb/haxcms-nodejs
5.6
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-T09HY (CVE-2026-46357)
Asymmetric denial of service In @haxtheweb/haxcms-nodejs
5.7
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-B76VJ (CVE-2026-46511)
Reflected cross-site scripting (XSS) In @haxtheweb/haxcms-nodejs
6.3
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-9Q31O (CVE-2026-46395)
Insecure encryption algorithm In @haxtheweb/haxcms-nodejs
8.1
High
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-0P7EF (CVE-2026-46496)
Server side cross-site scripting In @haxtheweb/haxcms-nodejs
1.2
Low
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-TXCUK (CVE-2026-46393)
Server-side request forgery (SSRF) In @haxtheweb/haxcms-nodejs
4.9
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-L8RWA (CVE-2026-22704)
Server side cross-site scripting In @haxtheweb/haxcms-nodejs
5.8
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-2OY59 (CVE-2025-54378)
Improper authorization control for web services In @haxtheweb/haxcms-nodejs
5.2
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-J7Z0E (CVE-2025-54137)
Enabled default credentials In @haxtheweb/haxcms-nodejs
2.7
Low
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-GGWU8 (CVE-2025-54134)
Asymmetric denial of service In @haxtheweb/haxcms-nodejs
4.9
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-DIDBN (CVE-2025-54128)
Server side cross-site scripting In @haxtheweb/haxcms-nodejs
5.1
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-Q59I7 (CVE-2025-54127)
Insecure service configuration In @haxtheweb/haxcms-nodejs
8.1
High
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-SGQBS (CVE-2025-49141)
OS Command Injection In @haxtheweb/haxcms-nodejs
6.1
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-QPNMF (CVE-2025-49139)
Clickjacking In @haxtheweb/haxcms-nodejs
2.1
Low
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs