OSV - Open Source Vulnerabilities

MAL-2026-605

npm/dhgshop

Malicious code in dhgshop (npm)

1 hour ago

No fix available

GHSA-vg9h-jx4v-cwx2

PyPI/dfir-unfurl

Unfurl's debug mode cannot be disabled due to string config parsing (Werkzeug debugger exposure)

1 hour ago

No fix available
Severity - 9.3 (Critical)

GHSA-h5qv-qjv4-pc5m

PyPI/dfir-unfurl

Unfurl's unbounded zlib decompression allows decompression bomb DoS

1 hour ago

No fix available

GHSA-j477-6vpg-6c8x

Go/github.com/juju/juju

Juju has broken CMR authorization

1 hour ago

No fix available
Severity - 2.1 (Low)

GHSA-2cp6-34r9-54xx

npm/makerjs

Maker.js has Unsafe Property Copying in makerjs.extendObject

1 hour ago

Fix available
Severity - 6.5 (Medium)

GHSA-c4jr-5q7w-f6r9

Go/github.com/siyuan-note/siyuan/kernel

SiYuan has Arbitrary File Write via /api/file/copyFile leading to RCE

1 hour ago

No fix available
Severity - 9.1 (Critical)

GHSA-r277-3xc5-c79v

PyPI/agpt

AutoGPT is Vulnerable to RCE via Disabled Block Execution

1 hour ago

No fix available
Severity - 9.4 (Critical)

GHSA-83fc-fqcc-2hmg

npm/react-server-dom-parcel
npm/react-server-dom-turbopack
npm/react-server-dom-webpack

React Server Components have multiple Denial of Service Vulnerabilities

1 hour ago

Fix available
Severity - 7.5 (High)

MAL-2026-604

PyPI/securedrop-workstation-dom0-config

Malicious code in securedrop-workstation-dom0-config (PyPI)

3 hours ago

No fix available

MINI-xxq5-p4qf-3jj6

Not specified

See record for full details

3 hours ago

No fix available

MINI-x4mf-8hgh-9v8x

Not specified

See record for full details

3 hours ago

No fix available

MINI-vrcv-2x2r-858f

MinimOS/pnpm

See record for full details

3 hours ago

Fix available

MINI-qg2w-mv6w-hjxw

MinimOS/libcrypto3
MinimOS/libssl3
MinimOS/openssl
MinimOS/openssl-dbg
MinimOS/openssl-dev
... 7 more

See record for full details

3 hours ago

Fix available

MINI-rxwr-777q-phg7

Not specified

See record for full details

3 hours ago

No fix available

MINI-rj3h-gp23-63xh

MinimOS/libcrypto3
MinimOS/libssl3
MinimOS/openssl
MinimOS/openssl-dbg
MinimOS/openssl-dev
... 7 more

See record for full details

3 hours ago

Fix available

MINI-p964-962p-cxcr

MinimOS/argo-workflow-cli-fips-3.6
MinimOS/argo-workflow-controller-compat-fips-3.6
MinimOS/argo-workflow-controller-fips-3.6
MinimOS/argo-workflow-executor-compat-fips-3.6
MinimOS/argo-workflow-executor-fips-3.6
... 2 more

See record for full details

3 hours ago

Fix available