更新: 178 个文件 - 2026-03-18 07:47:37

07-framework-security/cms/directus/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/discourse/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/drupal/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/ghost/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/joomla/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/mediawiki/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/moodle/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/strapi/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/cms/wordpress/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/adobe-commerce/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/magento-open-source/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/medusa/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/opencart/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/openmage/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/prestashop/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/saleor/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/shopware/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/ecommerce/woocommerce/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/angular/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/aspnet-core/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/astro/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/django/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/echo/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/esbuild/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/express/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/fastify/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/flask/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/gin/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/hapi/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/koa/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/laravel/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/nestjs/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/nextjs/INDEX.md

@@ -5,14 +5,14 @@
 - 系统 ID: `nextjs`
 - 分类: `frameworks`
 - 覆盖策略: `history-full`
-- 总案例数: `26`
+- 总案例数: `5`
 - 近 30 天新增/更新: `5`
-- 重点 Markdown 案例数: `26`
-- 已实证(真实版本): `26`
+- 重点 Markdown 案例数: `5`
+- 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
-- 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:08+00:00`
+- 待人工/缺浏览器证据: `5`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 
@@ -32,29 +32,8 @@
 
 | 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
 |------|--------|----------|----------|----------|------------|----------|--------|
-| Next.js HTTP request deserialization can lead to DoS when using insecure React Server Components | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-13T00:43:52.836085Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-h25m-26qc-wcjf.md) |
-| Next.js has Unbounded Memory Consumption via PPR Resume Endpoint  | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-06T13:13:43.709252Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-59472.md) |
-| Next.js self-hosted applications vulnerable to DoS via Image Optimizer remotePatterns configuration | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-10T01:28:46.973023Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-59471.md) |
-| Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:46:38.768104Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-5j59-xgg2-r9c4.md) |
-| Next Server Actions Source Code Exposure  | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:51:40.627151Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-w37m-7fhw-fmv9.md) |
-| Next Vulnerable to Denial of Service with Server Components | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:55:54.855562Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-mwv6-3258-q52c.md) |
-| Next.js is vulnerable to RCE in React flight protocol | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:45:15.823345Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-9qr9-h5gf-34mp.md) |
-| Next.js Affected by Cache Key Confusion for Image Optimization API Routes | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:50:08.291668Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-57752.md) |
-| Next.js Content Injection Vulnerability for Image Optimization | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:35:34.538107Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-55173.md) |
-| Next.js Improper Middleware Redirect Handling Leads to SSRF | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:20:45.658010Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-57822.md) |
-| Next.JS vulnerability can lead to DoS via cache poisoning  | `low` | `generated` | `verified-real` | `real` | `official` | `2025-07-03T21:49:52Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-49826.md) |
-| Next.js has a Cache poisoning vulnerability due to omission of the Vary header | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:37:18.974477Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-49005.md) |
-| Information exposure in Next.js dev server due to lack of origin verification | `medium` | `generated` | `verified-real` | `real` | `official` | `2025-06-13T14:41:21Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-48068.md) |
-| Next.js Race Condition to Cache Poisoning | `low` | `generated` | `verified-real` | `real` | `official` | `2025-09-26T17:48:29Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-32421.md) |
-| Next.js may leak x-middleware-subrequest-id to external hosts | `medium` | `generated` | `verified-real` | `real` | `official` | `2025-10-13T15:35:50Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-30218.md) |
-| Authorization Bypass in Next.js Middleware | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-04T15:06:29.993197Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-29927.md) |
-| Next.js Allows a Denial of Service (DoS) with Server Actions | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:36:04.252972Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2024-56332.md) |
-| Next.js authorization bypass vulnerability | `low` | `generated` | `verified-real` | `real` | `official` | `2025-09-10T21:12:24Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2024-51479.md) |
-| Denial of Service condition in Next.js image optimization | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:25:43.295558Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2024-47831.md) |
-| Next.js Cache Poisoning | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:45:33.402195Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2024-46982.md) |
-| Next.js Server-Side Request Forgery in Server Actions | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:32:36.434669Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2024-34351.md) |
-| Unexpected server crash in Next.js. | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T22:00:36.554552Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2021-43803.md) |
-| XSS in Image Optimization API for Next.js | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T22:00:20.154452Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2021-39178.md) |
-| Open Redirect in Next.js | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T22:00:08.038285Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2021-37699.md) |
-| Open Redirect in Next.js versions | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T22:14:13.665535Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2020-15242.md) |
-| Directory Traversal in Next.js | `low` | `generated` | `verified-real` | `real` | `official` | `2025-09-26T17:49:56Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2020-5284.md) |
+| Next.js: HTTP request smuggling in rewrites | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-17T16:31:26.646070Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-29057.md) |
+| Next.js: Unbounded next/image disk cache growth can exhaust storage | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-17T16:31:33.597080Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27980.md) |
+| Next.js: Unbounded postponed resume buffering can lead to DoS | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-17T16:31:34.160932Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27979.md) |
+| Next.js: null origin can bypass Server Actions CSRF checks | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-17T15:46:43.484729Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27978.md) |
+| Next.js: null origin can bypass dev HMR websocket CSRF checks | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-17T15:46:26.028580Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27977.md) |

07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27977.md

@@ -0,0 +1,96 @@
+---
+title: "Next.js: null origin can bypass dev HMR websocket CSRF checks"
+system_id: "nextjs"
+category: "frameworks"
+advisory_mode: "core"
+published_date: "2026-03-17T15:29:48Z"
+updated_date: "2026-03-17T15:46:26.028580Z"
+severity: "medium"
+exploit_status: "unknown"
+source_confidence: "official"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "official-source"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2026-27977"
+  - "GHSA-jcc7-9wpm-mj36"
+affected_versions:
+  - "introduced=16.0.1, fixed<16.1.7"
+fixed_versions:
+  - "16.1.7"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "proxy-trust-boundary"
+  - "token-cookie-storage"
+primary_source: "https://github.com/vercel/next.js/security/advisories/GHSA-jcc7-9wpm-mj36"
+---
+
+# Next.js: null origin can bypass dev HMR websocket CSRF checks
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `official-source`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `nextjs--CVE-2026-27977`
+- 系统: `nextjs`
+- 严重度: `medium`
+- 来源置信度: `official`
+- 官方主源: https://github.com/vercel/next.js/security/advisories/GHSA-jcc7-9wpm-mj36
+- 影响版本: `introduced=16.0.1, fixed<16.1.7`
+- 修复版本: `16.1.7`
+
+## 其他来源
+
+- https://github.com/vercel/next.js/commit/862f9b9bb41d235e0d8cf44aa811e7fd118cee2a
+- https://github.com/vercel/next.js
+- https://github.com/vercel/next.js/releases/tag/v16.1.7
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/javascript-typescript/proxy-trust-boundary.md)
+- [nodejs:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/nodejs/proxy-trust-boundary.md)
+- [java:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/java/proxy-trust-boundary.md)
+- [php:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/php/proxy-trust-boundary.md)
+- [python:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/python/proxy-trust-boundary.md)
+- [ruby:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/ruby/proxy-trust-boundary.md)
+- [csharp:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/csharp/proxy-trust-boundary.md)
+- [go:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/go/proxy-trust-boundary.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)

07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27978.md

@@ -0,0 +1,96 @@
+---
+title: "Next.js: null origin can bypass Server Actions CSRF checks"
+system_id: "nextjs"
+category: "frameworks"
+advisory_mode: "core"
+published_date: "2026-03-17T15:30:14Z"
+updated_date: "2026-03-17T15:46:43.484729Z"
+severity: "medium"
+exploit_status: "unknown"
+source_confidence: "official"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "official-source"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2026-27978"
+  - "GHSA-mq59-m269-xvcx"
+affected_versions:
+  - "introduced=16.0.1, fixed<16.1.7"
+fixed_versions:
+  - "16.1.7"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "proxy-trust-boundary"
+  - "token-cookie-storage"
+primary_source: "https://github.com/vercel/next.js/security/advisories/GHSA-mq59-m269-xvcx"
+---
+
+# Next.js: null origin can bypass Server Actions CSRF checks
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `official-source`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `nextjs--CVE-2026-27978`
+- 系统: `nextjs`
+- 严重度: `medium`
+- 来源置信度: `official`
+- 官方主源: https://github.com/vercel/next.js/security/advisories/GHSA-mq59-m269-xvcx
+- 影响版本: `introduced=16.0.1, fixed<16.1.7`
+- 修复版本: `16.1.7`
+
+## 其他来源
+
+- https://github.com/vercel/next.js/commit/a27a11d78e748a8c7ccfd14b7759ad2b9bf097d8
+- https://github.com/vercel/next.js
+- https://github.com/vercel/next.js/releases/tag/v16.1.7
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/javascript-typescript/proxy-trust-boundary.md)
+- [nodejs:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/nodejs/proxy-trust-boundary.md)
+- [java:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/java/proxy-trust-boundary.md)
+- [php:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/php/proxy-trust-boundary.md)
+- [python:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/python/proxy-trust-boundary.md)
+- [ruby:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/ruby/proxy-trust-boundary.md)
+- [csharp:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/csharp/proxy-trust-boundary.md)
+- [go:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/go/proxy-trust-boundary.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)

07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27979.md

@@ -0,0 +1,96 @@
+---
+title: "Next.js: Unbounded postponed resume buffering can lead to DoS"
+system_id: "nextjs"
+category: "frameworks"
+advisory_mode: "core"
+published_date: "2026-03-17T16:16:49Z"
+updated_date: "2026-03-17T16:31:34.160932Z"
+severity: "medium"
+exploit_status: "unknown"
+source_confidence: "official"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "official-source"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2026-27979"
+  - "GHSA-h27x-g6w4-24gq"
+affected_versions:
+  - "introduced=16.0.1, fixed<16.1.7"
+fixed_versions:
+  - "16.1.7"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "proxy-trust-boundary"
+  - "token-cookie-storage"
+primary_source: "https://github.com/vercel/next.js/security/advisories/GHSA-h27x-g6w4-24gq"
+---
+
+# Next.js: Unbounded postponed resume buffering can lead to DoS
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `official-source`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `nextjs--CVE-2026-27979`
+- 系统: `nextjs`
+- 严重度: `medium`
+- 来源置信度: `official`
+- 官方主源: https://github.com/vercel/next.js/security/advisories/GHSA-h27x-g6w4-24gq
+- 影响版本: `introduced=16.0.1, fixed<16.1.7`
+- 修复版本: `16.1.7`
+
+## 其他来源
+
+- https://github.com/vercel/next.js/commit/c885d4825f800dd1e49ead37274dcd08cdd6f3f1
+- https://github.com/vercel/next.js
+- https://github.com/vercel/next.js/releases/tag/v16.1.7
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/javascript-typescript/proxy-trust-boundary.md)
+- [nodejs:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/nodejs/proxy-trust-boundary.md)
+- [java:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/java/proxy-trust-boundary.md)
+- [php:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/php/proxy-trust-boundary.md)
+- [python:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/python/proxy-trust-boundary.md)
+- [ruby:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/ruby/proxy-trust-boundary.md)
+- [csharp:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/csharp/proxy-trust-boundary.md)
+- [go:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/go/proxy-trust-boundary.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)

07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27980.md

@@ -0,0 +1,96 @@
+---
+title: "Next.js: Unbounded next/image disk cache growth can exhaust storage"
+system_id: "nextjs"
+category: "frameworks"
+advisory_mode: "core"
+published_date: "2026-03-17T16:17:06Z"
+updated_date: "2026-03-17T16:31:33.597080Z"
+severity: "medium"
+exploit_status: "unknown"
+source_confidence: "official"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "official-source"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2026-27980"
+  - "GHSA-3x4c-7xq6-9pq8"
+affected_versions:
+  - "introduced=10.0.0, fixed<16.1.7"
+fixed_versions:
+  - "16.1.7"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "proxy-trust-boundary"
+  - "token-cookie-storage"
+primary_source: "https://github.com/vercel/next.js/security/advisories/GHSA-3x4c-7xq6-9pq8"
+---
+
+# Next.js: Unbounded next/image disk cache growth can exhaust storage
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `official-source`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `nextjs--CVE-2026-27980`
+- 系统: `nextjs`
+- 严重度: `medium`
+- 来源置信度: `official`
+- 官方主源: https://github.com/vercel/next.js/security/advisories/GHSA-3x4c-7xq6-9pq8
+- 影响版本: `introduced=10.0.0, fixed<16.1.7`
+- 修复版本: `16.1.7`
+
+## 其他来源
+
+- https://github.com/vercel/next.js/commit/39eb8e0ac498b48855a0430fbf4c22276a73b4bd
+- https://github.com/vercel/next.js
+- https://github.com/vercel/next.js/releases/tag/v16.1.7
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/javascript-typescript/proxy-trust-boundary.md)
+- [nodejs:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/nodejs/proxy-trust-boundary.md)
+- [java:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/java/proxy-trust-boundary.md)
+- [php:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/php/proxy-trust-boundary.md)
+- [python:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/python/proxy-trust-boundary.md)
+- [ruby:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/ruby/proxy-trust-boundary.md)
+- [csharp:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/csharp/proxy-trust-boundary.md)
+- [go:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/go/proxy-trust-boundary.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)

07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-29057.md

@@ -0,0 +1,117 @@
+---
+title: "Next.js: HTTP request smuggling in rewrites"
+system_id: "nextjs"
+category: "frameworks"
+advisory_mode: "core"
+published_date: "2026-03-17T16:17:15Z"
+updated_date: "2026-03-17T16:31:26.646070Z"
+severity: "medium"
+exploit_status: "unknown"
+source_confidence: "official"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "official-source"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2026-29057"
+  - "GHSA-ggv3-7p47-pfv8"
+affected_versions:
+  - "introduced=16.0.0-beta.0, fixed<16.1.7"
+  - "introduced=9.5.0, fixed<15.5.13"
+fixed_versions:
+  - "16.1.7"
+  - "15.5.13"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "proxy-trust-boundary"
+  - "token-cookie-storage"
+  - "request-smuggling-boundary"
+  - "dependency-upgrade-policy"
+primary_source: "https://github.com/vercel/next.js/security/advisories/GHSA-ggv3-7p47-pfv8"
+---
+
+# Next.js: HTTP request smuggling in rewrites
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `official-source`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `nextjs--CVE-2026-29057`
+- 系统: `nextjs`
+- 严重度: `medium`
+- 来源置信度: `official`
+- 官方主源: https://github.com/vercel/next.js/security/advisories/GHSA-ggv3-7p47-pfv8
+- 影响版本: `introduced=16.0.0-beta.0, fixed<16.1.7, introduced=9.5.0, fixed<15.5.13`
+- 修复版本: `16.1.7, 15.5.13`
+
+## 其他来源
+
+- https://github.com/vercel/next.js/commit/dc98c04f376c6a1df76ec3e0a2d07edf4abdabd6
+- https://github.com/vercel/next.js
+- https://github.com/vercel/next.js/releases/tag/v15.5.13
+- https://github.com/vercel/next.js/releases/tag/v16.1.7
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/javascript-typescript/proxy-trust-boundary.md)
+- [nodejs:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/nodejs/proxy-trust-boundary.md)
+- [java:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/java/proxy-trust-boundary.md)
+- [php:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/php/proxy-trust-boundary.md)
+- [python:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/python/proxy-trust-boundary.md)
+- [ruby:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/ruby/proxy-trust-boundary.md)
+- [csharp:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/csharp/proxy-trust-boundary.md)
+- [go:proxy-trust-boundary](/Users/x/websafe/05-defense/secure-code/go/proxy-trust-boundary.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)
+- [javascript-typescript:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/javascript-typescript/request-smuggling-boundary.md)
+- [nodejs:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/nodejs/request-smuggling-boundary.md)
+- [java:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/java/request-smuggling-boundary.md)
+- [php:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/php/request-smuggling-boundary.md)
+- [python:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/python/request-smuggling-boundary.md)
+- [ruby:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/ruby/request-smuggling-boundary.md)
+- [csharp:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/csharp/request-smuggling-boundary.md)
+- [go:request-smuggling-boundary](/Users/x/websafe/05-defense/secure-code/go/request-smuggling-boundary.md)
+- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
+- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
+- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
+- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
+- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
+- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
+- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
+- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)

07-framework-security/frameworks/nodejs/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/nuxt/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:08+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/rails/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/react/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:05+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/spring-boot/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/spring-framework/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/spring-security/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/sveltekit/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/symfony/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/undici/INDEX.md

@@ -5,14 +5,14 @@
 - 系统 ID: `undici`
 - 分类: `frameworks`
 - 覆盖策略: `rolling-24m`
-- 总案例数: `14`
-- 近 30 天新增/更新: `7`
-- 重点 Markdown 案例数: `14`
-- 已实证(真实版本): `14`
+- 总案例数: `0`
+- 近 30 天新增/更新: `0`
+- 重点 Markdown 案例数: `0`
+- 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 
@@ -31,17 +31,4 @@
 
 | 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
 |------|--------|----------|----------|----------|------------|----------|--------|
-| Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:25.563997Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1526.md) |
-| Undici has Unhandled Exception in WebSocket Client Due to Invalid server_max_window_bits Validation | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:26.149214Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-2229.md) |
-| Undici has CRLF Injection in undici via `upgrade` option | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:25.572106Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1527.md) |
-| Undici has Unbounded Memory Consumption in its DeduplicationHandler via Response Buffering that leads to DoS | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:25.417862Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-2581.md) |
-| Undici: Malicious WebSocket 64-bit length overflows parser and crashes the client | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-14T09:17:45.838435Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1528.md) |
-| Undici has an HTTP Request/Response Smuggling issue | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-14T09:19:54.772219Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1525.md) |
-| Undici has an unbounded decompression chain in HTTP responses on Node.js Fetch API via Content-Encoding leads to resource exhaustion | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:56:17.456091Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-22036.md) |
-| undici Denial of Service attack via bad certificate data | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-06T22:08:08.311705Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2025-47279.md) |
-| Use of Insufficiently Random Values in undici | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:29:26.373390Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2025-22150.md) |
-| Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect | `low` | `generated` | `verified-real` | `real` | `official` | `2025-11-04T19:44:42Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2024-30261.md) |
-| Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline | `low` | `generated` | `verified-real` | `real` | `official` | `2025-11-04T19:44:28Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2024-30260.md) |
-| Undici's cookie header not cleared on cross-origin redirect in fetch | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:35:56.289390Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2023-45143.md) |
-| undici before v5.8.0 vulnerable to uncleared cookies on cross-host / cross-origin redirect | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:02:08.652391Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2022-31151.md) |
-| ProxyAgent vulnerable to MITM | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T22:15:23.541247Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2022-32210.md) |
+| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |

07-framework-security/frameworks/vite/INDEX.md

@@ -5,14 +5,14 @@
 - 系统 ID: `vite`
 - 分类: `frameworks`
 - 覆盖策略: `history-full`
-- 总案例数: `12`
+- 总案例数: `0`
 - 近 30 天新增/更新: `0`
-- 重点 Markdown 案例数: `12`
-- 已实证(真实版本): `12`
+- 重点 Markdown 案例数: `0`
+- 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:09+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 
@@ -32,15 +32,4 @@
 
 | 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
 |------|--------|----------|----------|----------|------------|----------|--------|
-| vite allows server.fs.deny bypass via backslash on Windows | `medium` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:13:38.886554Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-62522.md) |
-| Vite middleware may serve files starting with the same name with the public directory | `medium` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:33:22.508417Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-58751.md) |
-| Vite's `server.fs` settings were not applied to HTML files | `medium` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:35:16.287471Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-58752.md) |
-| Vite's server.fs.deny bypassed with /. for files under project root | `medium` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:27:17.681639Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-46565.md) |
-| Vite has an `server.fs.deny` bypass with an invalid `request-target` | `medium` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:11:44.900383Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-32395.md) |
-| Vite allows server.fs.deny to be bypassed with .svg or relative paths | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:51:38.412061Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-31486.md) |
-| Vite has a `server.fs.deny` bypassed for `inline` and `raw` with `?import` query | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:37:24.129476Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-31125.md) |
-| Vite bypasses server.fs.deny when using ?raw?? | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:13:24.371631Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-30208.md) |
-| Websites were able to send any requests to the development server and read the response in vite | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:37:03.076966Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2025-24010.md) |
-| Vite DOM Clobbering gadget found in vite bundled scripts that leads to XSS | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:04:22.977459Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2024-45812.md) |
-| Vite's `server.fs.deny` is bypassed when using `?import&raw` | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:05:31.919291Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2024-45811.md) |
-| Vite dev server option `server.fs.deny` can be bypassed when hosted on case-insensitive filesystem | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T04:17:01.410592Z` | [link](/Users/x/websafe/07-framework-security/frameworks/vite/cases/vite-cve-2024-23331.md) |
+| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |

07-framework-security/frameworks/vue/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:08+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/webpack/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/frameworks/werkzeug/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/adminer/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/gitea/INDEX.md

@@ -5,14 +5,14 @@
 - 系统 ID: `gitea`
 - 分类: `platforms`
 - 覆盖策略: `rolling-24m`
-- 总案例数: `37`
-- 近 30 天新增/更新: `37`
-- 重点 Markdown 案例数: `37`
-- 已实证(真实版本): `37`
+- 总案例数: `0`
+- 近 30 天新增/更新: `0`
+- 重点 Markdown 案例数: `0`
+- 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:13+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 
@@ -31,40 +31,4 @@
 
 | 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
 |------|--------|----------|----------|----------|------------|----------|--------|
-| Gitea may send release notification emails for private repositories to users whose access has been revoked in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:54.518308Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-0798.md) |
-| Gitea has improper access control for uploaded attachments in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:53.977351Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20736.md) |
-| Gitea does not properly validate project ownership in organization project operations in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:57.697708Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20750.md) |
-| Gitea improperly exposes issue and pull request titles in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:54.012782Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20800.md) |
-| Gitea improperly exposes issue titles and repository names through previously started stopwatches in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:54.692700Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20883.md) |
-| Gitea does not properly verify authorization when canceling scheduled auto-merges via the web interface in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:56.025932Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20888.md) |
-| Gitea does not properly validate repository ownership when deleting Git LFS locks in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:55.339967Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20897.md) |
-| Gitea does not properly validate ownership when toggling OpenID URI visibility in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:54.244003Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20904.md) |
-| Gitea does not properly validate repository ownership when linking attachments to releases in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:55.747880Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2026-20912.md) |
-| Gitea's /api/v1/user endpoint has different responses for failed authentication depending on whether a username exists in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:49.801641Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-69413.md) |
-| Gitea mishandles authorization for deletion of releases in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:49.095775Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68938.md) |
-| Gitea allows attackers to add attachments with forbidden file extensions in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:48.777563Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68939.md) |
-| Gitea doesn't adequately enforce branch deletion permissions after merging a pull request. in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:50.087298Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68940.md) |
-| Gitea mishandles access to a private resource upon receiving an API token with scope limited to public resources in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:50.339953Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68941.md) |
-| Gitea allows XSS because the search input box (for creating tags and branches) is v-html instead of v-text in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:49.781753Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68942.md) |
-| Gitea inadvertently discloses users' login times by allowing (for example) the lastlogintime explore/users sort order in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:49.213758Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68943.md) |
-| Gitea sometimes mishandles propagation of token scope for access control within one of its own package registries in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:50.526913Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68944.md) |
-| Gitea: anonymous user can visit private user's project in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:51.457970Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68945.md) |
-| Gitea vulnerable to Cross-site Scripting in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:57:50.473303Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2025-68946.md) |
-| Gitea vulnerable to Argument Injection in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:52:41.181693Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-42968.md) |
-| Improper Privilege Management in Gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:52:33.136607Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2021-45330.md) |
-| Gitea Remote Code Execution (RCE) in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:52:20.787387Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2018-18926.md) |
-| Denial of Service in Gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:52:17.939867Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2020-13246.md) |
-| Cross-site Scripting in Gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:52:18.307544Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2021-28378.md) |
-| Gitea Missing Authorization vulnerability in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:50:45.472605Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-0905.md) |
-| Stored Cross-site Scripting in gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:50:45.577318Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-1928.md) |
-| Arbitrary file deletion in gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:50:19.647131Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-27313.md) |
-| Shell command injection in gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:50:23.949796Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-30781.md) |
-| Path Traversal in Gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:50:06.638863Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2021-29134.md) |
-| Reuse of one time passwords allowed in Gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:52:07.604662Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2021-45331.md) |
-| Capture-replay in Gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:52:07.840324Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2021-45327.md) |
-| Gitea erroneous repo clones in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:54:07.076900Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-38795.md) |
-| Gogs and Gitea SSRF Vulnerability in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:54:04.686907Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2018-15192.md) |
-| Gitea XSS Vulnerability in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:53:57.848904Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2019-1010261.md) |
-| Gitea allowed assignment of private issues in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:55:04.505871Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-38183.md) |
-| Buffer Overflow in gitea in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:55:15.307648Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2021-3382.md) |
-| Gitea Open Redirect in code.gitea.io/gitea | `unknown` | `generated` | `verified-real` | `real` | `official` | `2026-03-03T04:51:49.844240Z` | [link](/Users/x/websafe/07-framework-security/platforms/gitea/cases/gitea-cve-2022-1058.md) |
+| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |

07-framework-security/platforms/gitlab-ce/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:13+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/grafana/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:13+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/jenkins/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:13+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/kibana/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:13+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/mattermost/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:13+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/phpmyadmin/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/platforms/redmine/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:13+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/servers/apache-httpd/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/servers/apache-tomcat/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/servers/caddy/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/servers/haproxy/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/servers/nginx/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

07-framework-security/servers/traefik/INDEX.md

@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `0`
-- 最近渲染时间: `2026-03-18T04:06:10+00:00`
+- 最近渲染时间: `2026-03-18T14:45:52+00:00`
 
 ## 目标约束
 

08-threat-intel/generated/coverage-matrix.md

@@ -21,7 +21,7 @@
 | Flask | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Ghost | `cms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Gin | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
-| Gitea | `platforms` | `rolling-24m` | `-` | `yes` | `37` | `37` | `3` | `seeded` | `real:37/synthetic:0/blocked:0` | `33` | `37` | `0` | `2026-03-03T04:57:57.697708Z` |
+| Gitea | `platforms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | GitLab CE | `platforms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Grafana | `platforms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Hapi | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
@@ -37,7 +37,7 @@
 | Medusa | `ecommerce` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Moodle | `cms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | NestJS | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
-| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `26` | `26` | `3` | `seeded` | `real:26/synthetic:0/blocked:0` | `21` | `26` | `0` | `2026-03-13T22:14:13.665535Z` |
+| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `5` | `5` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-17T16:31:34.160932Z` |
 | Nginx | `servers` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Node.js | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Nuxt | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
@@ -57,8 +57,8 @@
 | SvelteKit | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Symfony | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Traefik | `servers` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
-| Undici | `frameworks` | `rolling-24m` | `-` | `yes` | `14` | `14` | `2` | `seeded` | `real:14/synthetic:0/blocked:0` | `0` | `14` | `0` | `2026-03-14T09:19:54.772219Z` |
-| Vite | `frameworks` | `history-full` | `yes` | `yes` | `12` | `12` | `3` | `seeded` | `real:12/synthetic:0/blocked:0` | `12` | `12` | `0` | `2026-02-04T04:37:24.129476Z` |
+| Undici | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
+| Vite | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Vue | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | webpack | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Werkzeug | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |

08-threat-intel/generated/dashboard/architecture.json

@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-03-18T14:22:56+00:00",
+  "generated_at": "2026-03-18T14:45:55+00:00",
   "title": "\u5f53\u524d\u67b6\u6784\u5e93",
   "summary": "\u5de5\u4f5c\u53f0\u3001\u63a7\u5236\u9762\u3001\u6570\u636e\u5c42\u3001\u6388\u6743\u8fb9\u754c\u4e0e\u7cfb\u7edf\u8986\u76d6\u7684\u5f53\u524d\u771f\u503c\u89c6\u56fe\u3002",
   "sections": [
@@ -31,7 +31,7 @@
         },
         {
           "label": "\u5f53\u524d\u6f0f\u6d1e\u6761\u76ee",
-          "value": "89"
+          "value": "5"
         }
       ],
       "fields": [
@@ -49,7 +49,7 @@
         },
         {
           "label": "\u751f\u6210\u65f6\u95f4",
-          "value": "2026-03-18T14:22:56+00:00"
+          "value": "2026-03-18T14:45:55+00:00"
         }
       ],
       "links": [
@@ -5857,7 +5857,7 @@
         },
         {
           "label": "Advisory \u6570",
-          "value": "89"
+          "value": "5"
         },
         {
           "label": "\u72b6\u6001\u7c7b\u578b",
@@ -5865,7 +5865,7 @@
         },
         {
           "label": "\u6700\u8fd1\u5931\u8d25",
-          "value": "0"
+          "value": "5"
         }
       ],
       "items": [
@@ -5875,17 +5875,17 @@
           "open": false,
           "items": [
             {
-              "title": "\u771f\u5b9e\u7248\u672c\u5df2\u5b9e\u8bc1",
-              "summary": "\u5f53\u524d\u7d2f\u8ba1 89 \u6761\u3002",
+              "title": "\u4eba\u5de5\u5206\u8bca",
+              "summary": "\u5f53\u524d\u7d2f\u8ba1 5 \u6761\u3002",
               "open": false,
               "fields": [
                 {
                   "label": "\u72b6\u6001\u7f16\u7801",
-                  "value": "verified-real"
+                  "value": "triage-manual"
                 },
                 {
                   "label": "\u6570\u91cf",
-                  "value": "89"
+                  "value": "5"
                 }
               ]
             }
@@ -5897,9 +5897,134 @@
           "open": false,
           "items": [
             {
-              "title": "\u6682\u65e0\u5931\u8d25\u6837\u672c",
-              "summary": "\u5f53\u524d summary.json \u4e2d\u6ca1\u6709 recent_failures\u3002",
-              "open": false
+              "title": "Next.js: Unbounded postponed resume buffering can lead to DoS",
+              "summary": "\u65e0\u989d\u5916\u963b\u585e\u8bf4\u660e\u3002",
+              "open": false,
+              "badges": [
+                "\u4eba\u5de5\u5206\u8bca"
+              ],
+              "fields": [
+                {
+                  "label": "\u8fd0\u884c ID",
+                  "value": "-"
+                },
+                {
+                  "label": "\u6f0f\u6d1e\u6761\u76ee",
+                  "value": "nextjs--CVE-2026-27979"
+                },
+                {
+                  "label": "\u72b6\u6001",
+                  "value": "\u4eba\u5de5\u5206\u8bca"
+                },
+                {
+                  "label": "\u963b\u585e\u539f\u56e0",
+                  "value": "-"
+                }
+              ]
+            },
+            {
+              "title": "Next.js: Unbounded next/image disk cache growth can exhaust storage",
+              "summary": "\u65e0\u989d\u5916\u963b\u585e\u8bf4\u660e\u3002",
+              "open": false,
+              "badges": [
+                "\u4eba\u5de5\u5206\u8bca"
+              ],
+              "fields": [
+                {
+                  "label": "\u8fd0\u884c ID",
+                  "value": "-"
+                },
+                {
+                  "label": "\u6f0f\u6d1e\u6761\u76ee",
+                  "value": "nextjs--CVE-2026-27980"
+                },
+                {
+                  "label": "\u72b6\u6001",
+                  "value": "\u4eba\u5de5\u5206\u8bca"
+                },
+                {
+                  "label": "\u963b\u585e\u539f\u56e0",
+                  "value": "-"
+                }
+              ]
+            },
+            {
+              "title": "Next.js: HTTP request smuggling in rewrites",
+              "summary": "\u65e0\u989d\u5916\u963b\u585e\u8bf4\u660e\u3002",
+              "open": false,
+              "badges": [
+                "\u4eba\u5de5\u5206\u8bca"
+              ],
+              "fields": [
+                {
+                  "label": "\u8fd0\u884c ID",
+                  "value": "-"
+                },
+                {
+                  "label": "\u6f0f\u6d1e\u6761\u76ee",
+                  "value": "nextjs--CVE-2026-29057"
+                },
+                {
+                  "label": "\u72b6\u6001",
+                  "value": "\u4eba\u5de5\u5206\u8bca"
+                },
+                {
+                  "label": "\u963b\u585e\u539f\u56e0",
+                  "value": "-"
+                }
+              ]
+            },
+            {
+              "title": "Next.js: null origin can bypass Server Actions CSRF checks",
+              "summary": "\u65e0\u989d\u5916\u963b\u585e\u8bf4\u660e\u3002",
+              "open": false,
+              "badges": [
+                "\u4eba\u5de5\u5206\u8bca"
+              ],
+              "fields": [
+                {
+                  "label": "\u8fd0\u884c ID",
+                  "value": "-"
+                },
+                {
+                  "label": "\u6f0f\u6d1e\u6761\u76ee",
+                  "value": "nextjs--CVE-2026-27978"
+                },
+                {
+                  "label": "\u72b6\u6001",
+                  "value": "\u4eba\u5de5\u5206\u8bca"
+                },
+                {
+                  "label": "\u963b\u585e\u539f\u56e0",
+                  "value": "-"
+                }
+              ]
+            },
+            {
+              "title": "Next.js: null origin can bypass dev HMR websocket CSRF checks",
+              "summary": "\u65e0\u989d\u5916\u963b\u585e\u8bf4\u660e\u3002",
+              "open": false,
+              "badges": [
+                "\u4eba\u5de5\u5206\u8bca"
+              ],
+              "fields": [
+                {
+                  "label": "\u8fd0\u884c ID",
+                  "value": "-"
+                },
+                {
+                  "label": "\u6f0f\u6d1e\u6761\u76ee",
+                  "value": "nextjs--CVE-2026-27977"
+                },
+                {
+                  "label": "\u72b6\u6001",
+                  "value": "\u4eba\u5de5\u5206\u8bca"
+                },
+                {
+                  "label": "\u963b\u585e\u539f\u56e0",
+                  "value": "-"
+                }
+              ]
             }
           ]
         }

08-threat-intel/generated/dashboard/data/completeness.json

@@ -1,178 +1,81 @@
 {
-  "generated_at": "2026-03-18T14:22:56+00:00",
-  "advisory_total": 89,
+  "generated_at": "2026-03-18T14:45:55+00:00",
+  "advisory_total": 5,
   "latest_statuses": {
-    "verified-real": 89
+    "triage-manual": 5
   },
   "historical_statuses": {
     "verified-real": 136,
     "blocked-artifact": 3,
     "triage-manual": 1
   },
-  "verified_real": 89,
+  "verified_real": 0,
   "verified_synthetic": 0,
   "blocked": 0,
-  "manual": 0,
-  "verified_ratio": 100.0,
-  "complete": true,
+  "manual": 5,
+  "verified_ratio": 0.0,
+  "complete": false,
   "systems": [
-    {
-      "system_id": "gitea",
-      "display_name": "Gitea",
-      "total": 37,
-      "verified_real": 37,
-      "verified_synthetic": 0,
-      "blocked": 0,
-      "manual": 0,
-      "families": [
-        {
-          "family": "authz-bypass",
-          "total": 3,
-          "verified_real": 3,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "file-upload",
-          "total": 2,
-          "verified_real": 2,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "proxy-boundary",
-          "total": 26,
-          "verified_real": 26,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "ssrf",
-          "total": 1,
-          "verified_real": 1,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "xss",
-          "total": 5,
-          "verified_real": 5,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        }
-      ]
-    },
     {
       "system_id": "nextjs",
       "display_name": "Next.js",
-      "total": 26,
-      "verified_real": 26,
+      "total": 5,
+      "verified_real": 0,
       "verified_synthetic": 0,
       "blocked": 0,
-      "manual": 0,
-      "families": [
-        {
-          "family": "authz-bypass",
-          "total": 2,
-          "verified_real": 2,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "deserialization",
-          "total": 1,
-          "verified_real": 1,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "proxy-boundary",
-          "total": 19,
-          "verified_real": 19,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "ssrf",
-          "total": 2,
-          "verified_real": 2,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        },
-        {
-          "family": "xss",
-          "total": 2,
-          "verified_real": 2,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        }
-      ]
-    },
-    {
-      "system_id": "undici",
-      "display_name": "Undici",
-      "total": 14,
-      "verified_real": 14,
-      "verified_synthetic": 0,
-      "blocked": 0,
-      "manual": 0,
-      "families": [
-        {
-          "family": "ssrf",
-          "total": 14,
-          "verified_real": 14,
-          "verified_synthetic": 0,
-          "blocked": 0,
-          "manual": 0
-        }
-      ]
-    },
-    {
-      "system_id": "vite",
-      "display_name": "Vite",
-      "total": 12,
-      "verified_real": 12,
-      "verified_synthetic": 0,
-      "blocked": 0,
-      "manual": 0,
+      "manual": 5,
       "families": [
         {
           "family": "proxy-boundary",
-          "total": 11,
-          "verified_real": 11,
+          "total": 4,
+          "verified_real": 0,
           "verified_synthetic": 0,
           "blocked": 0,
-          "manual": 0
+          "manual": 4
         },
         {
-          "family": "xss",
+          "family": "request-smuggling",
           "total": 1,
-          "verified_real": 1,
+          "verified_real": 0,
           "verified_synthetic": 0,
           "blocked": 0,
-          "manual": 0
+          "manual": 1
         }
       ]
     }
   ],
   "ingest_health": {
-    "failure_count": 5,
+    "failure_count": 29,
     "failures": [
       "drupal::Drupal Security Advisories Site::HTTPError",
-      "django::Django Security RSS::HTTPError",
-      "haproxy::HAProxy Security Advisories::HTTPError",
       "discourse::Discourse Meta Security::HTTPError",
-      "adobe-commerce::Adobe Security Bulletins::SSLError"
+      "adobe-commerce::Adobe Security Bulletins::ConnectionError",
+      "react::GitHub Global Advisories::TypeError",
+      "nextjs::GitHub Global Advisories::AttributeError",
+      "vue::GitHub Global Advisories::HTTPError",
+      "nuxt::GitHub Global Advisories::HTTPError",
+      "vite::GitHub Global Advisories::HTTPError",
+      "angular::GitHub Global Advisories::HTTPError",
+      "sveltekit::GitHub Global Advisories::HTTPError",
+      "astro::GitHub Global Advisories::HTTPError",
+      "express::GitHub Global Advisories::HTTPError",
+      "nestjs::GitHub Global Advisories::HTTPError",
+      "koa::GitHub Global Advisories::HTTPError",
+      "fastify::GitHub Global Advisories::HTTPError",
+      "hapi::GitHub Global Advisories::HTTPError",
+      "undici::GitHub Global Advisories::HTTPError",
+      "webpack::GitHub Global Advisories::HTTPError",
+      "esbuild::GitHub Global Advisories::HTTPError",
+      "spring-framework::GitHub Global Advisories::HTTPError",
+      "spring-security::GitHub Global Advisories::HTTPError",
+      "spring-boot::GitHub Global Advisories::HTTPError",
+      "laravel::GitHub Global Advisories::HTTPError",
+      "symfony::GitHub Global Advisories::HTTPError",
+      "django::Django Security RSS::HTTPError",
+      "flask::GitHub Global Advisories::HTTPError",
+      "werkzeug::GitHub Global Advisories::HTTPError",
+      "rails::GitHub Global Advisories::HTTPError",
+      "haproxy::HAProxy Security Advisories::HTTPError"
     ]
   },
   "historical_blockers": [

08-threat-intel/generated/dashboard/docs/architecture-library.html

@@ -87,7 +87,7 @@
       <h1>当前架构库镜像</h1>
       <div class="meta">工作台内置镜像页：当前架构库结构化数据镜像。</div>
       <pre>{
-  &quot;generated_at&quot;: &quot;2026-03-18T14:22:56+00:00&quot;,
+  &quot;generated_at&quot;: &quot;2026-03-18T14:45:55+00:00&quot;,
   &quot;title&quot;: &quot;当前架构库&quot;,
   &quot;summary&quot;: &quot;工作台、控制面、数据层、授权边界与系统覆盖的当前真值视图。&quot;,
   &quot;sections&quot;: [
@@ -119,7 +119,7 @@
         },
         {
           &quot;label&quot;: &quot;当前漏洞条目&quot;,
-          &quot;value&quot;: &quot;89&quot;
+          &quot;value&quot;: &quot;5&quot;
         }
       ],
       &quot;fields&quot;: [
@@ -137,7 +137,7 @@
         },
         {
           &quot;label&quot;: &quot;生成时间&quot;,
-          &quot;value&quot;: &quot;2026-03-18T14:22:56+00:00&quot;
+          &quot;value&quot;: &quot;2026-03-18T14:45:55+00:00&quot;
         }
       ],
       &quot;links&quot;: [
@@ -5945,7 +5945,7 @@
         },
         {
           &quot;label&quot;: &quot;Advisory 数&quot;,
-          &quot;value&quot;: &quot;89&quot;
+          &quot;value&quot;: &quot;5&quot;
         },
         {
           &quot;label&quot;: &quot;状态类型&quot;,
@@ -5953,7 +5953,7 @@
         },
         {
           &quot;label&quot;: &quot;最近失败&quot;,
-          &quot;value&quot;: &quot;0&quot;
+          &quot;value&quot;: &quot;5&quot;
         }
       ],
       &quot;items&quot;: [
@@ -5963,17 +5963,17 @@
           &quot;open&quot;: false,
           &quot;items&quot;: [
             {
-              &quot;title&quot;: &quot;真实版本已实证&quot;,
-              &quot;summary&quot;: &quot;当前累计 89 条。&quot;,
+              &quot;title&quot;: &quot;人工分诊&quot;,
+              &quot;summary&quot;: &quot;当前累计 5 条。&quot;,
               &quot;open&quot;: false,
               &quot;fields&quot;: [
                 {
                   &quot;label&quot;: &quot;状态编码&quot;,
-                  &quot;value&quot;: &quot;verified-real&quot;
+                  &quot;value&quot;: &quot;triage-manual&quot;
                 },
                 {
                   &quot;label&quot;: &quot;数量&quot;,
-                  &quot;value&quot;: &quot;89&quot;
+                  &quot;value&quot;: &quot;5&quot;
                 }
               ]
             }
@@ -5985,9 +5985,134 @@
           &quot;open&quot;: false,
           &quot;items&quot;: [
             {
-              &quot;title&quot;: &quot;暂无失败样本&quot;,
-              &quot;summary&quot;: &quot;当前 summary.json 中没有 recent_failures。&quot;,
-              &quot;open&quot;: false
+              &quot;title&quot;: &quot;Next.js: Unbounded postponed resume buffering can lead to DoS&quot;,
+              &quot;summary&quot;: &quot;无额外阻塞说明。&quot;,
+              &quot;open&quot;: false,
+              &quot;badges&quot;: [
+                &quot;人工分诊&quot;
+              ],
+              &quot;fields&quot;: [
+                {
+                  &quot;label&quot;: &quot;运行 ID&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;漏洞条目&quot;,
+                  &quot;value&quot;: &quot;nextjs--CVE-2026-27979&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;状态&quot;,
+                  &quot;value&quot;: &quot;人工分诊&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;阻塞原因&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                }
+              ]
+            },
+            {
+              &quot;title&quot;: &quot;Next.js: Unbounded next/image disk cache growth can exhaust storage&quot;,
+              &quot;summary&quot;: &quot;无额外阻塞说明。&quot;,
+              &quot;open&quot;: false,
+              &quot;badges&quot;: [
+                &quot;人工分诊&quot;
+              ],
+              &quot;fields&quot;: [
+                {
+                  &quot;label&quot;: &quot;运行 ID&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;漏洞条目&quot;,
+                  &quot;value&quot;: &quot;nextjs--CVE-2026-27980&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;状态&quot;,
+                  &quot;value&quot;: &quot;人工分诊&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;阻塞原因&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                }
+              ]
+            },
+            {
+              &quot;title&quot;: &quot;Next.js: HTTP request smuggling in rewrites&quot;,
+              &quot;summary&quot;: &quot;无额外阻塞说明。&quot;,
+              &quot;open&quot;: false,
+              &quot;badges&quot;: [
+                &quot;人工分诊&quot;
+              ],
+              &quot;fields&quot;: [
+                {
+                  &quot;label&quot;: &quot;运行 ID&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;漏洞条目&quot;,
+                  &quot;value&quot;: &quot;nextjs--CVE-2026-29057&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;状态&quot;,
+                  &quot;value&quot;: &quot;人工分诊&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;阻塞原因&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                }
+              ]
+            },
+            {
+              &quot;title&quot;: &quot;Next.js: null origin can bypass Server Actions CSRF checks&quot;,
+              &quot;summary&quot;: &quot;无额外阻塞说明。&quot;,
+              &quot;open&quot;: false,
+              &quot;badges&quot;: [
+                &quot;人工分诊&quot;
+              ],
+              &quot;fields&quot;: [
+                {
+                  &quot;label&quot;: &quot;运行 ID&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;漏洞条目&quot;,
+                  &quot;value&quot;: &quot;nextjs--CVE-2026-27978&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;状态&quot;,
+                  &quot;value&quot;: &quot;人工分诊&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;阻塞原因&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                }
+              ]
+            },
+            {
+              &quot;title&quot;: &quot;Next.js: null origin can bypass dev HMR websocket CSRF checks&quot;,
+              &quot;summary&quot;: &quot;无额外阻塞说明。&quot;,
+              &quot;open&quot;: false,
+              &quot;badges&quot;: [
+                &quot;人工分诊&quot;
+              ],
+              &quot;fields&quot;: [
+                {
+                  &quot;label&quot;: &quot;运行 ID&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;漏洞条目&quot;,
+                  &quot;value&quot;: &quot;nextjs--CVE-2026-27977&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;状态&quot;,
+                  &quot;value&quot;: &quot;人工分诊&quot;
+                },
+                {
+                  &quot;label&quot;: &quot;阻塞原因&quot;,
+                  &quot;value&quot;: &quot;-&quot;
+                }
+              ]
             }
           ]
         }

08-threat-intel/generated/dashboard/docs/coverage-matrix.html

@@ -109,7 +109,7 @@
 | Flask | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Ghost | `cms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Gin | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
-| Gitea | `platforms` | `rolling-24m` | `-` | `yes` | `37` | `37` | `3` | `seeded` | `real:37/synthetic:0/blocked:0` | `33` | `37` | `0` | `2026-03-03T04:57:57.697708Z` |
+| Gitea | `platforms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | GitLab CE | `platforms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Grafana | `platforms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Hapi | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
@@ -125,7 +125,7 @@
 | Medusa | `ecommerce` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Moodle | `cms` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | NestJS | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
-| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `26` | `26` | `3` | `seeded` | `real:26/synthetic:0/blocked:0` | `21` | `26` | `0` | `2026-03-13T22:14:13.665535Z` |
+| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `5` | `5` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-17T16:31:34.160932Z` |
 | Nginx | `servers` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Node.js | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Nuxt | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
@@ -145,8 +145,8 @@
 | SvelteKit | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Symfony | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Traefik | `servers` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
-| Undici | `frameworks` | `rolling-24m` | `-` | `yes` | `14` | `14` | `2` | `seeded` | `real:14/synthetic:0/blocked:0` | `0` | `14` | `0` | `2026-03-14T09:19:54.772219Z` |
-| Vite | `frameworks` | `history-full` | `yes` | `yes` | `12` | `12` | `3` | `seeded` | `real:12/synthetic:0/blocked:0` | `12` | `12` | `0` | `2026-02-04T04:37:24.129476Z` |
+| Undici | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
+| Vite | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Vue | `frameworks` | `history-full` | `yes` | `yes` | `0` | `0` | `3` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | webpack | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
 | Werkzeug | `frameworks` | `rolling-24m` | `-` | `yes` | `0` | `0` | `2` | `scaffolded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |

08-threat-intel/generated/dashboard/docs/testing-completeness-report.html

@@ -88,21 +88,18 @@
       <div class="meta">工作台内置镜像页：89 条 advisory 最新完整度、family 矩阵与 ingest 健康度。</div>
       <pre># 全库 Advisory 完整度报告
 
-- 生成时间: `2026-03-18T14:22:56+00:00`
-- 最新 advisory 完整度: `89/89` `verified-real`
+- 生成时间: `2026-03-18T14:45:55+00:00`
+- 最新 advisory 完整度: `0/5` `verified-real`
 - 合成验证数量: `0`
 - 阻塞数量: `0`
-- 人工/待补证据数量: `0`
-- 完整度百分比: `100.0%`
+- 人工/待补证据数量: `5`
+- 完整度百分比: `0.0%`
 
 ## 系统覆盖矩阵
 
 | 系统 | 总数 | verified-real | verified-synthetic | blocked | manual | family 覆盖 |
 | --- | ---: | ---: | ---: | ---: | ---: | --- |
-| gitea | 37 | 37 | 0 | 0 | 0 | authz-bypass(3/3), file-upload(2/2), proxy-boundary(26/26), ssrf(1/1), xss(5/5) |
-| nextjs | 26 | 26 | 0 | 0 | 0 | authz-bypass(2/2), deserialization(1/1), proxy-boundary(19/19), ssrf(2/2), xss(2/2) |
-| undici | 14 | 14 | 0 | 0 | 0 | ssrf(14/14) |
-| vite | 12 | 12 | 0 | 0 | 0 | proxy-boundary(11/11), xss(1/1) |
+| nextjs | 5 | 0 | 0 | 0 | 5 | proxy-boundary(0/4), request-smuggling(0/1) |
 
 ## 历史阻塞项修复纪要
 
@@ -113,12 +110,36 @@
 
 ## Ingest / Source 健康度
 
-- source failures: `5`
+- source failures: `29`
 - drupal::Drupal Security Advisories Site::HTTPError
-- django::Django Security RSS::HTTPError
-- haproxy::HAProxy Security Advisories::HTTPError
 - discourse::Discourse Meta Security::HTTPError
-- adobe-commerce::Adobe Security Bulletins::SSLError
+- adobe-commerce::Adobe Security Bulletins::ConnectionError
+- react::GitHub Global Advisories::TypeError
+- nextjs::GitHub Global Advisories::AttributeError
+- vue::GitHub Global Advisories::HTTPError
+- nuxt::GitHub Global Advisories::HTTPError
+- vite::GitHub Global Advisories::HTTPError
+- angular::GitHub Global Advisories::HTTPError
+- sveltekit::GitHub Global Advisories::HTTPError
+- astro::GitHub Global Advisories::HTTPError
+- express::GitHub Global Advisories::HTTPError
+- nestjs::GitHub Global Advisories::HTTPError
+- koa::GitHub Global Advisories::HTTPError
+- fastify::GitHub Global Advisories::HTTPError
+- hapi::GitHub Global Advisories::HTTPError
+- undici::GitHub Global Advisories::HTTPError
+- webpack::GitHub Global Advisories::HTTPError
+- esbuild::GitHub Global Advisories::HTTPError
+- spring-framework::GitHub Global Advisories::HTTPError
+- spring-security::GitHub Global Advisories::HTTPError
+- spring-boot::GitHub Global Advisories::HTTPError
+- laravel::GitHub Global Advisories::HTTPError
+- symfony::GitHub Global Advisories::HTTPError
+- django::Django Security RSS::HTTPError
+- flask::GitHub Global Advisories::HTTPError
+- werkzeug::GitHub Global Advisories::HTTPError
+- rails::GitHub Global Advisories::HTTPError
+- haproxy::HAProxy Security Advisories::HTTPError
 
 ## 剩余风险说明
 

08-threat-intel/generated/dashboard/summary.json

@@ -1,171 +1,90 @@
 {
-  "generated_at": "2026-03-18T14:22:56+00:00",
-  "advisory_count": 89,
+  "generated_at": "2026-03-18T14:45:55+00:00",
+  "advisory_count": 5,
   "run_count": 140,
   "statuses": {
-    "verified-real": 89
+    "triage-manual": 5
   },
   "run_statuses": {
     "verified-real": 136,
     "blocked-artifact": 3,
     "triage-manual": 1
   },
-  "recent_failures": [],
-  "systems": [
+  "recent_failures": [
     {
-      "system_id": "gitea",
-      "display_name": "Gitea",
-      "total": 37,
-      "verified_real": 37,
-      "verified_synthetic": 0,
-      "blocked": 0,
-      "manual": 0,
-      "browser_required": 5,
-      "browser_present": 33,
-      "latest_update": "2026-03-03T04:57:57.697708Z",
-      "category": "platforms",
-      "tier": "rolling-24m",
-      "output_dir": "07-framework-security/platforms/gitea",
-      "families": [
-        {
-          "family": "authz-bypass",
-          "total": 3,
-          "verified_real": 3,
-          "manual": 0
-        },
-        {
-          "family": "file-upload",
-          "total": 2,
-          "verified_real": 2,
-          "manual": 0
-        },
-        {
-          "family": "proxy-boundary",
-          "total": 26,
-          "verified_real": 26,
-          "manual": 0
-        },
-        {
-          "family": "ssrf",
-          "total": 1,
-          "verified_real": 1,
-          "manual": 0
-        },
-        {
-          "family": "xss",
-          "total": 5,
-          "verified_real": 5,
-          "manual": 0
-        }
-      ]
+      "run_id": null,
+      "advisory_id": "nextjs--CVE-2026-27979",
+      "status": "triage-manual",
+      "title": "Next.js: Unbounded postponed resume buffering can lead to DoS",
+      "blocked_reason": null
     },
+    {
+      "run_id": null,
+      "advisory_id": "nextjs--CVE-2026-27980",
+      "status": "triage-manual",
+      "title": "Next.js: Unbounded next/image disk cache growth can exhaust storage",
+      "blocked_reason": null
+    },
+    {
+      "run_id": null,
+      "advisory_id": "nextjs--CVE-2026-29057",
+      "status": "triage-manual",
+      "title": "Next.js: HTTP request smuggling in rewrites",
+      "blocked_reason": null
+    },
+    {
+      "run_id": null,
+      "advisory_id": "nextjs--CVE-2026-27978",
+      "status": "triage-manual",
+      "title": "Next.js: null origin can bypass Server Actions CSRF checks",
+      "blocked_reason": null
+    },
+    {
+      "run_id": null,
+      "advisory_id": "nextjs--CVE-2026-27977",
+      "status": "triage-manual",
+      "title": "Next.js: null origin can bypass dev HMR websocket CSRF checks",
+      "blocked_reason": null
+    }
+  ],
+  "systems": [
     {
       "system_id": "nextjs",
       "display_name": "Next.js",
-      "total": 26,
-      "verified_real": 26,
+      "total": 5,
+      "verified_real": 0,
       "verified_synthetic": 0,
       "blocked": 0,
-      "manual": 0,
-      "browser_required": 2,
-      "browser_present": 21,
-      "latest_update": "2026-03-13T22:14:13.665535Z",
+      "manual": 5,
+      "browser_required": 0,
+      "browser_present": 0,
+      "latest_update": "2026-03-17T16:31:34.160932Z",
       "category": "frameworks",
       "tier": "history-full",
       "output_dir": "07-framework-security/frameworks/nextjs",
       "families": [
-        {
-          "family": "authz-bypass",
-          "total": 2,
-          "verified_real": 2,
-          "manual": 0
-        },
-        {
-          "family": "deserialization",
-          "total": 1,
-          "verified_real": 1,
-          "manual": 0
-        },
         {
           "family": "proxy-boundary",
-          "total": 19,
-          "verified_real": 19,
-          "manual": 0
+          "total": 4,
+          "verified_real": 0,
+          "manual": 4
         },
         {
-          "family": "ssrf",
-          "total": 2,
-          "verified_real": 2,
-          "manual": 0
-        },
-        {
-          "family": "xss",
-          "total": 2,
-          "verified_real": 2,
-          "manual": 0
-        }
-      ]
-    },
-    {
-      "system_id": "undici",
-      "display_name": "Undici",
-      "total": 14,
-      "verified_real": 14,
-      "verified_synthetic": 0,
-      "blocked": 0,
-      "manual": 0,
-      "browser_required": 0,
-      "browser_present": 0,
-      "latest_update": "2026-03-14T09:19:54.772219Z",
-      "category": "frameworks",
-      "tier": "rolling-24m",
-      "output_dir": "07-framework-security/frameworks/undici",
-      "families": [
-        {
-          "family": "ssrf",
-          "total": 14,
-          "verified_real": 14,
-          "manual": 0
-        }
-      ]
-    },
-    {
-      "system_id": "vite",
-      "display_name": "Vite",
-      "total": 12,
-      "verified_real": 12,
-      "verified_synthetic": 0,
-      "blocked": 0,
-      "manual": 0,
-      "browser_required": 3,
-      "browser_present": 12,
-      "latest_update": "2026-02-04T04:37:24.129476Z",
-      "category": "frameworks",
-      "tier": "history-full",
-      "output_dir": "07-framework-security/frameworks/vite",
-      "families": [
-        {
-          "family": "proxy-boundary",
-          "total": 11,
-          "verified_real": 11,
-          "manual": 0
-        },
-        {
-          "family": "xss",
+          "family": "request-smuggling",
           "total": 1,
-          "verified_real": 1,
-          "manual": 0
+          "verified_real": 0,
+          "manual": 1
         }
       ]
     }
   ],
   "completeness": {
-    "advisory_total": 89,
-    "verified_real": 89,
+    "advisory_total": 5,
+    "verified_real": 0,
     "verified_synthetic": 0,
     "blocked": 0,
-    "manual": 0,
-    "verified_ratio": 100.0,
-    "complete": true
+    "manual": 5,
+    "verified_ratio": 0.0,
+    "complete": false
   }
 }

08-threat-intel/generated/dashboard/systems.json

@@ -1,147 +1,30 @@
 [
-  {
-    "system_id": "gitea",
-    "display_name": "Gitea",
-    "total": 37,
-    "verified_real": 37,
-    "verified_synthetic": 0,
-    "blocked": 0,
-    "manual": 0,
-    "browser_required": 5,
-    "browser_present": 33,
-    "latest_update": "2026-03-03T04:57:57.697708Z",
-    "category": "platforms",
-    "tier": "rolling-24m",
-    "output_dir": "07-framework-security/platforms/gitea",
-    "families": [
-      {
-        "family": "authz-bypass",
-        "total": 3,
-        "verified_real": 3,
-        "manual": 0
-      },
-      {
-        "family": "file-upload",
-        "total": 2,
-        "verified_real": 2,
-        "manual": 0
-      },
-      {
-        "family": "proxy-boundary",
-        "total": 26,
-        "verified_real": 26,
-        "manual": 0
-      },
-      {
-        "family": "ssrf",
-        "total": 1,
-        "verified_real": 1,
-        "manual": 0
-      },
-      {
-        "family": "xss",
-        "total": 5,
-        "verified_real": 5,
-        "manual": 0
-      }
-    ]
-  },
   {
     "system_id": "nextjs",
     "display_name": "Next.js",
-    "total": 26,
-    "verified_real": 26,
+    "total": 5,
+    "verified_real": 0,
     "verified_synthetic": 0,
     "blocked": 0,
-    "manual": 0,
-    "browser_required": 2,
-    "browser_present": 21,
-    "latest_update": "2026-03-13T22:14:13.665535Z",
+    "manual": 5,
+    "browser_required": 0,
+    "browser_present": 0,
+    "latest_update": "2026-03-17T16:31:34.160932Z",
     "category": "frameworks",
     "tier": "history-full",
     "output_dir": "07-framework-security/frameworks/nextjs",
     "families": [
-      {
-        "family": "authz-bypass",
-        "total": 2,
-        "verified_real": 2,
-        "manual": 0
-      },
-      {
-        "family": "deserialization",
-        "total": 1,
-        "verified_real": 1,
-        "manual": 0
-      },
       {
         "family": "proxy-boundary",
-        "total": 19,
-        "verified_real": 19,
-        "manual": 0
+        "total": 4,
+        "verified_real": 0,
+        "manual": 4
       },
       {
-        "family": "ssrf",
-        "total": 2,
-        "verified_real": 2,
-        "manual": 0
-      },
-      {
-        "family": "xss",
-        "total": 2,
-        "verified_real": 2,
-        "manual": 0
-      }
-    ]
-  },
-  {
-    "system_id": "undici",
-    "display_name": "Undici",
-    "total": 14,
-    "verified_real": 14,
-    "verified_synthetic": 0,
-    "blocked": 0,
-    "manual": 0,
-    "browser_required": 0,
-    "browser_present": 0,
-    "latest_update": "2026-03-14T09:19:54.772219Z",
-    "category": "frameworks",
-    "tier": "rolling-24m",
-    "output_dir": "07-framework-security/frameworks/undici",
-    "families": [
-      {
-        "family": "ssrf",
-        "total": 14,
-        "verified_real": 14,
-        "manual": 0
-      }
-    ]
-  },
-  {
-    "system_id": "vite",
-    "display_name": "Vite",
-    "total": 12,
-    "verified_real": 12,
-    "verified_synthetic": 0,
-    "blocked": 0,
-    "manual": 0,
-    "browser_required": 3,
-    "browser_present": 12,
-    "latest_update": "2026-02-04T04:37:24.129476Z",
-    "category": "frameworks",
-    "tier": "history-full",
-    "output_dir": "07-framework-security/frameworks/vite",
-    "families": [
-      {
-        "family": "proxy-boundary",
-        "total": 11,
-        "verified_real": 11,
-        "manual": 0
-      },
-      {
-        "family": "xss",
+        "family": "request-smuggling",
         "total": 1,
-        "verified_real": 1,
-        "manual": 0
+        "verified_real": 0,
+        "manual": 1
       }
     ]
   }

08-threat-intel/generated/latest-ingest.md

@@ -1,19 +1,43 @@
 # 最新同步摘要
 
-- 渲染时间: `2026-03-18T14:22:48+00:00`
+- 渲染时间: `2026-03-18T14:45:54+00:00`
 - 系统数量: `62`
-- Advisory 数量: `89`
-- 重点 Markdown 数量: `89`
+- Advisory 数量: `5`
+- 重点 Markdown 数量: `5`
 - Run Bundle 数量: `89`
-- 新增记录: `0`
+- 新增记录: `5`
 - 更新记录: `0`
 - Triage 数量: `0`
-- 失败的 source adapter: `5`
+- 失败的 source adapter: `29`
 
 ## 失败列表
 
 - drupal::Drupal Security Advisories Site::HTTPError
-- django::Django Security RSS::HTTPError
-- haproxy::HAProxy Security Advisories::HTTPError
 - discourse::Discourse Meta Security::HTTPError
-- adobe-commerce::Adobe Security Bulletins::SSLError
+- adobe-commerce::Adobe Security Bulletins::ConnectionError
+- react::GitHub Global Advisories::TypeError
+- nextjs::GitHub Global Advisories::AttributeError
+- vue::GitHub Global Advisories::HTTPError
+- nuxt::GitHub Global Advisories::HTTPError
+- vite::GitHub Global Advisories::HTTPError
+- angular::GitHub Global Advisories::HTTPError
+- sveltekit::GitHub Global Advisories::HTTPError
+- astro::GitHub Global Advisories::HTTPError
+- express::GitHub Global Advisories::HTTPError
+- nestjs::GitHub Global Advisories::HTTPError
+- koa::GitHub Global Advisories::HTTPError
+- fastify::GitHub Global Advisories::HTTPError
+- hapi::GitHub Global Advisories::HTTPError
+- undici::GitHub Global Advisories::HTTPError
+- webpack::GitHub Global Advisories::HTTPError
+- esbuild::GitHub Global Advisories::HTTPError
+- spring-framework::GitHub Global Advisories::HTTPError
+- spring-security::GitHub Global Advisories::HTTPError
+- spring-boot::GitHub Global Advisories::HTTPError
+- laravel::GitHub Global Advisories::HTTPError
+- symfony::GitHub Global Advisories::HTTPError
+- django::Django Security RSS::HTTPError
+- flask::GitHub Global Advisories::HTTPError
+- werkzeug::GitHub Global Advisories::HTTPError
+- rails::GitHub Global Advisories::HTTPError
+- haproxy::HAProxy Security Advisories::HTTPError

08-threat-intel/generated/run-summary.json

@@ -1,18 +1,44 @@
 {
-  "generated_at": "2026-03-18T14:22:48+00:00",
+  "generated_at": "2026-03-18T14:45:54+00:00",
   "system_count": 62,
-  "advisory_count": 89,
-  "markdown_count": 89,
-  "new_count": 0,
+  "advisory_count": 5,
+  "markdown_count": 5,
+  "new_count": 5,
   "updated_count": 0,
-  "systems_touched": [],
+  "systems_touched": [
+    "nextjs"
+  ],
   "triage_count": 0,
   "run_bundle_count": 89,
   "failures": [
     "drupal::Drupal Security Advisories Site::HTTPError",
-    "django::Django Security RSS::HTTPError",
-    "haproxy::HAProxy Security Advisories::HTTPError",
     "discourse::Discourse Meta Security::HTTPError",
-    "adobe-commerce::Adobe Security Bulletins::SSLError"
+    "adobe-commerce::Adobe Security Bulletins::ConnectionError",
+    "react::GitHub Global Advisories::TypeError",
+    "nextjs::GitHub Global Advisories::AttributeError",
+    "vue::GitHub Global Advisories::HTTPError",
+    "nuxt::GitHub Global Advisories::HTTPError",
+    "vite::GitHub Global Advisories::HTTPError",
+    "angular::GitHub Global Advisories::HTTPError",
+    "sveltekit::GitHub Global Advisories::HTTPError",
+    "astro::GitHub Global Advisories::HTTPError",
+    "express::GitHub Global Advisories::HTTPError",
+    "nestjs::GitHub Global Advisories::HTTPError",
+    "koa::GitHub Global Advisories::HTTPError",
+    "fastify::GitHub Global Advisories::HTTPError",
+    "hapi::GitHub Global Advisories::HTTPError",
+    "undici::GitHub Global Advisories::HTTPError",
+    "webpack::GitHub Global Advisories::HTTPError",
+    "esbuild::GitHub Global Advisories::HTTPError",
+    "spring-framework::GitHub Global Advisories::HTTPError",
+    "spring-security::GitHub Global Advisories::HTTPError",
+    "spring-boot::GitHub Global Advisories::HTTPError",
+    "laravel::GitHub Global Advisories::HTTPError",
+    "symfony::GitHub Global Advisories::HTTPError",
+    "django::Django Security RSS::HTTPError",
+    "flask::GitHub Global Advisories::HTTPError",
+    "werkzeug::GitHub Global Advisories::HTTPError",
+    "rails::GitHub Global Advisories::HTTPError",
+    "haproxy::HAProxy Security Advisories::HTTPError"
   ]
 }

08-threat-intel/registry/advisories/gitea--CVE-2018-15192.json

@@ -1,82 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2018-15192",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gogs and Gitea SSRF Vulnerability in code.gitea.io/gitea",
-  "summary": "Gogs and Gitea SSRF Vulnerability in code.gitea.io/gitea",
-  "published_at": "2024-08-20T20:32:20Z",
-  "updated_at": "2026-03-03T04:54:04.686907Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-fg3x-rwq9-74cw",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2018-15192",
-    "https://github.com/go-gitea/gitea/commit/599ff1c054e436daa4dc3f049aa8661d9c2395f9",
-    "https://github.com/go-gitea/gitea/issues/4624",
-    "https://github.com/go-gitea/gitea/pull/17482",
-    "https://github.com/gogs/gogs/commit/22717a1c064511cf37c46af5e650baf7184cf25b",
-    "https://github.com/gogs/gogs/issues/5366",
-    "https://github.com/gogs/gogs/pull/6002"
-  ],
-  "aliases": [
-    "CVE-2018-15192",
-    "GHSA-fg3x-rwq9-74cw",
-    "GO-2023-1971"
-  ],
-  "cve_ids": [
-    "CVE-2018-15192"
-  ],
-  "ghsa_ids": [
-    "GHSA-fg3x-rwq9-74cw"
-  ],
-  "osv_ids": [
-    "GO-2023-1971"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.16.0-rc1",
-    "introduced=0, fixed<0.12.0"
-  ],
-  "fixed_versions": [
-    "1.16.0-rc1",
-    "0.12.0"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2018-15192.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary",
-    "ssrf-url-validation"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "verified-real",
-  "verification_mode": "real",
-  "last_verified_at": "2026-03-18T01:27:54+00:00",
-  "last_run_id": "gitea-gitea--CVE-2018-15192-20260318012749",
-  "evidence_bundle": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-15192-20260318012749",
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": [],
-    "baseline_refs": [],
-    "proof_refs": [],
-    "baseline_title": null,
-    "proof_title": null,
-    "error_kind": null,
-    "reason": null
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "local-fixture",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2018-18926.json

@@ -1,99 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2018-18926",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea Remote Code Execution (RCE) in code.gitea.io/gitea",
-  "summary": "Gitea Remote Code Execution (RCE) in code.gitea.io/gitea",
-  "published_at": "2024-08-21T15:29:04Z",
-  "updated_at": "2026-03-03T04:52:20.787387Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-hf6f-jq25-8gq9",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2018-18926",
-    "https://github.com/go-gitea/gitea/commit/aeb5655c25053bdcd7eee94ea37df88468374162",
-    "https://github.com/go-gitea/gitea/issues/5140",
-    "https://github.com/go-gitea/gitea/pull/5177"
-  ],
-  "aliases": [
-    "CVE-2018-18926",
-    "GHSA-hf6f-jq25-8gq9",
-    "GO-2022-0844"
-  ],
-  "cve_ids": [
-    "CVE-2018-18926"
-  ],
-  "ghsa_ids": [
-    "GHSA-hf6f-jq25-8gq9"
-  ],
-  "osv_ids": [
-    "GO-2022-0844"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.5.2"
-  ],
-  "fixed_versions": [
-    "1.5.2"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2018-18926.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "verified-real",
-  "verification_mode": "real",
-  "last_verified_at": "2026-03-18T01:25:45+00:00",
-  "last_run_id": "gitea-gitea--CVE-2018-18926-20260318012526",
-  "evidence_bundle": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526",
-  "browser_evidence": {
-    "required": true,
-    "present": true,
-    "refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/baseline-page.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/proof-page.json"
-    ],
-    "baseline_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/baseline-page.json"
-    ],
-    "proof_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2018-18926-20260318012526/logs/proof-page.json"
-    ],
-    "baseline_title": "Gitea Proxy Boundary Fixture",
-    "proof_title": "Gitea Proxy Boundary Fixture - proof",
-    "error_kind": null,
-    "reason": null
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "local-fixture",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2019-1010261.json

@@ -1,98 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2019-1010261",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea XSS Vulnerability in code.gitea.io/gitea",
-  "summary": "Gitea XSS Vulnerability in code.gitea.io/gitea",
-  "published_at": "2024-08-20T20:31:38Z",
-  "updated_at": "2026-03-03T04:53:57.848904Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-5rh7-6gfj-mc87",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2019-1010261",
-    "https://github.com/go-gitea/gitea/pull/5905"
-  ],
-  "aliases": [
-    "CVE-2019-1010261",
-    "GHSA-5rh7-6gfj-mc87",
-    "GO-2023-1922"
-  ],
-  "cve_ids": [
-    "CVE-2019-1010261"
-  ],
-  "ghsa_ids": [
-    "GHSA-5rh7-6gfj-mc87"
-  ],
-  "osv_ids": [
-    "GO-2023-1922"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.7.1"
-  ],
-  "fixed_versions": [
-    "1.7.1"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2019-1010261.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary",
-    "xss-output-encoding"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "verified-real",
-  "verification_mode": "real",
-  "last_verified_at": "2026-03-18T01:26:30+00:00",
-  "last_run_id": "gitea-gitea--CVE-2019-1010261-20260318012624",
-  "evidence_bundle": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624",
-  "browser_evidence": {
-    "required": true,
-    "present": true,
-    "refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/baseline-page.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/proof-page.json"
-    ],
-    "baseline_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/baseline-page.json"
-    ],
-    "proof_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2019-1010261-20260318012624/logs/proof-page.json"
-    ],
-    "baseline_title": "Gitea Stored XSS Fixture",
-    "proof_title": "Gitea Stored XSS Fixture - proof",
-    "error_kind": null,
-    "reason": null
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "local-fixture",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2020-13246.json

@@ -1,100 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2020-13246",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Denial of Service in Gitea in code.gitea.io/gitea",
-  "summary": "Denial of Service in Gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T15:29:04Z",
-  "updated_at": "2026-03-03T04:52:17.939867Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-g2qx-6ghw-67hm",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2020-13246",
-    "https://github.com/go-gitea/gitea/issues/10549",
-    "https://github.com/go-gitea/gitea/pull/11438",
-    "https://www.youtube.com/watch?v=DmVgADSVS88"
-  ],
-  "aliases": [
-    "BIT-gitea-2020-13246",
-    "CVE-2020-13246",
-    "GHSA-g2qx-6ghw-67hm",
-    "GO-2022-0830"
-  ],
-  "cve_ids": [
-    "CVE-2020-13246"
-  ],
-  "ghsa_ids": [
-    "GHSA-g2qx-6ghw-67hm"
-  ],
-  "osv_ids": [
-    "GO-2022-0830"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.12.0"
-  ],
-  "fixed_versions": [
-    "1.12.0"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2020-13246.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "verified-real",
-  "verification_mode": "real",
-  "last_verified_at": "2026-03-18T01:28:13+00:00",
-  "last_run_id": "gitea-gitea--CVE-2020-13246-20260318012806",
-  "evidence_bundle": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806",
-  "browser_evidence": {
-    "required": true,
-    "present": true,
-    "refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/baseline-page.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/proof-page.json"
-    ],
-    "baseline_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/baseline-page.json"
-    ],
-    "proof_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2020-13246-20260318012806/logs/proof-page.json"
-    ],
-    "baseline_title": "Gitea Proxy Boundary Fixture",
-    "proof_title": "Gitea Proxy Boundary Fixture - proof",
-    "error_kind": null,
-    "reason": null
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "local-fixture",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2021-28378.json

@@ -1,102 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2021-28378",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Cross-site Scripting in Gitea in code.gitea.io/gitea",
-  "summary": "Cross-site Scripting in Gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T15:29:04Z",
-  "updated_at": "2026-03-03T04:52:18.307544Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-g95p-88p4-76cm",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2021-28378",
-    "https://blog.gitea.io/2021/03/gitea-1.13.4-is-released",
-    "https://github.com/PandatiX/CVE-2021-28378",
-    "https://github.com/go-gitea/gitea/pull/14898",
-    "https://github.com/go-gitea/gitea/pull/14899"
-  ],
-  "aliases": [
-    "BIT-gitea-2021-28378",
-    "CVE-2021-28378",
-    "GHSA-g95p-88p4-76cm",
-    "GO-2022-0832"
-  ],
-  "cve_ids": [
-    "CVE-2021-28378"
-  ],
-  "ghsa_ids": [
-    "GHSA-g95p-88p4-76cm"
-  ],
-  "osv_ids": [
-    "GO-2022-0832"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.13.4"
-  ],
-  "fixed_versions": [
-    "1.13.4"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2021-28378.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary",
-    "xss-output-encoding"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "verified-real",
-  "verification_mode": "real",
-  "last_verified_at": "2026-03-18T01:28:19+00:00",
-  "last_run_id": "gitea-gitea--CVE-2021-28378-20260318012813",
-  "evidence_bundle": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813",
-  "browser_evidence": {
-    "required": true,
-    "present": true,
-    "refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/baseline-page.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/proof-page.json"
-    ],
-    "baseline_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/baseline.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/baseline-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/baseline-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/baseline-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/baseline-page.json"
-    ],
-    "proof_refs": [
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/proof.png",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/assets/proof-dom.html",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/proof-console.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/proof-network.json",
-      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2021-28378-20260318012813/logs/proof-page.json"
-    ],
-    "baseline_title": "Gitea Stored XSS Fixture",
-    "proof_title": "Gitea Stored XSS Fixture - proof",
-    "error_kind": null,
-    "reason": null
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "local-fixture",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2021-29134.json

@@ -1,72 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2021-29134",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Path Traversal in Gitea in code.gitea.io/gitea",
-  "summary": "Path Traversal in Gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T14:30:29Z",
-  "updated_at": "2026-03-03T04:50:06.638863Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-h3q4-vmw4-cpr5",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2021-29134",
-    "https://github.com/go-gitea/gitea/pull/15125/files",
-    "https://github.com/go-gitea/gitea/releases",
-    "https://github.com/go-gitea/gitea/releases/tag/v1.13.6"
-  ],
-  "aliases": [
-    "BIT-gitea-2021-29134",
-    "CVE-2021-29134",
-    "GHSA-h3q4-vmw4-cpr5",
-    "GO-2022-0353"
-  ],
-  "cve_ids": [
-    "CVE-2021-29134"
-  ],
-  "ghsa_ids": [
-    "GHSA-h3q4-vmw4-cpr5"
-  ],
-  "osv_ids": [
-    "GO-2022-0353"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.13.6"
-  ],
-  "fixed_versions": [
-    "1.13.6"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2021-29134.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary",
-    "path-traversal-guard"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2021-3382.json

@@ -1,69 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2021-3382",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Buffer Overflow in gitea in code.gitea.io/gitea",
-  "summary": "Buffer Overflow in gitea in code.gitea.io/gitea",
-  "published_at": "2024-06-04T15:19:21Z",
-  "updated_at": "2026-03-03T04:55:15.307648Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-9f8c-pfvv-p4gm",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2021-3382",
-    "https://github.com/go-gitea/gitea/pull/14390"
-  ],
-  "aliases": [
-    "BIT-gitea-2021-3382",
-    "CVE-2021-3382",
-    "GHSA-9f8c-pfvv-p4gm",
-    "GO-2024-2757"
-  ],
-  "cve_ids": [
-    "CVE-2021-3382"
-  ],
-  "ghsa_ids": [
-    "GHSA-9f8c-pfvv-p4gm"
-  ],
-  "osv_ids": [
-    "GO-2024-2757"
-  ],
-  "affected_versions": [
-    "introduced=1.9.0, fixed<1.13.2"
-  ],
-  "fixed_versions": [
-    "1.13.2"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2021-3382.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2021-45327.json

@@ -1,75 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2021-45327",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Capture-replay in Gitea in code.gitea.io/gitea",
-  "summary": "Capture-replay in Gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T14:30:26Z",
-  "updated_at": "2026-03-03T04:52:07.840324Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-jrpg-35hw-m4p9",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2021-45327",
-    "https://blog.gitea.io/2020/03/gitea-1.11.2-is-released",
-    "https://github.com/go-gitea/gitea/commit/4cb18601ff33dda5edb47d5b452cc8f2dc39dd67",
-    "https://github.com/go-gitea/gitea/commit/6f5656ab0ebec03fe63898208dabc802c4be46ab",
-    "https://github.com/go-gitea/gitea/commit/ed664a9e1dae4d4660e60c981173bbc5102e69ea",
-    "https://github.com/go-gitea/gitea/pull/10462",
-    "https://github.com/go-gitea/gitea/pull/10465",
-    "https://github.com/go-gitea/gitea/pull/10582"
-  ],
-  "aliases": [
-    "BIT-gitea-2021-45327",
-    "CVE-2021-45327",
-    "GHSA-jrpg-35hw-m4p9",
-    "GO-2022-0310"
-  ],
-  "cve_ids": [
-    "CVE-2021-45327"
-  ],
-  "ghsa_ids": [
-    "GHSA-jrpg-35hw-m4p9"
-  ],
-  "osv_ids": [
-    "GO-2022-0310"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.11.2"
-  ],
-  "fixed_versions": [
-    "1.11.2"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2021-45327.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2021-45330.json

@@ -1,70 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2021-45330",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Improper Privilege Management in Gitea in code.gitea.io/gitea",
-  "summary": "Improper Privilege Management in Gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T16:03:21Z",
-  "updated_at": "2026-03-03T04:52:33.136607Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-pg38-r834-g45j",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2021-45330",
-    "https://github.com/go-gitea/gitea/issues/4336",
-    "https://github.com/go-gitea/gitea/pull/4840"
-  ],
-  "aliases": [
-    "BIT-gitea-2021-45330",
-    "CVE-2021-45330",
-    "GHSA-pg38-r834-g45j",
-    "GO-2022-0982"
-  ],
-  "cve_ids": [
-    "CVE-2021-45330"
-  ],
-  "ghsa_ids": [
-    "GHSA-pg38-r834-g45j"
-  ],
-  "osv_ids": [
-    "GO-2022-0982"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.6.0"
-  ],
-  "fixed_versions": [
-    "1.6.0"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2021-45330.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2021-45331.json

@@ -1,70 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2021-45331",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Reuse of one time passwords allowed in Gitea in code.gitea.io/gitea",
-  "summary": "Reuse of one time passwords allowed in Gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T14:30:29Z",
-  "updated_at": "2026-03-03T04:52:07.604662Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-hfmf-q69j-6m5p",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2021-45331",
-    "https://blog.gitea.io/2018/08/gitea-1.5.0-is-released",
-    "https://github.com/go-gitea/gitea/pull/3878"
-  ],
-  "aliases": [
-    "BIT-gitea-2021-45331",
-    "CVE-2021-45331",
-    "GHSA-hfmf-q69j-6m5p",
-    "GO-2022-0315"
-  ],
-  "cve_ids": [
-    "CVE-2021-45331"
-  ],
-  "ghsa_ids": [
-    "GHSA-hfmf-q69j-6m5p"
-  ],
-  "osv_ids": [
-    "GO-2022-0315"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.5.0"
-  ],
-  "fixed_versions": [
-    "1.5.0"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2021-45331.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-0905.json

@@ -1,71 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-0905",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea Missing Authorization vulnerability in code.gitea.io/gitea",
-  "summary": "Gitea Missing Authorization vulnerability in code.gitea.io/gitea",
-  "published_at": "2024-08-21T15:11:40Z",
-  "updated_at": "2026-03-03T04:50:45.472605Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-jr9c-h74f-2v28",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-0905",
-    "https://github.com/go-gitea/gitea/commit/1314f38b59748397b3429fb9bc9f9d6bac85d2f2",
-    "https://github.com/go-gitea/gitea/commit/3e5c844a7758fa29126d201f4f98bf21bca6d314",
-    "https://huntr.dev/bounties/8d221f92-b2b1-4878-bc31-66ff272e5ceb"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-0905",
-    "CVE-2022-0905",
-    "GHSA-jr9c-h74f-2v28",
-    "GO-2022-0609"
-  ],
-  "cve_ids": [
-    "CVE-2022-0905"
-  ],
-  "ghsa_ids": [
-    "GHSA-jr9c-h74f-2v28"
-  ],
-  "osv_ids": [
-    "GO-2022-0609"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.16.4"
-  ],
-  "fixed_versions": [
-    "1.16.4"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-0905.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-1058.json

@@ -1,72 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-1058",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea Open Redirect in code.gitea.io/gitea",
-  "summary": "Gitea Open Redirect in code.gitea.io/gitea",
-  "published_at": "2024-06-04T15:19:21Z",
-  "updated_at": "2026-03-03T04:51:49.844240Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-4rqq-rxvc-v2rc",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-1058",
-    "https://github.com/go-gitea/gitea/commit/e3d8e92bdc67562783de9a76b5b7842b68daeb48",
-    "https://github.com/go-gitea/gitea/pull/19175",
-    "https://github.com/go-gitea/gitea/pull/19186",
-    "https://huntr.dev/bounties/4fb42144-ac70-4f76-a5e1-ef6b5e55dc0d"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-1058",
-    "CVE-2022-1058",
-    "GHSA-4rqq-rxvc-v2rc",
-    "GO-2024-2752"
-  ],
-  "cve_ids": [
-    "CVE-2022-1058"
-  ],
-  "ghsa_ids": [
-    "GHSA-4rqq-rxvc-v2rc"
-  ],
-  "osv_ids": [
-    "GO-2024-2752"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.16.5"
-  ],
-  "fixed_versions": [
-    "1.16.5"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-1058.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-1928.json

@@ -1,74 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-1928",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Stored Cross-site Scripting in gitea in code.gitea.io/gitea",
-  "summary": "Stored Cross-site Scripting in gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T15:11:40Z",
-  "updated_at": "2026-03-03T04:50:45.577318Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-ph3w-2843-72mx",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-1928",
-    "https://github.com/go-gitea/gitea",
-    "https://github.com/go-gitea/gitea/commit/65e0688a5c9dacad50e71024b7529fdf0e3c2e9c",
-    "https://github.com/go-gitea/gitea/pull/19825",
-    "https://huntr.dev/bounties/6336ec42-5c4d-4f61-ae38-2bb539f433d2",
-    "https://security.gentoo.org/glsa/202210-14"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-1928",
-    "CVE-2022-1928",
-    "GHSA-ph3w-2843-72mx",
-    "GO-2022-0612"
-  ],
-  "cve_ids": [
-    "CVE-2022-1928"
-  ],
-  "ghsa_ids": [
-    "GHSA-ph3w-2843-72mx"
-  ],
-  "osv_ids": [
-    "GO-2022-0612"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.16.9"
-  ],
-  "fixed_versions": [
-    "1.16.9"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-1928.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary",
-    "xss-output-encoding"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-27313.json

@@ -1,70 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-27313",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Arbitrary file deletion in gitea in code.gitea.io/gitea",
-  "summary": "Arbitrary file deletion in gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T15:11:31Z",
-  "updated_at": "2026-03-03T04:50:19.647131Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-g7p7-x6w7-w6qg",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-27313",
-    "https://github.com/go-gitea/gitea/pull/19072",
-    "https://github.com/go-gitea/gitea/releases/tag/v1.16.4"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-27313",
-    "CVE-2022-27313",
-    "GHSA-g7p7-x6w7-w6qg",
-    "GO-2022-0442"
-  ],
-  "cve_ids": [
-    "CVE-2022-27313"
-  ],
-  "ghsa_ids": [
-    "GHSA-g7p7-x6w7-w6qg"
-  ],
-  "osv_ids": [
-    "GO-2022-0442"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.16.4"
-  ],
-  "fixed_versions": [
-    "1.16.4"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-27313.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-30781.json

@@ -1,73 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-30781",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Shell command injection in gitea in code.gitea.io/gitea",
-  "summary": "Shell command injection in gitea in code.gitea.io/gitea",
-  "published_at": "2024-08-21T15:11:31Z",
-  "updated_at": "2026-03-03T04:50:23.949796Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-p5f9-c9j9-g8qx",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-30781",
-    "http://packetstormsecurity.com/files/168400/Gitea-1.16.6-Remote-Code-Execution.html",
-    "http://packetstormsecurity.com/files/169928/Gitea-Git-Fetch-Remote-Code-Execution.html",
-    "https://blog.gitea.io/2022/05/gitea-1.16.7-is-released",
-    "https://github.com/go-gitea/gitea/pull/19487",
-    "https://github.com/go-gitea/gitea/pull/19490"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-30781",
-    "CVE-2022-30781",
-    "GHSA-p5f9-c9j9-g8qx",
-    "GO-2022-0450"
-  ],
-  "cve_ids": [
-    "CVE-2022-30781"
-  ],
-  "ghsa_ids": [
-    "GHSA-p5f9-c9j9-g8qx"
-  ],
-  "osv_ids": [
-    "GO-2022-0450"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.16.7"
-  ],
-  "fixed_versions": [
-    "1.16.7"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-30781.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-38183.json

@@ -1,72 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-38183",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea allowed assignment of private issues in code.gitea.io/gitea",
-  "summary": "Gitea allowed assignment of private issues in code.gitea.io/gitea",
-  "published_at": "2024-06-10T16:38:54Z",
-  "updated_at": "2026-03-03T04:55:04.505871Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-fhv8-m4j4-cww2",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-38183",
-    "https://blog.gitea.io/2022/07/gitea-1.16.9-is-released",
-    "https://github.com/go-gitea/gitea/pull/20133",
-    "https://github.com/go-gitea/gitea/pull/20196",
-    "https://herolab.usd.de/security-advisories/usd-2022-0015"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-38183",
-    "CVE-2022-38183",
-    "GHSA-fhv8-m4j4-cww2",
-    "GO-2024-2769"
-  ],
-  "cve_ids": [
-    "CVE-2022-38183"
-  ],
-  "ghsa_ids": [
-    "GHSA-fhv8-m4j4-cww2"
-  ],
-  "osv_ids": [
-    "GO-2024-2769"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.16.9"
-  ],
-  "fixed_versions": [
-    "1.16.9"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-38183.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-38795.json

@@ -1,71 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-38795",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea erroneous repo clones in code.gitea.io/gitea",
-  "summary": "Gitea erroneous repo clones in code.gitea.io/gitea",
-  "published_at": "2024-08-21T14:17:52Z",
-  "updated_at": "2026-03-03T04:54:07.076900Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-8j3v-68w3-3848",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-38795",
-    "https://blog.gitea.com/release-of-1.17.2",
-    "https://github.com/go-gitea/gitea/pull/20869",
-    "https://github.com/go-gitea/gitea/pull/20892"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-38795",
-    "CVE-2022-38795",
-    "GHSA-8j3v-68w3-3848",
-    "GO-2023-1999"
-  ],
-  "cve_ids": [
-    "CVE-2022-38795"
-  ],
-  "ghsa_ids": [
-    "GHSA-8j3v-68w3-3848"
-  ],
-  "osv_ids": [
-    "GO-2023-1999"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.17.2"
-  ],
-  "fixed_versions": [
-    "1.17.2"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-38795.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2022-42968.json

@@ -1,71 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2022-42968",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea vulnerable to Argument Injection in code.gitea.io/gitea",
-  "summary": "Gitea vulnerable to Argument Injection in code.gitea.io/gitea",
-  "published_at": "2024-08-21T16:03:24Z",
-  "updated_at": "2026-03-03T04:52:41.181693Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-w8xw-7crf-h23x",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2022-42968",
-    "https://github.com/go-gitea/gitea/pull/21463",
-    "https://github.com/go-gitea/gitea/releases/tag/v1.17.3",
-    "https://security.gentoo.org/glsa/202210-14"
-  ],
-  "aliases": [
-    "BIT-gitea-2022-42968",
-    "CVE-2022-42968",
-    "GHSA-w8xw-7crf-h23x",
-    "GO-2022-1065"
-  ],
-  "cve_ids": [
-    "CVE-2022-42968"
-  ],
-  "ghsa_ids": [
-    "GHSA-w8xw-7crf-h23x"
-  ],
-  "osv_ids": [
-    "GO-2022-1065"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.17.3"
-  ],
-  "fixed_versions": [
-    "1.17.3"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2022-42968.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2025-68938.json

@@ -1,71 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2025-68938",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea mishandles authorization for deletion of releases in code.gitea.io/gitea",
-  "summary": "Gitea mishandles authorization for deletion of releases in code.gitea.io/gitea",
-  "published_at": "2025-12-30T01:49:57Z",
-  "updated_at": "2026-03-03T04:57:49.095775Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-cm54-pfmc-xrwx",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2025-68938",
-    "https://blog.gitea.com/release-of-1.25.2",
-    "https://github.com/go-gitea/gitea/pull/36002/commits/d4262131b39899d9e9ee5caa2635c810d476e43f#diff-8962bac89952027d50fa51f31f59d65bedb4c02bde0265eced5cf256cbed306d",
-    "https://github.com/go-gitea/gitea/releases/tag/v1.25.2"
-  ],
-  "aliases": [
-    "BIT-gitea-2025-68938",
-    "CVE-2025-68938",
-    "GHSA-cm54-pfmc-xrwx",
-    "GO-2025-4258"
-  ],
-  "cve_ids": [
-    "CVE-2025-68938"
-  ],
-  "ghsa_ids": [
-    "GHSA-cm54-pfmc-xrwx"
-  ],
-  "osv_ids": [
-    "GO-2025-4258"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.25.2"
-  ],
-  "fixed_versions": [
-    "1.25.2"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2025-68938.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "triage-manual",
-  "verification_mode": "synthetic",
-  "last_verified_at": null,
-  "last_run_id": "",
-  "evidence_bundle": null,
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": []
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "synthetic",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2025-68939.json

@@ -1,74 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2025-68939",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea allows attackers to add attachments with forbidden file extensions in code.gitea.io/gitea",
-  "summary": "Gitea allows attackers to add attachments with forbidden file extensions in code.gitea.io/gitea",
-  "published_at": "2025-12-30T01:49:57Z",
-  "updated_at": "2026-03-03T04:57:48.777563Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-263q-5cv3-xq9g",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2025-68939",
-    "https://blog.gitea.com/release-of-1.23.0",
-    "https://github.com/go-gitea/gitea/pull/32151",
-    "https://github.com/go-gitea/gitea/releases/tag/v1.23.0"
-  ],
-  "aliases": [
-    "BIT-gitea-2025-68939",
-    "CVE-2025-68939",
-    "GHSA-263q-5cv3-xq9g",
-    "GO-2025-4261"
-  ],
-  "cve_ids": [
-    "CVE-2025-68939"
-  ],
-  "ghsa_ids": [
-    "GHSA-263q-5cv3-xq9g"
-  ],
-  "osv_ids": [
-    "GO-2025-4261"
-  ],
-  "affected_versions": [
-    "introduced=0"
-  ],
-  "fixed_versions": null,
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2025-68939.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary",
-    "plugin-extension-trust-policy"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "blocked-artifact",
-  "verification_mode": "real",
-  "last_verified_at": "2026-03-17T07:02:56+00:00",
-  "last_run_id": "gitea-livecheck-20260316",
-  "evidence_bundle": "/Users/x/websafe/06-case-studies/generated-runs/gitea-livecheck-20260316",
-  "browser_evidence": {
-    "required": true,
-    "present": false,
-    "refs": [],
-    "baseline_refs": [],
-    "proof_refs": [],
-    "baseline_title": null,
-    "proof_title": null
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "official-image",
-  "blocked_reason": "unable to get image 'gitea/gitea:1.22.6': Cannot connect to the Docker daemon at unix:///Users/x/.docker/run/docker.sock. Is the docker daemon running?",
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}

08-threat-intel/registry/advisories/gitea--CVE-2025-68940.json

@@ -1,77 +0,0 @@
-{
-  "canonical_id": "gitea--CVE-2025-68940",
-  "system_id": "gitea",
-  "display_name": "Gitea",
-  "category": "platforms",
-  "advisory_mode": "core",
-  "title": "Gitea doesn't adequately enforce branch deletion permissions after merging a pull request. in code.gitea.io/gitea",
-  "summary": "Gitea doesn't adequately enforce branch deletion permissions after merging a pull request. in code.gitea.io/gitea",
-  "published_at": "2025-12-30T01:49:57Z",
-  "updated_at": "2026-03-03T04:57:50.087298Z",
-  "severity": "unknown",
-  "cvss_score": null,
-  "exploit_status": "unknown",
-  "source_confidence": "official",
-  "official_source_url": "https://github.com/advisories/GHSA-rrcw-5rjv-vj26",
-  "secondary_source_urls": [
-    "https://nvd.nist.gov/vuln/detail/CVE-2025-68940",
-    "https://blog.gitea.com/release-of-1.22.5",
-    "https://github.com/go-gitea/gitea/pull/32654",
-    "https://github.com/go-gitea/gitea/releases/tag/v1.22.5"
-  ],
-  "aliases": [
-    "BIT-gitea-2025-68940",
-    "CVE-2025-68940",
-    "GHSA-rrcw-5rjv-vj26",
-    "GO-2025-4267"
-  ],
-  "cve_ids": [
-    "CVE-2025-68940"
-  ],
-  "ghsa_ids": [
-    "GHSA-rrcw-5rjv-vj26"
-  ],
-  "osv_ids": [
-    "GO-2025-4267"
-  ],
-  "affected_versions": [
-    "introduced=0, fixed<1.22.5"
-  ],
-  "fixed_versions": [
-    "1.22.5"
-  ],
-  "package_name": "code.gitea.io/gitea",
-  "render_markdown": true,
-  "case_path": "07-framework-security/platforms/gitea/cases/gitea-cve-2025-68940.md",
-  "secure_code_topics": [
-    "authz-server-side-recheck",
-    "token-cookie-storage",
-    "proxy-trust-boundary"
-  ],
-  "status": "generated",
-  "triage_reasons": [],
-  "verification_status": "verified-real",
-  "verification_mode": "real",
-  "last_verified_at": "2026-03-18T01:27:12+00:00",
-  "last_run_id": "gitea-gitea--CVE-2025-68940-20260318012708",
-  "evidence_bundle": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68940-20260318012708",
-  "browser_evidence": {
-    "required": false,
-    "present": false,
-    "refs": [],
-    "baseline_refs": [],
-    "proof_refs": [],
-    "baseline_title": null,
-    "proof_title": null,
-    "error_kind": null,
-    "reason": null
-  },
-  "repro_profile_id": "gitea-authz-bypass",
-  "artifact_mode": "local-fixture",
-  "blocked_reason": null,
-  "metadata": {
-    "source_names": [],
-    "source_kinds": [],
-    "candidate_count": 1
-  }
-}