hao/websafe-kb
1
0
派生 0
代码 工单 合并请求 1 工作流 软件包 项目 发布 百科 活动

更新: 307 个文件 - 2026-03-27 02:33:52

浏览代码
这个提交包含在:
hao
2026-03-27 02:33:52 -07:00
父节点 3406fdb83f
当前提交 bce7f9ef61
修改 307 个文件,包含 14150 行新增2059 行删除
下载 Patch 文件 下载 Diff 文件 展开所有文件 折叠所有文件

2
07-framework-security/cms/directus/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `29`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/discourse/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `30`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/drupal/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `70`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/ghost/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `23`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/joomla/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `100`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/mediawiki/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `70`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/moodle/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `40`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/strapi/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `26`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/cms/wordpress/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `140`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/adobe-commerce/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `81`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/magento-open-source/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `89`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/medusa/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `15`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/opencart/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `100`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/openmage/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `27`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/prestashop/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `114`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/saleor/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `24`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/shopware/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `71`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/ecommerce/woocommerce/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `111`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/angular/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/aspnet-core/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `3`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

11
07-framework-security/frameworks/astro/INDEX.md
查看文件

@@ -5,14 +5,14 @@
- 系统 ID: `astro`
- 分类: `frameworks`
- 覆盖策略: `rolling-24m`
- 总案例数: `14`
- 近 30 天新增/更新: `0`
- 重点 Markdown 案例数: `14`
- 总案例数: `15`
- 近 30 天新增/更新: `1`
- 重点 Markdown 案例数: `15`
- 已实证(真实版本): `0`
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `14`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 待人工/缺浏览器证据: `15`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束
@@ -31,6 +31,7 @@
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|------|--------|----------|----------|----------|------------|----------|--------|
| Astro: Remote allowlist bypass via unanchored matchPathname wildcard | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-26T19:01:26.420643Z` | [link](/Users/x/websafe/07-framework-security/frameworks/astro/cases/astro-cve-2026-33769.md) |
| Astro has an Authentication Bypass via Double URL Encoding, a bypass for CVE-2025-64765 | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-04T02:27:12.689316Z` | [link](/Users/x/websafe/07-framework-security/frameworks/astro/cases/astro-cve-2025-66202.md) |
| Astro Cloudflare adapter has Stored Cross-site Scripting vulnerability in /_image endpoint | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2025-11-27T08:33:26.119485Z` | [link](/Users/x/websafe/07-framework-security/frameworks/astro/cases/astro-cve-2025-65019.md) |
| Astro's middleware authentication checks based on url.pathname can be bypassed via url encoded values | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-04T03:01:27.986221Z` | [link](/Users/x/websafe/07-framework-security/frameworks/astro/cases/astro-cve-2025-64765.md) |

162
07-framework-security/frameworks/astro/cases/astro-cve-2026-33769.md 普通文件
查看文件

@@ -0,0 +1,162 @@
---
title: "Astro: Remote allowlist bypass via unanchored matchPathname wildcard"
system_id: "astro"
category: "frameworks"
advisory_mode: "core"
published_date: "2026-03-26T18:45:17Z"
updated_date: "2026-03-26T19:01:26.420643Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "official"
verification_status: "triage-manual"
verification_mode: "synthetic"
artifact_mode: "synthetic"
last_run_id: ""
target_types:
- "lab-local"
- "lab-public"
- "authorized-third-party"
allow_public_validation: "yes, with ownership or explicit authorization"
authorization_prerequisite: "asset ownership proof or explicit written authorization"
minimal_validation: "read-only probe, controlled payload, reversible test"
aliases:
- "CVE-2026-33769"
- "GHSA-g735-7g2w-hh3f"
affected_versions:
- "introduced=2.10.10, fixed<5.18.1"
fixed_versions:
- "5.18.1"
entity_refs:
- "astro:system:root-system"
- "astro--project--astro:project:affected-component"
secure_code_topics:
- "authz-server-side-recheck"
- "csp-trusted-types"
- "ssrf-url-validation"
- "dependency-upgrade-policy"
primary_source: "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f"
---
# Astro: Remote allowlist bypass via unanchored matchPathname wildcard
## 本地实证状态
- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
- 浏览器证据: `missing`
- Run Bundle: `-`
## 事件层
- Canonical ID: `astro--CVE-2026-33769`
- 系统: `astro`
- 严重度: `low`
- 来源置信度: `official`
- 官方主源: https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f
- 影响版本: `introduced=2.10.10, fixed<5.18.1`
- 修复版本: `5.18.1`
## 对象与版本映射
- Advisory Scope: `package`
- 影响对象: `astro`
- Entity Refs: `astro, astro--project--astro`
- 版本置信度: `high`
- 版本缺口: `-`
- 版本证据源: `https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f, https://nvd.nist.gov/vuln/detail/CVE-2026-33769, https://github.com/withastro/astro`
## 受控验证流程
- Workflow ID: `astro--CVE-2026-33769--workflow`
- 漏洞家族: `ssrf`
- 入口面: `remote-fetch-or-webhook-endpoint`
- 需要角色: `editor-or-admin`
- 触发向量: 对 `ssrf` 家族入口投递最小化、可审计、可回滚的受控输入,比较修复前后差异。
- 请求/页面入口: `/webhook/test, /remote-fetch, /import-url`
- 输入形态: 提交受控回环或哨兵 URL,验证协议、主机、IP 与重定向限制。
- 预期不安全行为: 服务端向受控目标发起非预期请求。
## 其他来源
- https://nvd.nist.gov/vuln/detail/CVE-2026-33769
- https://github.com/withastro/astro
## 证据点与补丁验证
### 服务端证据点
- 应用日志中的命中路径、鉴权决策和异常栈
- 反向代理或边界层日志中的请求头、来源 IP 与路由决策
### 浏览器证据点
- 基线截图与攻击后截图的 DOM/视觉差异
- console、network 与 response metadata 中的异常信号
### 数据库/文件系统证据点
- 数据库中新增/越权读取的测试数据
- 文件系统中新增上传样本、缓存条目或越权读取痕迹
### 检测信号
- WAF / reverse proxy 异常日志、访问日志和告警
- 应用审计日志中的权限错误、重定向异常、模板渲染或上传落盘事件
### 补丁验证步骤
- 确认目标版本从 `introduced=2.10.10, fixed<5.18.1` 升级或回移到 `5.18.1`
- 保留同一组受控输入,在修复前后分别执行并比对响应、日志与浏览器证据。
- 确认修复后仅保留预期业务行为,不再触发越权、回显、异常渲染或错误请求。
- 补充 `ssrf` 族自动化回归,避免同类路径在插件、主题或代理链中回归。
### 实验安全备注
- 只使用回环地址、哨兵目标、无害样本或可回滚测试数据。
- 禁止造成持久破坏、越权下载真实数据或不可回滚 side effect。
- 如需浏览器证据,保留 baseline / proof 两份快照以及 console / network 记录。
## 实验层
- 仅用于自有资产、测试环境或已明确授权目标。
- 允许公网可达目标,但必须满足资产归属或明确授权前提。
- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
- 若该案例涉及插件、模块或扩展,应同时检查供应链与升级策略。
- 禁止场景: 无归属证明或无明确授权的公网目标;知名公共网站或与测试无关的第三方资产;会造成持久破坏、数据越权下载或不可回滚影响的动作
## 修复示例
- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
- [javascript-typescript:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/javascript-typescript/csp-trusted-types.md)
- [nodejs:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/nodejs/csp-trusted-types.md)
- [java:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/java/csp-trusted-types.md)
- [php:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/php/csp-trusted-types.md)
- [python:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/python/csp-trusted-types.md)
- [ruby:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/ruby/csp-trusted-types.md)
- [csharp:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/csharp/csp-trusted-types.md)
- [go:csp-trusted-types](/Users/x/websafe/05-defense/secure-code/go/csp-trusted-types.md)
- [javascript-typescript:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/javascript-typescript/ssrf-url-validation.md)
- [nodejs:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/nodejs/ssrf-url-validation.md)
- [java:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/java/ssrf-url-validation.md)
- [php:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/php/ssrf-url-validation.md)
- [python:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/python/ssrf-url-validation.md)
- [ruby:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/ruby/ssrf-url-validation.md)
- [csharp:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/csharp/ssrf-url-validation.md)
- [go:ssrf-url-validation](/Users/x/websafe/05-defense/secure-code/go/ssrf-url-validation.md)
- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)

2
07-framework-security/frameworks/django/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `82`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/echo/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/esbuild/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/express/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/fastify/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/flask/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/gin/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/hapi/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/koa/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/laravel/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/nestjs/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/nextjs/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `40`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/nodejs/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `8`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/nuxt/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `28`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/rails/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `42`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/react/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `21`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/spring-boot/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/spring-framework/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `11`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/spring-security/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `4`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/sveltekit/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `3`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/symfony/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `9`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/undici/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `9`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/vite/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `30`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/vue/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `15`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/webpack/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/frameworks/werkzeug/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/platforms/adminer/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/platforms/gitea/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `13`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/platforms/gitlab-ce/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `56`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/platforms/grafana/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `60`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/platforms/jenkins/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `60`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/platforms/kibana/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `47`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

12
07-framework-security/platforms/mattermost/INDEX.md
查看文件

@@ -5,14 +5,14 @@
- 系统 ID: `mattermost`
- 分类: `platforms`
- 覆盖策略: `rolling-24m`
- 总案例数: `31`
- 近 30 天新增/更新: `19`
- 重点 Markdown 案例数: `31`
- 总案例数: `33`
- 近 30 天新增/更新: `21`
- 重点 Markdown 案例数: `33`
- 已实证(真实版本): `0`
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `31`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 待人工/缺浏览器证据: `33`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束
@@ -39,12 +39,14 @@
| Mattermost fails to properly enforce read permissions in search API endpoints | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:55:57.125165Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-24692.md) |
| Mattermost fails to use consistent error responses when handling the /mute command | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:15.398070Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-21386.md) |
| Mattermost fails to validate team-specific upload_file permissions | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:04.837800Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-4265.md) |
| Mattermost fails to limit the size of responses from integration action endpoints | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-26T21:11:03.241919Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-2456.md) |
| Mattermost allows a removed team member to enumerate all public channels within a private team | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:02.455815Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-2458.md) |
| Mattermost fails to filter invite IDs based on user permissions | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:08.610141Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-2463.md) |
| Mattermost fails to preserve the redacted state of burn-on-read posts during deletion | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:01.583567Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-2578.md) |
| Mattermost fails to properly handle very long passwords | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:03.732922Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-24458.md) |
| Mattermost allows attackers to spoof permalink embeds | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:18.286997Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-2457.md) |
| Mattermost fails to bound memory allocation when processing DOC files | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:18.467718Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-25780.md) |
| Mattermost fails to properly validate User-Agent header tokens | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-26T21:11:24.090883Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-25783.md) |
| Mattermost fails to bound memory allocation when processing PSD image files | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-03-23T18:56:08.918090Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-26246.md) |
| MMSA-2026-00574 | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-16` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-mmsa-2026-00574.md) |
| MMSA-2026-00603 | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-16` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-mmsa-2026-00603.md) |

178
07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-2456.md 普通文件
查看文件

@@ -0,0 +1,178 @@
---
title: "Mattermost fails to limit the size of responses from integration action endpoints"
system_id: "mattermost"
category: "platforms"
advisory_mode: "core"
published_date: "2026-03-16T15:30:43Z"
updated_date: "2026-03-26T21:11:03.241919Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "ecosystem-authority"
verification_status: "triage-manual"
verification_mode: "synthetic"
artifact_mode: "synthetic"
last_run_id: ""
target_types:
- "lab-local"
- "lab-public"
- "authorized-third-party"
allow_public_validation: "yes, with ownership or explicit authorization"
authorization_prerequisite: "asset ownership proof or explicit written authorization"
minimal_validation: "read-only probe, controlled payload, reversible test"
aliases:
- "CVE-2026-2456"
- "GO-2026-4726"
- "GHSA-34g8-9fpp-46ch"
affected_versions:
- "introduced=0, fixed<8.0.0-20260127165411-fe3052073dc6"
- "introduced=0, fixed<5.3.2-0.20260127165411-fe3052073dc6"
- "introduced=10.11.0-rc1, fixed<10.11.11"
- "introduced=11.2.0-rc1, fixed<11.2.3"
- "introduced=11.3.0-rc1, fixed<11.3.1"
- "introduced=10.11.0-rc1+incompatible, fixed<10.11.11+incompatible"
- "introduced=0"
fixed_versions:
- "8.0.0-20260127165411-fe3052073dc6"
- "5.3.2-0.20260127165411-fe3052073dc6"
- "10.11.11"
- "11.2.3"
- "11.3.1"
- "10.11.11+incompatible"
- "11.2.3+incompatible"
- "11.3.1+incompatible"
entity_refs:
- "mattermost:system:root-system"
- "mattermost--repo--github-com-mattermost-mattermost-server:repo:affected-component"
secure_code_topics:
- "authz-server-side-recheck"
- "xss-output-encoding"
- "token-cookie-storage"
- "dependency-upgrade-policy"
primary_source: "https://nvd.nist.gov/vuln/detail/CVE-2026-2456"
---
# Mattermost fails to limit the size of responses from integration action endpoints
## 本地实证状态
- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
- 浏览器证据: `missing`
- Run Bundle: `-`
## 事件层
- Canonical ID: `mattermost--CVE-2026-2456`
- 系统: `mattermost`
- 严重度: `low`
- 来源置信度: `ecosystem-authority`
- 官方主源: https://nvd.nist.gov/vuln/detail/CVE-2026-2456
- 影响版本: `introduced=0, fixed<8.0.0-20260127165411-fe3052073dc6, introduced=0, fixed<5.3.2-0.20260127165411-fe3052073dc6, introduced=10.11.0-rc1, fixed<10.11.11, introduced=11.2.0-rc1, fixed<11.2.3, introduced=11.3.0-rc1, fixed<11.3.1, introduced=10.11.0-rc1+incompatible, fixed<10.11.11+incompatible, introduced=0`
- 修复版本: `8.0.0-20260127165411-fe3052073dc6, 5.3.2-0.20260127165411-fe3052073dc6, 10.11.11, 11.2.3, 11.3.1, 10.11.11+incompatible, 11.2.3+incompatible, 11.3.1+incompatible`
## 对象与版本映射
- Advisory Scope: `repo`
- 影响对象: `mattermost / mattermost-server`
- Entity Refs: `mattermost, mattermost--repo--github-com-mattermost-mattermost-server`
- 版本置信度: `high`
- 版本缺口: `-`
- 版本证据源: `https://nvd.nist.gov/vuln/detail/CVE-2026-2456, https://github.com/advisories/GHSA-34g8-9fpp-46ch, https://github.com/mattermost/mattermost/commit/fe3052073dc67e3c920baf9fe7efd44ac1d8124c, https://github.com/mattermost/mattermost, https://mattermost.com/security-updates`
## 受控验证流程
- Workflow ID: `mattermost--CVE-2026-2456--workflow`
- 漏洞家族: `unknown`
- 入口面: `repo-surface`
- 需要角色: `unknown`
- 触发向量: 对 `unknown` 家族入口投递最小化、可审计、可回滚的受控输入,比较修复前后差异。
- 请求/页面入口: `/repo`
- 输入形态: 提交最小化、可审计、可回滚的受控输入。
- 预期不安全行为: 目标表现出超出设计边界的行为。
## 其他来源
- https://github.com/advisories/GHSA-34g8-9fpp-46ch
- https://github.com/mattermost/mattermost/commit/fe3052073dc67e3c920baf9fe7efd44ac1d8124c
- https://github.com/mattermost/mattermost
- https://mattermost.com/security-updates
## 证据点与补丁验证
### 服务端证据点
- 应用日志中的命中路径、鉴权决策和异常栈
- 反向代理或边界层日志中的请求头、来源 IP 与路由决策
### 浏览器证据点
- 基线截图与攻击后截图的 DOM/视觉差异
- console、network 与 response metadata 中的异常信号
### 数据库/文件系统证据点
- 数据库中新增/越权读取的测试数据
- 文件系统中新增上传样本、缓存条目或越权读取痕迹
### 检测信号
- WAF / reverse proxy 异常日志、访问日志和告警
- 应用审计日志中的权限错误、重定向异常、模板渲染或上传落盘事件
### 补丁验证步骤
- 确认目标版本从 `introduced=0, fixed<8.0.0-20260127165411-fe3052073dc6, introduced=0, fixed<5.3.2-0.20260127165411-fe3052073dc6, introduced=10.11.0-rc1, fixed<10.11.11` 升级或回移到 `8.0.0-20260127165411-fe3052073dc6`
- 保留同一组受控输入,在修复前后分别执行并比对响应、日志与浏览器证据。
- 确认修复后仅保留预期业务行为,不再触发越权、回显、异常渲染或错误请求。
- 补充 `unknown` 族自动化回归,避免同类路径在插件、主题或代理链中回归。
### 实验安全备注
- 只使用回环地址、哨兵目标、无害样本或可回滚测试数据。
- 禁止造成持久破坏、越权下载真实数据或不可回滚 side effect。
- 如需浏览器证据,保留 baseline / proof 两份快照以及 console / network 记录。
## 实验层
- 仅用于自有资产、测试环境或已明确授权目标。
- 允许公网可达目标,但必须满足资产归属或明确授权前提。
- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
- 若该案例涉及插件、模块或扩展,应同时检查供应链与升级策略。
- 禁止场景: 无归属证明或无明确授权的公网目标;知名公共网站或与测试无关的第三方资产;会造成持久破坏、数据越权下载或不可回滚影响的动作
## 修复示例
- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
- [javascript-typescript:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/javascript-typescript/xss-output-encoding.md)
- [nodejs:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/nodejs/xss-output-encoding.md)
- [java:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/java/xss-output-encoding.md)
- [php:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/php/xss-output-encoding.md)
- [python:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/python/xss-output-encoding.md)
- [ruby:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/ruby/xss-output-encoding.md)
- [csharp:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/csharp/xss-output-encoding.md)
- [go:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/go/xss-output-encoding.md)
- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)
- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)

178
07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-25783.md 普通文件
查看文件

@@ -0,0 +1,178 @@
---
title: "Mattermost fails to properly validate User-Agent header tokens"
system_id: "mattermost"
category: "platforms"
advisory_mode: "core"
published_date: "2026-03-16T15:30:42Z"
updated_date: "2026-03-26T21:11:24.090883Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "ecosystem-authority"
verification_status: "triage-manual"
verification_mode: "synthetic"
artifact_mode: "synthetic"
last_run_id: ""
target_types:
- "lab-local"
- "lab-public"
- "authorized-third-party"
allow_public_validation: "yes, with ownership or explicit authorization"
authorization_prerequisite: "asset ownership proof or explicit written authorization"
minimal_validation: "read-only probe, controlled payload, reversible test"
aliases:
- "CVE-2026-25783"
- "GO-2026-4725"
- "GHSA-2v3w-6g35-5f9v"
affected_versions:
- "introduced=0, fixed<8.0.0-20260129181235-1346cf529aef"
- "introduced=0, fixed<5.3.2-0.20260129181235-1346cf529aef"
- "introduced=10.11.0-rc1, fixed<10.11.11"
- "introduced=11.2.0-rc1, fixed<11.2.3"
- "introduced=11.3.0-rc1, fixed<11.3.1"
- "introduced=10.11.0-rc1+incompatible, fixed<10.11.11+incompatible"
- "introduced=0"
fixed_versions:
- "8.0.0-20260129181235-1346cf529aef"
- "5.3.2-0.20260129181235-1346cf529aef"
- "10.11.11"
- "11.2.3"
- "11.3.1"
- "10.11.11+incompatible"
- "11.2.3+incompatible"
- "11.3.1+incompatible"
entity_refs:
- "mattermost:system:root-system"
- "mattermost--repo--github-com-mattermost-mattermost-server:repo:affected-component"
secure_code_topics:
- "authz-server-side-recheck"
- "xss-output-encoding"
- "token-cookie-storage"
- "dependency-upgrade-policy"
primary_source: "https://nvd.nist.gov/vuln/detail/CVE-2026-25783"
---
# Mattermost fails to properly validate User-Agent header tokens
## 本地实证状态
- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
- 浏览器证据: `missing`
- Run Bundle: `-`
## 事件层
- Canonical ID: `mattermost--CVE-2026-25783`
- 系统: `mattermost`
- 严重度: `low`
- 来源置信度: `ecosystem-authority`
- 官方主源: https://nvd.nist.gov/vuln/detail/CVE-2026-25783
- 影响版本: `introduced=0, fixed<8.0.0-20260129181235-1346cf529aef, introduced=0, fixed<5.3.2-0.20260129181235-1346cf529aef, introduced=10.11.0-rc1, fixed<10.11.11, introduced=11.2.0-rc1, fixed<11.2.3, introduced=11.3.0-rc1, fixed<11.3.1, introduced=10.11.0-rc1+incompatible, fixed<10.11.11+incompatible, introduced=0`
- 修复版本: `8.0.0-20260129181235-1346cf529aef, 5.3.2-0.20260129181235-1346cf529aef, 10.11.11, 11.2.3, 11.3.1, 10.11.11+incompatible, 11.2.3+incompatible, 11.3.1+incompatible`
## 对象与版本映射
- Advisory Scope: `repo`
- 影响对象: `mattermost / mattermost-server`
- Entity Refs: `mattermost, mattermost--repo--github-com-mattermost-mattermost-server`
- 版本置信度: `high`
- 版本缺口: `-`
- 版本证据源: `https://nvd.nist.gov/vuln/detail/CVE-2026-25783, https://github.com/advisories/GHSA-2v3w-6g35-5f9v, https://github.com/mattermost/mattermost/commit/1346cf529aef0672c39a56ec10d1b8a9c8fb387d, https://github.com/mattermost/mattermost, https://mattermost.com/security-updates`
## 受控验证流程
- Workflow ID: `mattermost--CVE-2026-25783--workflow`
- 漏洞家族: `session-token`
- 入口面: `session-or-token-processing`
- 需要角色: `authenticated-user`
- 触发向量: 对 `session-token` 家族入口投递最小化、可审计、可回滚的受控输入,比较修复前后差异。
- 请求/页面入口: `/login, /callback, /session`
- 输入形态: 使用短期测试令牌或会话,验证生命周期、绑定与失效逻辑。
- 预期不安全行为: 令牌或会话可被重放、固定或越权使用。
## 其他来源
- https://github.com/advisories/GHSA-2v3w-6g35-5f9v
- https://github.com/mattermost/mattermost/commit/1346cf529aef0672c39a56ec10d1b8a9c8fb387d
- https://github.com/mattermost/mattermost
- https://mattermost.com/security-updates
## 证据点与补丁验证
### 服务端证据点
- 应用日志中的命中路径、鉴权决策和异常栈
- 反向代理或边界层日志中的请求头、来源 IP 与路由决策
### 浏览器证据点
- 基线截图与攻击后截图的 DOM/视觉差异
- console、network 与 response metadata 中的异常信号
### 数据库/文件系统证据点
- 数据库中新增/越权读取的测试数据
- 文件系统中新增上传样本、缓存条目或越权读取痕迹
### 检测信号
- WAF / reverse proxy 异常日志、访问日志和告警
- 应用审计日志中的权限错误、重定向异常、模板渲染或上传落盘事件
### 补丁验证步骤
- 确认目标版本从 `introduced=0, fixed<8.0.0-20260129181235-1346cf529aef, introduced=0, fixed<5.3.2-0.20260129181235-1346cf529aef, introduced=10.11.0-rc1, fixed<10.11.11` 升级或回移到 `8.0.0-20260129181235-1346cf529aef`
- 保留同一组受控输入,在修复前后分别执行并比对响应、日志与浏览器证据。
- 确认修复后仅保留预期业务行为,不再触发越权、回显、异常渲染或错误请求。
- 补充 `session-token` 族自动化回归,避免同类路径在插件、主题或代理链中回归。
### 实验安全备注
- 只使用回环地址、哨兵目标、无害样本或可回滚测试数据。
- 禁止造成持久破坏、越权下载真实数据或不可回滚 side effect。
- 如需浏览器证据,保留 baseline / proof 两份快照以及 console / network 记录。
## 实验层
- 仅用于自有资产、测试环境或已明确授权目标。
- 允许公网可达目标,但必须满足资产归属或明确授权前提。
- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
- 若该案例涉及插件、模块或扩展,应同时检查供应链与升级策略。
- 禁止场景: 无归属证明或无明确授权的公网目标;知名公共网站或与测试无关的第三方资产;会造成持久破坏、数据越权下载或不可回滚影响的动作
## 修复示例
- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
- [javascript-typescript:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/javascript-typescript/xss-output-encoding.md)
- [nodejs:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/nodejs/xss-output-encoding.md)
- [java:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/java/xss-output-encoding.md)
- [php:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/php/xss-output-encoding.md)
- [python:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/python/xss-output-encoding.md)
- [ruby:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/ruby/xss-output-encoding.md)
- [csharp:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/csharp/xss-output-encoding.md)
- [go:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/go/xss-output-encoding.md)
- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)
- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)

2
07-framework-security/platforms/phpmyadmin/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `50`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/platforms/redmine/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `50`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/servers/apache-httpd/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `135`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/servers/apache-tomcat/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `136`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/servers/caddy/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `29`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/servers/haproxy/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `7`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/servers/nginx/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `110`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

2
07-framework-security/servers/traefik/INDEX.md
查看文件

@@ -12,7 +12,7 @@
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `45`
- 最近渲染时间: `2026-03-26T10:20:33+00:00`
- 最近渲染时间: `2026-03-27T09:30:59+00:00`
## 目标约束

4
08-threat-intel/generated/coverage-matrix.md
查看文件

@@ -8,7 +8,7 @@
| Apache HTTP Server | `servers` | `history-full` | `yes` | `yes` | `135` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-05-22` |
| Apache Tomcat | `servers` | `history-full` | `yes` | `yes` | `136` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-04-22` |
| ASP.NET Core | `frameworks` | `rolling-24m` | `-` | `yes` | `3` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-11T13:53:20.707` |
| Astro | `frameworks` | `rolling-24m` | `-` | `yes` | `14` | `14` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-02-04T03:01:27.986221Z` |
| Astro | `frameworks` | `rolling-24m` | `-` | `yes` | `15` | `15` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-26T19:01:26.420643Z` |
| Caddy | `servers` | `rolling-24m` | `-` | `yes` | `29` | `0` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-23T04:52:47.870034Z` |
| Directus | `cms` | `rolling-24m` | `-` | `yes` | `29` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
| Discourse | `cms` | `rolling-24m` | `-` | `yes` | `30` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `30` | `Wed, 28 May 2025 05:22:52 +0000` |
@@ -32,7 +32,7 @@
| Koa | `frameworks` | `rolling-24m` | `-` | `yes` | `1` | `1` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-02-26T23:36:36.294040Z` |
| Laravel | `frameworks` | `rolling-24m` | `-` | `yes` | `2` | `2` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-13T22:15:34.333730Z` |
| Magento Open Source | `ecommerce` | `history-full` | `yes` | `yes` | `89` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-04-20T01:37:25.860` |
| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `31` | `31` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `33` | `33` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
| MediaWiki | `cms` | `rolling-24m` | `-` | `yes` | `70` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `70` | `Wed, 22 Oct 2025 21:44:43 +0000` |
| Medusa | `ecommerce` | `rolling-24m` | `-` | `yes` | `15` | `0` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `15` | `` |
| Moodle | `cms` | `rolling-24m` | `-` | `yes` | `40` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `40` | `2025-04-09T00:30:58.490` |

417
08-threat-intel/generated/dashboard/advisories.json
查看文件

文件差异因一行或多行过长而隐藏

12
08-threat-intel/generated/dashboard/architecture.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T10:20:35+00:00",
"generated_at": "2026-03-27T09:31:01+00:00",
"title": "\u5f53\u524d\u67b6\u6784\u5e93",
"summary": "\u5de5\u4f5c\u53f0\u3001\u63a7\u5236\u9762\u3001\u6570\u636e\u5c42\u3001\u6388\u6743\u8fb9\u754c\u4e0e\u7cfb\u7edf\u8986\u76d6\u7684\u5f53\u524d\u771f\u503c\u89c6\u56fe\u3002",
"sections": [
@@ -39,7 +39,7 @@
},
{
"label": "\u5f53\u524d\u6f0f\u6d1e\u6761\u76ee",
"value": "2419"
"value": "2422"
}
],
"fields": [
@@ -57,7 +57,7 @@
},
{
"label": "\u751f\u6210\u65f6\u95f4",
"value": "2026-03-26T10:20:35+00:00"
"value": "2026-03-27T09:31:01+00:00"
}
],
"links": [
@@ -5973,7 +5973,7 @@
},
{
"label": "Advisory \u6570",
"value": "2419"
"value": "2422"
},
{
"label": "\u72b6\u6001\u7c7b\u578b",
@@ -5992,7 +5992,7 @@
"items": [
{
"title": "\u4eba\u5de5\u5206\u8bca",
"summary": "\u5f53\u524d\u7d2f\u8ba1 2330 \u6761\u3002",
"summary": "\u5f53\u524d\u7d2f\u8ba1 2333 \u6761\u3002",
"open": false,
"fields": [
{
@@ -6001,7 +6001,7 @@
},
{
"label": "\u6570\u91cf",
"value": "2330"
"value": "2333"
}
]
},

42
08-threat-intel/generated/dashboard/data/completeness.json
查看文件

@@ -1,7 +1,7 @@
{
"generated_at": "2026-03-26T10:20:35+00:00",
"generated_at": "2026-03-27T09:31:01+00:00",
"advisory_total": 89,
"registry_advisory_total": 2419,
"registry_advisory_total": 2422,
"scope": "latest-run-backed-advisories",
"latest_statuses": {
"verified-real": 89
@@ -175,12 +175,12 @@
"active_source_count": 102,
"green_source_count": 102,
"failure_count": 0,
"last_fully_green_run": "2026-03-26T10:20:18+00:00",
"last_fully_green_run": "2026-03-27T09:30:44+00:00",
"open_alert_count": 0,
"resolved_alert_count": 101
},
"entity_coverage": {
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:30:59+00:00",
"cataloged_entity_total": 110,
"candidate_entity_total": 7,
"history_full_complete_count": 41,
@@ -344,7 +344,7 @@
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"advisory_count": 12,
"advisory_count": 13,
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
@@ -986,6 +986,14 @@
"plugin": 1
},
"top_entities": [
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 14,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"entity_type": "project",
@@ -994,14 +1002,6 @@
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 12,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"entity_type": "plugin",
@@ -1954,13 +1954,13 @@
}
},
"monitor_summary": {
"generated_at": "2026-03-26T10:20:18+00:00",
"generated_at": "2026-03-27T09:30:44+00:00",
"active_source_count": 102,
"green_source_count": 102,
"source_failure_count": 0,
"open_alert_count": 0,
"resolved_alert_count": 101,
"last_fully_green_run": "2026-03-26T10:20:18+00:00",
"last_fully_green_run": "2026-03-27T09:30:44+00:00",
"source_catalog": {
"system_count": 62,
"source_count": 179,
@@ -1968,13 +1968,11 @@
},
"ingest": {
"new_count": 3,
"updated_count": 2,
"updated_count": 0,
"failure_count": 0,
"systems_touched": [
"fastify",
"nextjs",
"prestashop",
"spring-security"
"astro",
"mattermost"
]
},
"validation": {
@@ -1994,14 +1992,14 @@
"cataloged_entity_total": 110,
"latest_version_synced_count": 95,
"source_gap_count": 15,
"security_version_total": 6297,
"security_version_total": 6307,
"security_version_entity_count": 83,
"auto_promoted_entity_count": 10,
"lab_enqueued_count": 3
},
"lab_enqueue": {
"enqueued": 3,
"queue_total": 2375,
"queue_total": 2378,
"pending_count": 0
}
},

20
08-threat-intel/generated/dashboard/data/entity-completeness.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:30:59+00:00",
"cataloged_entity_total": 110,
"candidate_entity_total": 7,
"history_full_complete_count": 41,
@@ -163,7 +163,7 @@
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"advisory_count": 12,
"advisory_count": 13,
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
@@ -805,6 +805,14 @@
"plugin": 1
},
"top_entities": [
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 14,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"entity_type": "project",
@@ -813,14 +821,6 @@
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 12,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"entity_type": "plugin",

2
08-threat-intel/generated/dashboard/data/entity-queues.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:30:59+00:00",
"discovery_queue": {
"count": 7,
"items": [

185
08-threat-intel/generated/dashboard/data/lab-enqueue-summary.json
查看文件

@@ -1,85 +1,10 @@
{
"generated_at": "2026-03-26T10:20:27+00:00",
"generated_at": "2026-03-27T09:30:51+00:00",
"enqueued": 3,
"queue_total": 2375,
"queue_total": 2378,
"items": [
{
"advisory_id": "angular--CVE-2026-27970",
"system_id": "angular",
"priority": "version-sync"
},
{
"advisory_id": "angular--CVE-2026-32635",
"system_id": "angular",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2024-47885",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2024-56140",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2024-56159",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-54793",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-55303",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-59837",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-61925",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64525",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64745",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64757",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64764",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64765",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-65019",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-66202",
"advisory_id": "astro--CVE-2026-33769",
"system_id": "astro",
"priority": "version-sync"
},
@@ -613,11 +538,6 @@
"system_id": "django",
"priority": "version-sync"
},
{
"advisory_id": "fastify--CVE-2026-3635",
"system_id": "fastify",
"priority": "version-sync"
},
{
"advisory_id": "ghost--050f486105",
"system_id": "ghost",
@@ -1179,97 +1099,12 @@
"priority": "version-sync"
},
{
"advisory_id": "mattermost--Issue Identifier",
"advisory_id": "mattermost--CVE-2026-2456",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2025-00562",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2025-00566",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00574",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00578",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00584",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00589",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00590",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00593",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00594",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00595",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00598",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00599",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00603",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00610",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00611",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00621",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00624",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00625",
"advisory_id": "mattermost--CVE-2026-25783",
"system_id": "mattermost",
"priority": "version-sync"
},
@@ -2198,16 +2033,6 @@
"system_id": "prestashop",
"priority": "version-sync"
},
{
"advisory_id": "prestashop--CVE-2026-33673",
"system_id": "prestashop",
"priority": "version-sync"
},
{
"advisory_id": "prestashop--CVE-2026-33674",
"system_id": "prestashop",
"priority": "version-sync"
},
{
"advisory_id": "prestashop--a0f896f1ae",
"system_id": "prestashop",

16
08-threat-intel/generated/dashboard/data/monitor-summary.json
查看文件

@@ -1,11 +1,11 @@
{
"generated_at": "2026-03-26T10:20:18+00:00",
"generated_at": "2026-03-27T09:30:44+00:00",
"active_source_count": 102,
"green_source_count": 102,
"source_failure_count": 0,
"open_alert_count": 0,
"resolved_alert_count": 101,
"last_fully_green_run": "2026-03-26T10:20:18+00:00",
"last_fully_green_run": "2026-03-27T09:30:44+00:00",
"source_catalog": {
"system_count": 62,
"source_count": 179,
@@ -13,13 +13,11 @@
},
"ingest": {
"new_count": 3,
"updated_count": 2,
"updated_count": 0,
"failure_count": 0,
"systems_touched": [
"fastify",
"nextjs",
"prestashop",
"spring-security"
"astro",
"mattermost"
]
},
"validation": {
@@ -39,14 +37,14 @@
"cataloged_entity_total": 110,
"latest_version_synced_count": 95,
"source_gap_count": 15,
"security_version_total": 6297,
"security_version_total": 6307,
"security_version_entity_count": 83,
"auto_promoted_entity_count": 10,
"lab_enqueued_count": 3
},
"lab_enqueue": {
"enqueued": 3,
"queue_total": 2375,
"queue_total": 2378,
"pending_count": 0
}
}

370
08-threat-intel/generated/dashboard/data/release-index.json
查看文件

@@ -1,6 +1,6 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"version_count": 6297,
"generated_at": "2026-03-27T09:31:00+00:00",
"version_count": 6307,
"versions": [
{
"version_id": "angular--package--angular-core--introduced-0-last-affected-18-2-14",
@@ -510,6 +510,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--introduced-2-10-10-fixed-5-18-1",
"entity_id": "astro--project--astro",
"root_system_id": "astro",
"version": "introduced=2.10.10, fixed<5.18.1",
"released_at": "2026-03-26T18:45:17Z",
"release_url": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_name": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_confidence": "official",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"astro--CVE-2026-33769"
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--introduced-2-16-0-fixed-5-15-5",
"entity_id": "astro--project--astro",
@@ -800,6 +816,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--5-18-1",
"entity_id": "astro--project--astro",
"root_system_id": "astro",
"version": "5.18.1",
"released_at": "2026-03-26T19:01:26.420643Z",
"release_url": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_name": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_confidence": "official",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"astro--CVE-2026-33769"
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--9-1-1",
"entity_id": "astro--project--astro",
@@ -27119,7 +27151,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27273,7 +27305,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27287,7 +27319,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.11",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27315,7 +27347,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.12",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27623,7 +27655,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27665,7 +27697,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27679,7 +27711,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.3",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27693,7 +27725,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27721,7 +27753,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27749,7 +27781,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27763,7 +27795,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27805,7 +27837,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27819,7 +27851,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27833,7 +27865,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27889,7 +27921,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -37686,7 +37718,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -37840,7 +37872,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -37854,7 +37886,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "10.11.11",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38193,7 +38225,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38235,7 +38267,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38249,7 +38281,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.3",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38263,7 +38295,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38291,7 +38323,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38319,7 +38351,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38333,7 +38365,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38375,7 +38407,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38389,7 +38421,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38403,7 +38435,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38491,7 +38523,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48309,7 +48341,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48463,7 +48495,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48477,7 +48509,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.11",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48505,7 +48537,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.12",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48813,7 +48845,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48855,7 +48887,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48869,7 +48901,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.3",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48883,7 +48915,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48911,7 +48943,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48939,7 +48971,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48953,7 +48985,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48995,7 +49027,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -49009,7 +49041,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -49023,7 +49055,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -49079,7 +49111,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -58865,7 +58897,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59019,7 +59051,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59443,7 +59475,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59485,7 +59517,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59593,7 +59625,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59621,7 +59653,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59733,7 +59765,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59747,7 +59779,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59974,12 +60006,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -60129,6 +60163,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<5.3.2-0.20260127165411-fe3052073dc6",
"released_at": "2026-03-16T15:30:43Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -60161,6 +60211,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<5.3.2-0.20260129181235-1346cf529aef",
"released_at": "2026-03-16T15:30:42Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -60335,6 +60401,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<8.0.0-20260127165411-fe3052073dc6",
"released_at": "2026-03-16T15:30:43Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -60367,6 +60449,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<8.0.0-20260129181235-1346cf529aef",
"released_at": "2026-03-16T15:30:42Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -63789,6 +63887,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "5.3.2-0.20260127165411-fe3052073dc6",
"released_at": "2026-03-26T21:11:03.241919Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -63821,6 +63935,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "5.3.2-0.20260129181235-1346cf529aef",
"released_at": "2026-03-26T21:11:24.090883Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -67635,6 +67765,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "8.0.0-20260127165411-fe3052073dc6",
"released_at": "2026-03-26T21:11:03.241919Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -67667,6 +67813,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "8.0.0-20260129181235-1346cf529aef",
"released_at": "2026-03-26T21:11:24.090883Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -70488,7 +70650,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -70527,12 +70689,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70554,12 +70718,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70696,7 +70862,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -70721,12 +70887,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70748,12 +70916,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70778,7 +70948,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.12",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71086,7 +71256,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71125,12 +71295,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71155,7 +71327,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71180,12 +71352,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71207,12 +71381,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71223,7 +71399,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71251,7 +71427,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71290,12 +71466,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71317,12 +71495,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71344,12 +71524,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71360,7 +71542,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71402,7 +71584,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71416,7 +71598,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71430,7 +71612,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71486,7 +71668,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -90852,34 +91034,6 @@
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--1-1-1-reflected-cross-site-scripting-vulnerability",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "1-1-1-reflected-cross-site-scripting-vulnerability",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/gallery-for-ultimate-member/vulnerability/wordpress-video-photo-gallery-for-ultimate-member-plugin-1-1-1-reflected-cross-site-scripting-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--1-1-1",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "1.1.1",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/gallery-for-ultimate-member/vulnerability/wordpress-video-photo-gallery-for-ultimate-member-plugin-1-1-1-reflected-cross-site-scripting-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--2-2-0-reflected-cross-site-scripting-via-page-vulnerability",
"entity_id": "wordpress",
@@ -91034,6 +91188,34 @@
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/smart-slider-3/vulnerability/wordpress-smart-slider-3-plugin-3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--3-5-1-33",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "3.5.1.33",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/smart-slider-3/vulnerability/wordpress-smart-slider-3-plugin-3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--3-5-6-2-unauthenticated-arbitrary-file-read-via-media-field-vulnerability",
"entity_id": "wordpress",

2
08-threat-intel/generated/dashboard/data/source-catalog-audit.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T09:21:28+00:00",
"generated_at": "2026-03-27T09:23:48+00:00",
"system_count": 62,
"source_count": 179,
"active_source_count": 102,

320
08-threat-intel/generated/dashboard/data/source-health.json
查看文件

@@ -1,17 +1,17 @@
{
"generated_at": "2026-03-26T10:20:18+00:00",
"generated_at": "2026-03-27T09:30:44+00:00",
"active_source_count": 102,
"green_source_count": 102,
"failure_count": 0,
"all_green": true,
"last_fully_green_run": "2026-03-26T10:20:18+00:00",
"last_fully_green_run": "2026-03-27T09:30:44+00:00",
"retries_performed": 0,
"probes": [
{
"system_id": "adminer",
"source_name": "OSV Adminer",
"source_kind": "osv-batch",
"elapsed_seconds": 35.138,
"elapsed_seconds": 4.288,
"kind": "osv-batch",
"items_seen": 1
},
@@ -19,7 +19,7 @@
"system_id": "adobe-commerce",
"source_name": "Adobe Magento Security Index",
"source_kind": "vendor-index",
"elapsed_seconds": 1.973,
"elapsed_seconds": 6.387,
"kind": "vendor-index",
"items_seen": 46
},
@@ -27,7 +27,7 @@
"system_id": "angular",
"source_name": "OSV Angular",
"source_kind": "osv-batch",
"elapsed_seconds": 2.67,
"elapsed_seconds": 2.576,
"kind": "osv-batch",
"items_seen": 1
},
@@ -35,7 +35,7 @@
"system_id": "apache-httpd",
"source_name": "Apache HTTPD Security",
"source_kind": "html-links",
"elapsed_seconds": 34.836,
"elapsed_seconds": 3.254,
"kind": "html-links",
"items_seen": 182
},
@@ -43,15 +43,15 @@
"system_id": "apache-httpd",
"source_name": "CISA KEV Apache HTTPD",
"source_kind": "kev-json",
"elapsed_seconds": 3.387,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "apache-tomcat",
"source_name": "Apache Tomcat Security",
"source_kind": "html-links",
"elapsed_seconds": 35.095,
"elapsed_seconds": 3.341,
"kind": "html-links",
"items_seen": 270
},
@@ -59,15 +59,15 @@
"system_id": "apache-tomcat",
"source_name": "CISA KEV Tomcat",
"source_kind": "kev-json",
"elapsed_seconds": 3.466,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "aspnet-core",
"source_name": "OSV ASP.NET Core",
"source_kind": "osv-batch",
"elapsed_seconds": 35.025,
"elapsed_seconds": 3.827,
"kind": "osv-batch",
"items_seen": 1
},
@@ -75,7 +75,7 @@
"system_id": "astro",
"source_name": "OSV Astro",
"source_kind": "osv-batch",
"elapsed_seconds": 2.696,
"elapsed_seconds": 2.65,
"kind": "osv-batch",
"items_seen": 1
},
@@ -83,7 +83,7 @@
"system_id": "caddy",
"source_name": "OSV Caddy",
"source_kind": "osv-batch",
"elapsed_seconds": 35.139,
"elapsed_seconds": 4.154,
"kind": "osv-batch",
"items_seen": 1
},
@@ -91,7 +91,7 @@
"system_id": "directus",
"source_name": "Directus GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.195,
"elapsed_seconds": 1.349,
"kind": "html-links",
"items_seen": 127
},
@@ -99,7 +99,7 @@
"system_id": "directus",
"source_name": "OSV Directus",
"source_kind": "osv-batch",
"elapsed_seconds": 0.769,
"elapsed_seconds": 0.987,
"kind": "osv-batch",
"items_seen": 1
},
@@ -107,7 +107,7 @@
"system_id": "discourse",
"source_name": "Discourse Release Notes RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 1.538,
"elapsed_seconds": 2.398,
"kind": "rss-feed",
"items_seen": 30
},
@@ -115,7 +115,7 @@
"system_id": "discourse",
"source_name": "Discourse Security RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 0.926,
"elapsed_seconds": 1.097,
"kind": "rss-feed",
"items_seen": 3
},
@@ -123,7 +123,7 @@
"system_id": "discourse",
"source_name": "OSV Discourse",
"source_kind": "osv-batch",
"elapsed_seconds": 0.954,
"elapsed_seconds": 0.98,
"kind": "osv-batch",
"items_seen": 1
},
@@ -131,7 +131,7 @@
"system_id": "django",
"source_name": "Django Security Releases Archive",
"source_kind": "vendor-index",
"elapsed_seconds": 3.746,
"elapsed_seconds": 2.987,
"kind": "vendor-index",
"items_seen": 1276
},
@@ -139,7 +139,7 @@
"system_id": "django",
"source_name": "Django Security Weblog",
"source_kind": "vendor-index",
"elapsed_seconds": 35.137,
"elapsed_seconds": 2.987,
"kind": "vendor-index",
"items_seen": 332
},
@@ -147,7 +147,7 @@
"system_id": "django",
"source_name": "OSV Django",
"source_kind": "osv-batch",
"elapsed_seconds": 36.192,
"elapsed_seconds": 4.695,
"kind": "osv-batch",
"items_seen": 1
},
@@ -155,7 +155,7 @@
"system_id": "drupal",
"source_name": "Drupal Security Advisories RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 0.605,
"elapsed_seconds": 0.744,
"kind": "rss-feed",
"items_seen": 20
},
@@ -163,7 +163,7 @@
"system_id": "drupal",
"source_name": "OSV Drupal",
"source_kind": "osv-batch",
"elapsed_seconds": 1.981,
"elapsed_seconds": 2.022,
"kind": "osv-batch",
"items_seen": 1
},
@@ -171,7 +171,7 @@
"system_id": "echo",
"source_name": "OSV Echo",
"source_kind": "osv-batch",
"elapsed_seconds": 35.025,
"elapsed_seconds": 3.792,
"kind": "osv-batch",
"items_seen": 1
},
@@ -179,7 +179,7 @@
"system_id": "esbuild",
"source_name": "OSV esbuild",
"source_kind": "osv-batch",
"elapsed_seconds": 3.263,
"elapsed_seconds": 3.176,
"kind": "osv-batch",
"items_seen": 1
},
@@ -187,7 +187,7 @@
"system_id": "express",
"source_name": "OSV Express",
"source_kind": "osv-batch",
"elapsed_seconds": 2.915,
"elapsed_seconds": 2.68,
"kind": "osv-batch",
"items_seen": 1
},
@@ -195,7 +195,7 @@
"system_id": "fastify",
"source_name": "OSV Fastify",
"source_kind": "osv-batch",
"elapsed_seconds": 3.079,
"elapsed_seconds": 3.062,
"kind": "osv-batch",
"items_seen": 1
},
@@ -203,7 +203,7 @@
"system_id": "flask",
"source_name": "OSV Flask",
"source_kind": "osv-batch",
"elapsed_seconds": 35.078,
"elapsed_seconds": 3.732,
"kind": "osv-batch",
"items_seen": 1
},
@@ -211,7 +211,7 @@
"system_id": "ghost",
"source_name": "Ghost GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.099,
"elapsed_seconds": 1.102,
"kind": "html-links",
"items_seen": 119
},
@@ -219,7 +219,7 @@
"system_id": "ghost",
"source_name": "OSV Ghost",
"source_kind": "osv-batch",
"elapsed_seconds": 0.79,
"elapsed_seconds": 1.03,
"kind": "osv-batch",
"items_seen": 1
},
@@ -227,7 +227,7 @@
"system_id": "gin",
"source_name": "OSV Gin",
"source_kind": "osv-batch",
"elapsed_seconds": 35.023,
"elapsed_seconds": 4.84,
"kind": "osv-batch",
"items_seen": 1
},
@@ -235,7 +235,7 @@
"system_id": "gitea",
"source_name": "OSV Gitea",
"source_kind": "osv-batch",
"elapsed_seconds": 35.524,
"elapsed_seconds": 5.232,
"kind": "osv-batch",
"items_seen": 1
},
@@ -243,7 +243,7 @@
"system_id": "gitlab-ce",
"source_name": "GitLab Advisory Database",
"source_kind": "html-links",
"elapsed_seconds": 35.891,
"elapsed_seconds": 3.5,
"kind": "html-links",
"items_seen": 5
},
@@ -251,7 +251,7 @@
"system_id": "gitlab-ce",
"source_name": "GitLab Security Releases Atom",
"source_kind": "atom-feed",
"elapsed_seconds": 35.675,
"elapsed_seconds": 3.5,
"kind": "atom-feed",
"items_seen": 187
},
@@ -259,15 +259,15 @@
"system_id": "grafana",
"source_name": "CISA KEV Grafana",
"source_kind": "kev-json",
"elapsed_seconds": 35.076,
"elapsed_seconds": 3.502,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "grafana",
"source_name": "Grafana Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 35.677,
"elapsed_seconds": 3.5,
"kind": "html-links",
"items_seen": 159
},
@@ -275,7 +275,7 @@
"system_id": "hapi",
"source_name": "OSV Hapi",
"source_kind": "osv-batch",
"elapsed_seconds": 3.044,
"elapsed_seconds": 4.115,
"kind": "osv-batch",
"items_seen": 1
},
@@ -283,7 +283,7 @@
"system_id": "haproxy",
"source_name": "HAProxy Blog Feed",
"source_kind": "rss-feed",
"elapsed_seconds": 36.064,
"elapsed_seconds": 3.463,
"kind": "rss-feed",
"items_seen": 10
},
@@ -291,7 +291,7 @@
"system_id": "jenkins",
"source_name": "Jenkins Security Advisories RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 35.416,
"elapsed_seconds": 3.5,
"kind": "rss-feed",
"items_seen": 96
},
@@ -299,7 +299,7 @@
"system_id": "joomla",
"source_name": "Joomla Security Centre",
"source_kind": "html-links",
"elapsed_seconds": 1.637,
"elapsed_seconds": 1.786,
"kind": "html-links",
"items_seen": 139
},
@@ -307,7 +307,7 @@
"system_id": "joomla",
"source_name": "OSV Joomla",
"source_kind": "osv-batch",
"elapsed_seconds": 0.647,
"elapsed_seconds": 0.983,
"kind": "osv-batch",
"items_seen": 1
},
@@ -315,7 +315,7 @@
"system_id": "kibana",
"source_name": "Elastic Product Security",
"source_kind": "html-links",
"elapsed_seconds": 36.254,
"elapsed_seconds": 3.502,
"kind": "html-links",
"items_seen": 66
},
@@ -323,7 +323,7 @@
"system_id": "kibana",
"source_name": "NVD Kibana",
"source_kind": "nvd-search",
"elapsed_seconds": 36.067,
"elapsed_seconds": 5.239,
"kind": "nvd-search",
"items_seen": 1
},
@@ -331,7 +331,7 @@
"system_id": "koa",
"source_name": "OSV Koa",
"source_kind": "osv-batch",
"elapsed_seconds": 2.967,
"elapsed_seconds": 2.932,
"kind": "osv-batch",
"items_seen": 1
},
@@ -339,7 +339,7 @@
"system_id": "laravel",
"source_name": "OSV Laravel",
"source_kind": "osv-batch",
"elapsed_seconds": 35.139,
"elapsed_seconds": 4.021,
"kind": "osv-batch",
"items_seen": 1
},
@@ -347,7 +347,7 @@
"system_id": "magento-open-source",
"source_name": "Magento GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.624,
"elapsed_seconds": 1.79,
"kind": "html-links",
"items_seen": 99
},
@@ -355,7 +355,7 @@
"system_id": "magento-open-source",
"source_name": "OSV Magento Open Source",
"source_kind": "osv-batch",
"elapsed_seconds": 1.524,
"elapsed_seconds": 2.987,
"kind": "osv-batch",
"items_seen": 1
},
@@ -363,7 +363,7 @@
"system_id": "magento-open-source",
"source_name": "Sansec Research",
"source_kind": "html-links",
"elapsed_seconds": 2.02,
"elapsed_seconds": 2.628,
"kind": "html-links",
"items_seen": 135
},
@@ -371,7 +371,7 @@
"system_id": "mattermost",
"source_name": "Mattermost Security Updates JSON",
"source_kind": "json-feed",
"elapsed_seconds": 35.602,
"elapsed_seconds": 3.732,
"kind": "json-feed",
"items_seen": 594
},
@@ -379,7 +379,7 @@
"system_id": "mattermost",
"source_name": "OSV Mattermost",
"source_kind": "osv-batch",
"elapsed_seconds": 36.592,
"elapsed_seconds": 5.204,
"kind": "osv-batch",
"items_seen": 1
},
@@ -387,7 +387,7 @@
"system_id": "mediawiki",
"source_name": "MediaWiki Announce RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 2.337,
"elapsed_seconds": 2.997,
"kind": "rss-feed",
"items_seen": 30
},
@@ -395,7 +395,7 @@
"system_id": "mediawiki",
"source_name": "OSV MediaWiki",
"source_kind": "osv-batch",
"elapsed_seconds": 0.812,
"elapsed_seconds": 5.941,
"kind": "osv-batch",
"items_seen": 1
},
@@ -403,7 +403,7 @@
"system_id": "medusa",
"source_name": "OSV Medusa",
"source_kind": "osv-batch",
"elapsed_seconds": 2.581,
"elapsed_seconds": 2.198,
"kind": "osv-batch",
"items_seen": 1
},
@@ -411,7 +411,7 @@
"system_id": "moodle",
"source_name": "OSV Moodle",
"source_kind": "osv-batch",
"elapsed_seconds": 37.993,
"elapsed_seconds": 8.986,
"kind": "osv-batch",
"items_seen": 1
},
@@ -419,7 +419,7 @@
"system_id": "nestjs",
"source_name": "OSV NestJS",
"source_kind": "osv-batch",
"elapsed_seconds": 3.06,
"elapsed_seconds": 2.925,
"kind": "osv-batch",
"items_seen": 1
},
@@ -427,7 +427,7 @@
"system_id": "nextjs",
"source_name": "OSV Next.js",
"source_kind": "osv-batch",
"elapsed_seconds": 2.437,
"elapsed_seconds": 3.366,
"kind": "osv-batch",
"items_seen": 1
},
@@ -435,15 +435,15 @@
"system_id": "nginx",
"source_name": "CISA KEV NGINX",
"source_kind": "kev-json",
"elapsed_seconds": 3.374,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "nginx",
"source_name": "NGINX Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 35.358,
"elapsed_seconds": 3.234,
"kind": "html-links",
"items_seen": 150
},
@@ -451,15 +451,15 @@
"system_id": "nodejs",
"source_name": "CISA KEV Node.js",
"source_kind": "kev-json",
"elapsed_seconds": 2.964,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "nodejs",
"source_name": "Node.js Security Releases",
"source_kind": "html-links",
"elapsed_seconds": 3.026,
"elapsed_seconds": 2.548,
"kind": "html-links",
"items_seen": 74
},
@@ -467,7 +467,7 @@
"system_id": "nuxt",
"source_name": "OSV Nuxt",
"source_kind": "osv-batch",
"elapsed_seconds": 2.774,
"elapsed_seconds": 3.491,
"kind": "osv-batch",
"items_seen": 1
},
@@ -475,7 +475,7 @@
"system_id": "opencart",
"source_name": "OSV OpenCart",
"source_kind": "osv-batch",
"elapsed_seconds": 2.392,
"elapsed_seconds": 2.99,
"kind": "osv-batch",
"items_seen": 1
},
@@ -483,7 +483,7 @@
"system_id": "opencart",
"source_name": "OpenCart Releases",
"source_kind": "html-links",
"elapsed_seconds": 36.392,
"elapsed_seconds": 1.16,
"kind": "html-links",
"items_seen": 1500
},
@@ -491,7 +491,7 @@
"system_id": "openmage",
"source_name": "OSV OpenMage",
"source_kind": "osv-batch",
"elapsed_seconds": 1.535,
"elapsed_seconds": 1.653,
"kind": "osv-batch",
"items_seen": 1
},
@@ -499,7 +499,7 @@
"system_id": "openmage",
"source_name": "OpenMage GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.323,
"elapsed_seconds": 2.083,
"kind": "html-links",
"items_seen": 125
},
@@ -507,7 +507,7 @@
"system_id": "phpmyadmin",
"source_name": "OSV phpMyAdmin",
"source_kind": "osv-batch",
"elapsed_seconds": 35.308,
"elapsed_seconds": 5.239,
"kind": "osv-batch",
"items_seen": 1
},
@@ -515,7 +515,7 @@
"system_id": "phpmyadmin",
"source_name": "phpMyAdmin Security Page",
"source_kind": "html-links",
"elapsed_seconds": 35.049,
"elapsed_seconds": 3.463,
"kind": "html-links",
"items_seen": 263
},
@@ -523,7 +523,7 @@
"system_id": "prestashop",
"source_name": "Friends Of Presta Security",
"source_kind": "html-links",
"elapsed_seconds": 2.331,
"elapsed_seconds": 1.097,
"kind": "html-links",
"items_seen": 38
},
@@ -531,7 +531,7 @@
"system_id": "prestashop",
"source_name": "GitHub PrestaShop Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.245,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 127
},
@@ -539,7 +539,7 @@
"system_id": "prestashop",
"source_name": "OSV PrestaShop",
"source_kind": "osv-batch",
"elapsed_seconds": 1.978,
"elapsed_seconds": 1.816,
"kind": "osv-batch",
"items_seen": 1
},
@@ -547,7 +547,7 @@
"system_id": "prestashop",
"source_name": "PrestaShop Security Page",
"source_kind": "html-links",
"elapsed_seconds": 1.843,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 60
},
@@ -555,7 +555,7 @@
"system_id": "rails",
"source_name": "OSV Rails",
"source_kind": "osv-batch",
"elapsed_seconds": 3.748,
"elapsed_seconds": 4.015,
"kind": "osv-batch",
"items_seen": 1
},
@@ -563,7 +563,7 @@
"system_id": "react",
"source_name": "OSV React",
"source_kind": "osv-batch",
"elapsed_seconds": 2.581,
"elapsed_seconds": 2.203,
"kind": "osv-batch",
"items_seen": 1
},
@@ -571,7 +571,7 @@
"system_id": "redmine",
"source_name": "OSV Redmine",
"source_kind": "osv-batch",
"elapsed_seconds": 35.697,
"elapsed_seconds": 5.509,
"kind": "osv-batch",
"items_seen": 1
},
@@ -579,7 +579,7 @@
"system_id": "redmine",
"source_name": "Redmine Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 36.813,
"elapsed_seconds": 3.792,
"kind": "html-links",
"items_seen": 371
},
@@ -587,7 +587,7 @@
"system_id": "saleor",
"source_name": "GitHub Saleor Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.78,
"elapsed_seconds": 1.344,
"kind": "html-links",
"items_seen": 120
},
@@ -595,7 +595,7 @@
"system_id": "saleor",
"source_name": "OSV Saleor",
"source_kind": "osv-batch",
"elapsed_seconds": 2.388,
"elapsed_seconds": 3.067,
"kind": "osv-batch",
"items_seen": 1
},
@@ -603,7 +603,7 @@
"system_id": "shopware",
"source_name": "OSV Shopware",
"source_kind": "osv-batch",
"elapsed_seconds": 2.492,
"elapsed_seconds": 2.548,
"kind": "osv-batch",
"items_seen": 1
},
@@ -611,7 +611,7 @@
"system_id": "shopware",
"source_name": "Shopware Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.388,
"elapsed_seconds": 1.097,
"kind": "html-links",
"items_seen": 129
},
@@ -619,7 +619,7 @@
"system_id": "spring-boot",
"source_name": "OSV Spring Boot",
"source_kind": "osv-batch",
"elapsed_seconds": 3.466,
"elapsed_seconds": 4.021,
"kind": "osv-batch",
"items_seen": 1
},
@@ -627,7 +627,7 @@
"system_id": "spring-boot",
"source_name": "Spring Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 3.614,
"elapsed_seconds": 2.68,
"kind": "html-links",
"items_seen": 118
},
@@ -635,7 +635,7 @@
"system_id": "spring-framework",
"source_name": "OSV Spring Framework",
"source_kind": "osv-batch",
"elapsed_seconds": 3.387,
"elapsed_seconds": 3.234,
"kind": "osv-batch",
"items_seen": 1
},
@@ -643,7 +643,7 @@
"system_id": "spring-framework",
"source_name": "Spring Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 3.614,
"elapsed_seconds": 2.628,
"kind": "html-links",
"items_seen": 118
},
@@ -651,7 +651,7 @@
"system_id": "spring-security",
"source_name": "OSV Spring Security",
"source_kind": "osv-batch",
"elapsed_seconds": 3.374,
"elapsed_seconds": 3.341,
"kind": "osv-batch",
"items_seen": 1
},
@@ -659,7 +659,7 @@
"system_id": "spring-security",
"source_name": "Spring Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 3.614,
"elapsed_seconds": 2.65,
"kind": "html-links",
"items_seen": 118
},
@@ -667,7 +667,7 @@
"system_id": "strapi",
"source_name": "OSV Strapi",
"source_kind": "osv-batch",
"elapsed_seconds": 0.781,
"elapsed_seconds": 1.074,
"kind": "osv-batch",
"items_seen": 1
},
@@ -675,7 +675,7 @@
"system_id": "strapi",
"source_name": "Strapi GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.038,
"elapsed_seconds": 1.165,
"kind": "html-links",
"items_seen": 124
},
@@ -683,7 +683,7 @@
"system_id": "sveltekit",
"source_name": "OSV SvelteKit",
"source_kind": "osv-batch",
"elapsed_seconds": 2.69,
"elapsed_seconds": 2.566,
"kind": "osv-batch",
"items_seen": 1
},
@@ -691,7 +691,7 @@
"system_id": "symfony",
"source_name": "OSV Symfony",
"source_kind": "osv-batch",
"elapsed_seconds": 35.448,
"elapsed_seconds": 4.636,
"kind": "osv-batch",
"items_seen": 1
},
@@ -699,7 +699,7 @@
"system_id": "traefik",
"source_name": "OSV Traefik",
"source_kind": "osv-batch",
"elapsed_seconds": 35.077,
"elapsed_seconds": 4.253,
"kind": "osv-batch",
"items_seen": 1
},
@@ -707,7 +707,7 @@
"system_id": "undici",
"source_name": "OSV Undici",
"source_kind": "osv-batch",
"elapsed_seconds": 3.099,
"elapsed_seconds": 3.254,
"kind": "osv-batch",
"items_seen": 1
},
@@ -715,7 +715,7 @@
"system_id": "vite",
"source_name": "OSV Vite",
"source_kind": "osv-batch",
"elapsed_seconds": 2.688,
"elapsed_seconds": 2.577,
"kind": "osv-batch",
"items_seen": 1
},
@@ -723,7 +723,7 @@
"system_id": "vue",
"source_name": "OSV Vue",
"source_kind": "osv-batch",
"elapsed_seconds": 2.85,
"elapsed_seconds": 2.381,
"kind": "osv-batch",
"items_seen": 1
},
@@ -731,7 +731,7 @@
"system_id": "webpack",
"source_name": "OSV webpack",
"source_kind": "osv-batch",
"elapsed_seconds": 3.154,
"elapsed_seconds": 3.176,
"kind": "osv-batch",
"items_seen": 1
},
@@ -739,7 +739,7 @@
"system_id": "werkzeug",
"source_name": "OSV Werkzeug",
"source_kind": "osv-batch",
"elapsed_seconds": 35.076,
"elapsed_seconds": 4.113,
"kind": "osv-batch",
"items_seen": 1
},
@@ -747,7 +747,7 @@
"system_id": "woocommerce",
"source_name": "GitHub WooCommerce Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.976,
"elapsed_seconds": 1.069,
"kind": "html-links",
"items_seen": 107
},
@@ -755,7 +755,7 @@
"system_id": "woocommerce",
"source_name": "OSV WooCommerce",
"source_kind": "osv-batch",
"elapsed_seconds": 1.642,
"elapsed_seconds": 1.716,
"kind": "osv-batch",
"items_seen": 1
},
@@ -763,7 +763,7 @@
"system_id": "woocommerce",
"source_name": "Patchstack Database",
"source_kind": "html-links",
"elapsed_seconds": 1.183,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 193
},
@@ -771,7 +771,7 @@
"system_id": "woocommerce",
"source_name": "Woo Developer Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.636,
"elapsed_seconds": 1.069,
"kind": "html-links",
"items_seen": 121
},
@@ -779,7 +779,7 @@
"system_id": "woocommerce",
"source_name": "Wordfence Vulnerability Database",
"source_kind": "html-links",
"elapsed_seconds": 1.106,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 0
},
@@ -787,7 +787,7 @@
"system_id": "wordpress",
"source_name": "Patchstack Database",
"source_kind": "html-links",
"elapsed_seconds": 1.185,
"elapsed_seconds": 0.009,
"kind": "html-links",
"items_seen": 193
},
@@ -795,7 +795,7 @@
"system_id": "wordpress",
"source_name": "PortSwigger Research",
"source_kind": "html-links",
"elapsed_seconds": 1.336,
"elapsed_seconds": 1.594,
"kind": "html-links",
"items_seen": 99
},
@@ -803,7 +803,7 @@
"system_id": "wordpress",
"source_name": "WPScan Vulnerability Database",
"source_kind": "html-links",
"elapsed_seconds": 1.108,
"elapsed_seconds": 1.582,
"kind": "html-links",
"items_seen": 74
},
@@ -811,7 +811,7 @@
"system_id": "wordpress",
"source_name": "WordPress Security News RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 1.483,
"elapsed_seconds": 1.912,
"kind": "rss-feed",
"items_seen": 10
},
@@ -819,7 +819,7 @@
"system_id": "wordpress",
"source_name": "Wordfence Vulnerability Database",
"source_kind": "html-links",
"elapsed_seconds": 0.34,
"elapsed_seconds": 0.009,
"kind": "html-links",
"items_seen": 0
}
@@ -830,70 +830,70 @@
"system_id": "moodle",
"source_name": "OSV Moodle",
"source_kind": "osv-batch",
"elapsed_seconds": 37.993,
"elapsed_seconds": 8.986,
"status": "ok"
},
{
"system_id": "redmine",
"source_name": "Redmine Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 36.813,
"system_id": "adobe-commerce",
"source_name": "Adobe Magento Security Index",
"source_kind": "vendor-index",
"elapsed_seconds": 6.387,
"status": "ok"
},
{
"system_id": "mattermost",
"source_name": "OSV Mattermost",
"system_id": "mediawiki",
"source_name": "OSV MediaWiki",
"source_kind": "osv-batch",
"elapsed_seconds": 36.592,
"status": "ok"
},
{
"system_id": "opencart",
"source_name": "OpenCart Releases",
"source_kind": "html-links",
"elapsed_seconds": 36.392,
"status": "ok"
},
{
"system_id": "kibana",
"source_name": "Elastic Product Security",
"source_kind": "html-links",
"elapsed_seconds": 36.254,
"status": "ok"
},
{
"system_id": "django",
"source_name": "OSV Django",
"source_kind": "osv-batch",
"elapsed_seconds": 36.192,
"status": "ok"
},
{
"system_id": "kibana",
"source_name": "NVD Kibana",
"source_kind": "nvd-search",
"elapsed_seconds": 36.067,
"status": "ok"
},
{
"system_id": "haproxy",
"source_name": "HAProxy Blog Feed",
"source_kind": "rss-feed",
"elapsed_seconds": 36.064,
"status": "ok"
},
{
"system_id": "gitlab-ce",
"source_name": "GitLab Advisory Database",
"source_kind": "html-links",
"elapsed_seconds": 35.891,
"elapsed_seconds": 5.941,
"status": "ok"
},
{
"system_id": "redmine",
"source_name": "OSV Redmine",
"source_kind": "osv-batch",
"elapsed_seconds": 35.697,
"elapsed_seconds": 5.509,
"status": "ok"
},
{
"system_id": "kibana",
"source_name": "NVD Kibana",
"source_kind": "nvd-search",
"elapsed_seconds": 5.239,
"status": "ok"
},
{
"system_id": "phpmyadmin",
"source_name": "OSV phpMyAdmin",
"source_kind": "osv-batch",
"elapsed_seconds": 5.239,
"status": "ok"
},
{
"system_id": "gitea",
"source_name": "OSV Gitea",
"source_kind": "osv-batch",
"elapsed_seconds": 5.232,
"status": "ok"
},
{
"system_id": "mattermost",
"source_name": "OSV Mattermost",
"source_kind": "osv-batch",
"elapsed_seconds": 5.204,
"status": "ok"
},
{
"system_id": "gin",
"source_name": "OSV Gin",
"source_kind": "osv-batch",
"elapsed_seconds": 4.84,
"status": "ok"
},
{
"system_id": "django",
"source_name": "OSV Django",
"source_kind": "osv-batch",
"elapsed_seconds": 4.695,
"status": "ok"
}
],

2
08-threat-intel/generated/dashboard/data/version-backlog.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:31:00+00:00",
"source_gap_entities": [
{
"entity_id": "adminer",

50
08-threat-intel/generated/dashboard/data/version-completeness.json
查看文件

@@ -1,9 +1,9 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:31:00+00:00",
"cataloged_entity_total": 110,
"latest_version_synced_count": 95,
"source_gap_count": 15,
"security_version_total": 6297,
"security_version_total": 6307,
"security_version_entity_count": 83,
"auto_promoted_entity_count": 10,
"lab_enqueued_count": 3,
@@ -109,14 +109,14 @@
"cataloged_entity_total": 3,
"latest_version_synced_count": 3,
"source_gap_count": 0,
"security_version_count": 30,
"security_version_count": 32,
"auto_promoted_count": 0,
"latest_versions": [
{
"entity_id": "astro",
"display_name": "Astro",
"entity_type": "system",
"latest_version": "6.0.8",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
},
@@ -124,7 +124,7 @@
"entity_id": "astro--project--astro",
"display_name": "astro",
"entity_type": "project",
"latest_version": "6.0.8",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-27T08:22:36.525875Z",
"version_sync_status": "green"
},
@@ -132,7 +132,7 @@
"entity_id": "astro--module--astro",
"display_name": "astro",
"entity_type": "module",
"latest_version": "6.0.8",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
}
@@ -396,16 +396,16 @@
"entity_id": "ghost",
"display_name": "Ghost",
"entity_type": "system",
"latest_version": "6.22.1",
"latest_release_at": "2026-03-20T15:25:05Z",
"latest_version": "6.23.0",
"latest_release_at": "2026-03-26T15:04:27Z",
"version_sync_status": "green"
},
{
"entity_id": "ghost--repo--tryghost-ghost",
"display_name": "TryGhost / Ghost",
"entity_type": "repo",
"latest_version": "6.22.1",
"latest_release_at": "2026-03-20T15:25:05Z",
"latest_version": "6.23.0",
"latest_release_at": "2026-03-26T15:04:27Z",
"version_sync_status": "green"
}
]
@@ -648,7 +648,7 @@
"cataloged_entity_total": 5,
"latest_version_synced_count": 5,
"source_gap_count": 0,
"security_version_count": 3840,
"security_version_count": 3848,
"auto_promoted_count": 0,
"latest_versions": [
{
@@ -659,14 +659,6 @@
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"display_name": "Mattermost Server",
"entity_type": "project",
"latest_version": "26.2.1",
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"display_name": "mattermost / mattermost-server",
@@ -675,6 +667,14 @@
"latest_release_at": "2026-03-16T08:26:52Z",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"display_name": "Mattermost Server",
"entity_type": "project",
"latest_version": "26.2.1",
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"display_name": "Mattermost Plugins",
@@ -1217,24 +1217,24 @@
"entity_id": "traefik",
"display_name": "Traefik",
"entity_type": "system",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
},
{
"entity_id": "traefik--repo--github-com-traefik-traefik-v3",
"display_name": "traefik / traefik / v3",
"entity_type": "repo",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
},
{
"entity_id": "traefik--extension--github-com-traefik-traefik-v3",
"display_name": "traefik / traefik / v3",
"entity_type": "extension",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
}
]

12
08-threat-intel/generated/dashboard/docs/architecture-library.html
查看文件

@@ -87,7 +87,7 @@
<h1>当前架构库镜像</h1>
<div class="meta">工作台内置镜像页:当前架构库结构化数据镜像。</div>
<pre>{
&quot;generated_at&quot;: &quot;2026-03-26T10:20:35+00:00&quot;,
&quot;generated_at&quot;: &quot;2026-03-27T09:31:01+00:00&quot;,
&quot;title&quot;: &quot;当前架构库&quot;,
&quot;summary&quot;: &quot;工作台、控制面、数据层、授权边界与系统覆盖的当前真值视图。&quot;,
&quot;sections&quot;: [
@@ -127,7 +127,7 @@
},
{
&quot;label&quot;: &quot;当前漏洞条目&quot;,
&quot;value&quot;: &quot;2419&quot;
&quot;value&quot;: &quot;2422&quot;
}
],
&quot;fields&quot;: [
@@ -145,7 +145,7 @@
},
{
&quot;label&quot;: &quot;生成时间&quot;,
&quot;value&quot;: &quot;2026-03-26T10:20:35+00:00&quot;
&quot;value&quot;: &quot;2026-03-27T09:31:01+00:00&quot;
}
],
&quot;links&quot;: [
@@ -6061,7 +6061,7 @@
},
{
&quot;label&quot;: &quot;Advisory 数&quot;,
&quot;value&quot;: &quot;2419&quot;
&quot;value&quot;: &quot;2422&quot;
},
{
&quot;label&quot;: &quot;状态类型&quot;,
@@ -6080,7 +6080,7 @@
&quot;items&quot;: [
{
&quot;title&quot;: &quot;人工分诊&quot;,
&quot;summary&quot;: &quot;当前累计 2330 条。&quot;,
&quot;summary&quot;: &quot;当前累计 2333 条。&quot;,
&quot;open&quot;: false,
&quot;fields&quot;: [
{
@@ -6089,7 +6089,7 @@
},
{
&quot;label&quot;: &quot;数量&quot;,
&quot;value&quot;: &quot;2330&quot;
&quot;value&quot;: &quot;2333&quot;
}
]
},

4
08-threat-intel/generated/dashboard/docs/coverage-matrix.html
查看文件

@@ -96,7 +96,7 @@
| Apache HTTP Server | `servers` | `history-full` | `yes` | `yes` | `135` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-05-22` |
| Apache Tomcat | `servers` | `history-full` | `yes` | `yes` | `136` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-04-22` |
| ASP.NET Core | `frameworks` | `rolling-24m` | `-` | `yes` | `3` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-11T13:53:20.707` |
| Astro | `frameworks` | `rolling-24m` | `-` | `yes` | `14` | `14` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-02-04T03:01:27.986221Z` |
| Astro | `frameworks` | `rolling-24m` | `-` | `yes` | `15` | `15` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-26T19:01:26.420643Z` |
| Caddy | `servers` | `rolling-24m` | `-` | `yes` | `29` | `0` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-23T04:52:47.870034Z` |
| Directus | `cms` | `rolling-24m` | `-` | `yes` | `29` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `` |
| Discourse | `cms` | `rolling-24m` | `-` | `yes` | `30` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `30` | `Wed, 28 May 2025 05:22:52 +0000` |
@@ -120,7 +120,7 @@
| Koa | `frameworks` | `rolling-24m` | `-` | `yes` | `1` | `1` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-02-26T23:36:36.294040Z` |
| Laravel | `frameworks` | `rolling-24m` | `-` | `yes` | `2` | `2` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-13T22:15:34.333730Z` |
| Magento Open Source | `ecommerce` | `history-full` | `yes` | `yes` | `89` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-04-20T01:37:25.860` |
| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `31` | `31` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `33` | `33` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
| MediaWiki | `cms` | `rolling-24m` | `-` | `yes` | `70` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `70` | `Wed, 22 Oct 2025 21:44:43 +0000` |
| Medusa | `ecommerce` | `rolling-24m` | `-` | `yes` | `15` | `0` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `15` | `` |
| Moodle | `cms` | `rolling-24m` | `-` | `yes` | `40` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `40` | `2025-04-09T00:30:58.490` |

2
08-threat-intel/generated/dashboard/docs/entity-catalog-report.html
查看文件

@@ -88,7 +88,7 @@
<div class="meta">工作台内置镜像页分层实体覆盖、history-full 完整度和 workflow 统计。</div>
<pre># 分层实体覆盖与完整度报告
- 生成时间: `2026-03-26T10:20:34+00:00`
- 生成时间: `2026-03-27T09:30:59+00:00`
- 已编目实体: `110`
- 待编目 backlog: `7`
- history-full 已完成: `41`

2
08-threat-intel/generated/dashboard/docs/entity-discovery-backlog.html
查看文件

@@ -88,7 +88,7 @@
<div class="meta">工作台内置镜像页:待编目 repo / 插件 / 包 backlog 与等待原因。</div>
<pre># 分层实体发现 Backlog
- 生成时间: `2026-03-26T10:20:34+00:00`
- 生成时间: `2026-03-27T09:30:59+00:00`
- 待编目数量: `7`
| candidate_id | root_system | entity_type | risk | reason | waiting_for | source |

2
08-threat-intel/generated/dashboard/docs/source-catalog-audit.html
查看文件

@@ -88,7 +88,7 @@
<div class="meta">工作台内置镜像页active/retired source、replacement map 与覆盖摘要。</div>
<pre># Source Catalog Audit
- generated_at: `2026-03-26T09:21:28+00:00`
- generated_at: `2026-03-27T09:23:48+00:00`
- systems: `62`
- sources: `179`
- active_sources: `102`

4
08-threat-intel/generated/dashboard/docs/testing-completeness-report.html
查看文件

@@ -88,7 +88,7 @@
<div class="meta">工作台内置镜像页89 条 advisory 最新完整度、family 矩阵与 ingest 健康度。</div>
<pre># 全库 Advisory 完整度报告
- 生成时间: `2026-03-26T10:20:35+00:00`
- 生成时间: `2026-03-27T09:31:01+00:00`
- 最新 advisory 完整度: `89/89` `verified-real`
- 合成验证数量: `0`
- 阻塞数量: `0`
@@ -96,7 +96,7 @@
- 完整度百分比: `100.0%`
- active source 全绿: `102/102`
- source open alerts: `0`
- 最近一次 source 全绿: `2026-03-26T10:20:18+00:00`
- 最近一次 source 全绿: `2026-03-27T09:30:44+00:00`
- 已编目实体: `110`
- 待编目 backlog: `7`

8
08-threat-intel/generated/dashboard/docs/version-sync-report.html
查看文件

@@ -88,11 +88,11 @@
<div class="meta">工作台内置镜像页安全相关版本历史、source-gap 与版本驱动 lab enqueue 摘要。</div>
<pre># 安全相关版本同步报告
- 生成时间: `2026-03-26T10:20:34+00:00`
- 生成时间: `2026-03-27T09:31:00+00:00`
- 已编目实体: `110`
- 最新版本已同步: `95`
- 版本 source-gap: `15`
- 安全相关版本记录: `6297`
- 安全相关版本记录: `6307`
- 存在安全版本历史的实体: `83`
- 自动升级实体: `10`
- 因版本变化触发 lab 入队: `3`
@@ -107,7 +107,7 @@
| apache-httpd | 1 | 1 | 0 | 1 | 0 |
| apache-tomcat | 1 | 1 | 0 | 2 | 0 |
| aspnet-core | 1 | 0 | 1 | 0 | 0 |
| astro | 3 | 3 | 0 | 30 | 0 |
| astro | 3 | 3 | 0 | 32 | 0 |
| caddy | 3 | 3 | 0 | 7 | 0 |
| directus | 2 | 2 | 0 | 2 | 1 |
| discourse | 1 | 1 | 0 | 80 | 0 |
@@ -131,7 +131,7 @@
| koa | 2 | 2 | 0 | 4 | 0 |
| laravel | 2 | 2 | 0 | 103 | 0 |
| magento-open-source | 2 | 2 | 0 | 6 | 1 |
| mattermost | 5 | 5 | 0 | 3840 | 0 |
| mattermost | 5 | 5 | 0 | 3848 | 0 |
| mediawiki | 1 | 1 | 0 | 252 | 0 |
| medusa | 1 | 0 | 1 | 0 | 0 |
| moodle | 1 | 0 | 1 | 0 | 0 |

332
08-threat-intel/generated/dashboard/entities.json
查看文件

文件差异内容过多而无法显示 加载差异

594
08-threat-intel/generated/dashboard/summary.json
查看文件

文件差异内容过多而无法显示 加载差异

514
08-threat-intel/generated/dashboard/systems.json
查看文件

@@ -68,7 +68,7 @@
"system": 1
},
"latest_version": "51.1.49",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 54
},
@@ -177,7 +177,7 @@
"system": 1
},
"latest_version": "11.0-doc",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 2
},
@@ -274,7 +274,7 @@
"system": 1
},
"latest_version": "2.4.x",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 1
},
@@ -419,7 +419,7 @@
"repo": 1
},
"latest_version": "8.2.5",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 59
},
@@ -520,7 +520,7 @@
"repo": 1
},
"latest_version": "10.6.1",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 10
},
@@ -596,7 +596,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -669,7 +669,7 @@
"system": 1
},
"latest_version": "1017-20260102-core-xss-vector-in-the-pagebreak-plugin.html",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 5
},
@@ -800,7 +800,7 @@
"repo": 1
},
"latest_version": "3.0.5.0",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 4
},
@@ -925,7 +925,7 @@
"repo": 1
},
"latest_version": "2.4.9-beta1",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 6
},
@@ -1026,7 +1026,7 @@
"project": 1
},
"latest_version": "1.0.0",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 182
},
@@ -1090,7 +1090,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:22+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -1221,7 +1221,7 @@
"repo": 1
},
"latest_version": "6.7.8.2",
"last_version_synced_at": "2026-03-26T10:20:26+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 0
},
@@ -1294,7 +1294,7 @@
"system": 1
},
"latest_version": "11.2.8",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 74
},
@@ -1367,7 +1367,7 @@
"system": 1
},
"latest_version": "28-10-2025",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 252
},
@@ -1512,7 +1512,7 @@
"project": 1
},
"latest_version": "16.2.1",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 168
},
@@ -1576,7 +1576,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -1640,7 +1640,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -1719,7 +1719,7 @@
"system": 1
},
"latest_version": "2026-4363---incorrect-authorization-issue-in-authorization-caching-impacts-gitlab-ee",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 625
},
@@ -1821,7 +1821,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -1894,7 +1894,7 @@
"system": 1
},
"latest_version": "5.2.3-all-languages.zip",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 0
},
@@ -1967,7 +1967,7 @@
"system": 1
},
"latest_version": "6.1.2",
"last_version_synced_at": "2026-03-26T10:20:26+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 0
},
@@ -2031,7 +2031,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -2121,24 +2121,24 @@
"entity_id": "traefik",
"display_name": "Traefik",
"entity_type": "system",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
},
{
"entity_id": "traefik--repo--github-com-traefik-traefik-v3",
"display_name": "traefik / traefik / v3",
"entity_type": "repo",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
},
{
"entity_id": "traefik--extension--github-com-traefik-traefik-v3",
"display_name": "traefik / traefik / v3",
"entity_type": "extension",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
}
]
@@ -2169,8 +2169,8 @@
"repo": 1,
"extension": 1
},
"latest_version": "2.11.42",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"latest_version": "3.7.0-ea.3",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 63
},
@@ -2271,7 +2271,7 @@
"project": 1
},
"latest_version": "4.1.0-beta",
"last_version_synced_at": "2026-03-26T10:20:26+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 102
},
@@ -2470,7 +2470,7 @@
"extension": 1
},
"latest_version": "8.0.3",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 150
},
@@ -2534,18 +2534,18 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
{
"system_id": "mattermost",
"display_name": "Mattermost",
"total": 31,
"total": 33,
"verified_real": 0,
"verified_synthetic": 0,
"blocked": 0,
"manual": 31,
"manual": 33,
"browser_required": 0,
"browser_present": 0,
"latest_update": "Fix Release Date",
@@ -2555,9 +2555,9 @@
"families": [
{
"family": "xss",
"total": 31,
"total": 33,
"verified_real": 0,
"manual": 31
"manual": 33
}
],
"entity_summary": {
@@ -2581,6 +2581,14 @@
"plugin": 1
},
"top_entities": [
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 14,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"entity_type": "project",
@@ -2589,14 +2597,6 @@
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 12,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"entity_type": "plugin",
@@ -2622,7 +2622,7 @@
"cataloged_entity_total": 5,
"latest_version_synced_count": 5,
"source_gap_count": 0,
"security_version_count": 3840,
"security_version_count": 3848,
"auto_promoted_count": 0,
"latest_versions": [
{
@@ -2633,14 +2633,6 @@
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"display_name": "Mattermost Server",
"entity_type": "project",
"latest_version": "26.2.1",
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"display_name": "mattermost / mattermost-server",
@@ -2649,6 +2641,14 @@
"latest_release_at": "2026-03-16T08:26:52Z",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"display_name": "Mattermost Server",
"entity_type": "project",
"latest_version": "26.2.1",
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"display_name": "Mattermost Plugins",
@@ -2668,6 +2668,14 @@
]
},
"top_entities": [
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 14,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"entity_type": "project",
@@ -2676,14 +2684,6 @@
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 12,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"entity_type": "plugin",
@@ -2711,9 +2711,9 @@
"plugin": 1
},
"latest_version": "26.2.1",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 3840
"security_version_count": 3848
},
{
"system_id": "discourse",
@@ -2784,7 +2784,7 @@
"system": 1
},
"latest_version": "2502-05-2023-143713-1.zip",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 80
},
@@ -2923,7 +2923,7 @@
"extension": 1
},
"latest_version": "2.11.2",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 7
},
@@ -3042,7 +3042,7 @@
"repo": 1
},
"latest_version": "11.17.0",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 2
},
@@ -3163,7 +3163,7 @@
"project": 1
},
"latest_version": "4.4.2",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 11
},
@@ -3270,7 +3270,7 @@
"repo": 1
},
"latest_version": "20.16.0",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 0
},
@@ -3377,7 +3377,7 @@
"repo": 1
},
"latest_version": "5.40.0",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 0
},
@@ -3490,7 +3490,7 @@
"repo": 1
},
"latest_version": "3.22.44",
"last_version_synced_at": "2026-03-26T10:20:26+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 0
},
@@ -3559,16 +3559,16 @@
"entity_id": "ghost",
"display_name": "Ghost",
"entity_type": "system",
"latest_version": "6.22.1",
"latest_release_at": "2026-03-20T15:25:05Z",
"latest_version": "6.23.0",
"latest_release_at": "2026-03-26T15:04:27Z",
"version_sync_status": "green"
},
{
"entity_id": "ghost--repo--tryghost-ghost",
"display_name": "TryGhost / Ghost",
"entity_type": "repo",
"latest_version": "6.22.1",
"latest_release_at": "2026-03-20T15:25:05Z",
"latest_version": "6.23.0",
"latest_release_at": "2026-03-26T15:04:27Z",
"version_sync_status": "green"
}
]
@@ -3590,8 +3590,8 @@
"system": 1,
"repo": 1
},
"latest_version": "6.22.1",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"latest_version": "6.23.0",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 0
},
@@ -3724,7 +3724,7 @@
"extension": 1
},
"latest_version": "7.24.6",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 25
},
@@ -3863,10 +3863,167 @@
"project": 2
},
"latest_version": "19.2.4",
"last_version_synced_at": "2026-03-26T10:20:26+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 18
},
{
"system_id": "astro",
"display_name": "Astro",
"total": 15,
"verified_real": 0,
"verified_synthetic": 0,
"blocked": 0,
"manual": 15,
"browser_required": 0,
"browser_present": 0,
"latest_update": "2026-03-26T19:01:26.420643Z",
"category": "frameworks",
"tier": "rolling-24m",
"output_dir": "07-framework-security/frameworks/astro",
"families": [
{
"family": "authz-bypass",
"total": 1,
"verified_real": 0,
"manual": 1
},
{
"family": "file-upload",
"total": 2,
"verified_real": 0,
"manual": 2
},
{
"family": "path-traversal",
"total": 1,
"verified_real": 0,
"manual": 1
},
{
"family": "proxy-boundary",
"total": 3,
"verified_real": 0,
"manual": 3
},
{
"family": "ssrf",
"total": 1,
"verified_real": 0,
"manual": 1
},
{
"family": "xss",
"total": 7,
"verified_real": 0,
"manual": 7
}
],
"entity_summary": {
"system_id": "astro",
"display_name": "Astro",
"cataloged_entity_total": 3,
"child_entity_total": 2,
"candidate_entity_total": 0,
"workflow_complete_count": 3,
"version_mapped_count": 3,
"official_source_covered_count": 3,
"history_full_complete_count": 3,
"latest_green_count": 3,
"version_gap_entity_count": 0,
"workflow_gap_entity_count": 0,
"plugin_total": 1,
"entity_type_counts": {
"system": 1,
"module": 1,
"project": 1
},
"top_entities": [
{
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"advisory_count": 13,
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "astro--module--astro",
"entity_type": "module",
"display_name": "astro",
"advisory_count": 2,
"history_backfill_status": "complete",
"latest_sync_status": "green"
}
],
"backlog_preview": []
},
"version_summary": {
"system_id": "astro",
"display_name": "Astro",
"cataloged_entity_total": 3,
"latest_version_synced_count": 3,
"source_gap_count": 0,
"security_version_count": 32,
"auto_promoted_count": 0,
"latest_versions": [
{
"entity_id": "astro",
"display_name": "Astro",
"entity_type": "system",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
},
{
"entity_id": "astro--project--astro",
"display_name": "astro",
"entity_type": "project",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-27T08:22:36.525875Z",
"version_sync_status": "green"
},
{
"entity_id": "astro--module--astro",
"display_name": "astro",
"entity_type": "module",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
}
]
},
"top_entities": [
{
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"advisory_count": 13,
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "astro--module--astro",
"entity_type": "module",
"display_name": "astro",
"advisory_count": 2,
"history_backfill_status": "complete",
"latest_sync_status": "green"
}
],
"backlog_preview": [],
"entity_total": 3,
"entity_backlog": 0,
"entity_type_counts": {
"system": 1,
"module": 1,
"project": 1
},
"latest_version": "6.1.1",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 32
},
{
"system_id": "medusa",
"display_name": "Medusa",
@@ -3941,7 +4098,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -4056,161 +4213,10 @@
"project": 1
},
"latest_version": "3.5.31",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 2
},
{
"system_id": "astro",
"display_name": "Astro",
"total": 14,
"verified_real": 0,
"verified_synthetic": 0,
"blocked": 0,
"manual": 14,
"browser_required": 0,
"browser_present": 0,
"latest_update": "2026-02-04T03:01:27.986221Z",
"category": "frameworks",
"tier": "rolling-24m",
"output_dir": "07-framework-security/frameworks/astro",
"families": [
{
"family": "authz-bypass",
"total": 1,
"verified_real": 0,
"manual": 1
},
{
"family": "file-upload",
"total": 2,
"verified_real": 0,
"manual": 2
},
{
"family": "path-traversal",
"total": 1,
"verified_real": 0,
"manual": 1
},
{
"family": "proxy-boundary",
"total": 3,
"verified_real": 0,
"manual": 3
},
{
"family": "xss",
"total": 7,
"verified_real": 0,
"manual": 7
}
],
"entity_summary": {
"system_id": "astro",
"display_name": "Astro",
"cataloged_entity_total": 3,
"child_entity_total": 2,
"candidate_entity_total": 0,
"workflow_complete_count": 3,
"version_mapped_count": 3,
"official_source_covered_count": 3,
"history_full_complete_count": 3,
"latest_green_count": 3,
"version_gap_entity_count": 0,
"workflow_gap_entity_count": 0,
"plugin_total": 1,
"entity_type_counts": {
"system": 1,
"module": 1,
"project": 1
},
"top_entities": [
{
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"advisory_count": 12,
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "astro--module--astro",
"entity_type": "module",
"display_name": "astro",
"advisory_count": 2,
"history_backfill_status": "complete",
"latest_sync_status": "green"
}
],
"backlog_preview": []
},
"version_summary": {
"system_id": "astro",
"display_name": "Astro",
"cataloged_entity_total": 3,
"latest_version_synced_count": 3,
"source_gap_count": 0,
"security_version_count": 30,
"auto_promoted_count": 0,
"latest_versions": [
{
"entity_id": "astro",
"display_name": "Astro",
"entity_type": "system",
"latest_version": "6.0.8",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
},
{
"entity_id": "astro--project--astro",
"display_name": "astro",
"entity_type": "project",
"latest_version": "6.0.8",
"latest_release_at": "2025-11-27T08:22:36.525875Z",
"version_sync_status": "green"
},
{
"entity_id": "astro--module--astro",
"display_name": "astro",
"entity_type": "module",
"latest_version": "6.0.8",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
}
]
},
"top_entities": [
{
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"advisory_count": 12,
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "astro--module--astro",
"entity_type": "module",
"display_name": "astro",
"advisory_count": 2,
"history_backfill_status": "complete",
"latest_sync_status": "green"
}
],
"backlog_preview": [],
"entity_total": 3,
"entity_backlog": 0,
"entity_type_counts": {
"system": 1,
"module": 1,
"project": 1
},
"latest_version": "6.0.8",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"version_sync_status": "green",
"security_version_count": 30
},
{
"system_id": "spring-framework",
"display_name": "Spring Framework",
@@ -4283,7 +4289,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -4384,7 +4390,7 @@
"package": 1
},
"latest_version": "8.0.7",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 220
},
@@ -4448,7 +4454,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -4521,7 +4527,7 @@
"system": 1
},
"latest_version": "2.0",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 2
},
@@ -4628,7 +4634,7 @@
"project": 1
},
"latest_version": "7.0.4",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 92
},
@@ -4692,7 +4698,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -4793,7 +4799,7 @@
"package": 1
},
"latest_version": "2.55.0",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 4
},
@@ -4857,7 +4863,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:22+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -4958,7 +4964,7 @@
"package": 1
},
"latest_version": "21.2.6",
"last_version_synced_at": "2026-03-26T10:20:22+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 18
},
@@ -5065,7 +5071,7 @@
"repo": 1
},
"latest_version": "5.0.4",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 4
},
@@ -5166,7 +5172,7 @@
"project": 1
},
"latest_version": "5.8.4",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 4
},
@@ -5267,7 +5273,7 @@
"package": 1
},
"latest_version": "13.2.0",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 103
},
@@ -5331,7 +5337,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:25+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -5438,7 +5444,7 @@
"project": 1
},
"latest_version": "2.2.11.RELEASE",
"last_version_synced_at": "2026-03-26T10:20:26+00:00",
"last_version_synced_at": "2026-03-27T09:30:50+00:00",
"version_sync_status": "green",
"security_version_count": 22
},
@@ -5539,7 +5545,7 @@
"project": 1
},
"latest_version": "0.27.4",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 2
},
@@ -5603,7 +5609,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -5704,7 +5710,7 @@
"project": 1
},
"latest_version": "0.2.10",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 22
},
@@ -5805,7 +5811,7 @@
"repo": 1
},
"latest_version": "1.12.0",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 2
},
@@ -5906,7 +5912,7 @@
"package": 1
},
"latest_version": "21.4.7",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 4
},
@@ -6007,7 +6013,7 @@
"project": 1
},
"latest_version": "3.1.2",
"last_version_synced_at": "2026-03-26T10:20:23+00:00",
"last_version_synced_at": "2026-03-27T09:30:48+00:00",
"version_sync_status": "green",
"security_version_count": 4
},
@@ -6071,7 +6077,7 @@
"system": 1
},
"latest_version": "",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "source-gap",
"security_version_count": 0
},
@@ -6172,7 +6178,7 @@
"project": 1
},
"latest_version": "0.0.15",
"last_version_synced_at": "2026-03-26T10:20:27+00:00",
"last_version_synced_at": "2026-03-27T09:30:51+00:00",
"version_sync_status": "green",
"security_version_count": 22
}

2
08-threat-intel/generated/entity-catalog-report.md
查看文件

@@ -1,6 +1,6 @@
# 分层实体覆盖与完整度报告
- 生成时间: `2026-03-26T10:20:34+00:00`
- 生成时间: `2026-03-27T09:30:59+00:00`
- 已编目实体: `110`
- 待编目 backlog: `7`
- history-full 已完成: `41`

20
08-threat-intel/generated/entity-completeness.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:30:59+00:00",
"cataloged_entity_total": 110,
"candidate_entity_total": 7,
"history_full_complete_count": 41,
@@ -163,7 +163,7 @@
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"advisory_count": 12,
"advisory_count": 13,
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
@@ -805,6 +805,14 @@
"plugin": 1
},
"top_entities": [
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 14,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"entity_type": "project",
@@ -813,14 +821,6 @@
"history_backfill_status": "complete",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"advisory_count": 12,
"history_backfill_status": "seeded",
"latest_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"entity_type": "plugin",

2
08-threat-intel/generated/entity-discovery-backlog.md
查看文件

@@ -1,6 +1,6 @@
# 分层实体发现 Backlog
- 生成时间: `2026-03-26T10:20:34+00:00`
- 生成时间: `2026-03-27T09:30:59+00:00`
- 待编目数量: `7`
| candidate_id | root_system | entity_type | risk | reason | waiting_for | source |

2
08-threat-intel/generated/entity-queues.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:30:59+00:00",
"discovery_queue": {
"count": 7,
"items": [

185
08-threat-intel/generated/lab-enqueue-summary.json
查看文件

@@ -1,85 +1,10 @@
{
"generated_at": "2026-03-26T10:20:27+00:00",
"generated_at": "2026-03-27T09:30:51+00:00",
"enqueued": 3,
"queue_total": 2375,
"queue_total": 2378,
"items": [
{
"advisory_id": "angular--CVE-2026-27970",
"system_id": "angular",
"priority": "version-sync"
},
{
"advisory_id": "angular--CVE-2026-32635",
"system_id": "angular",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2024-47885",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2024-56140",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2024-56159",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-54793",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-55303",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-59837",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-61925",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64525",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64745",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64757",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64764",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-64765",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-65019",
"system_id": "astro",
"priority": "version-sync"
},
{
"advisory_id": "astro--CVE-2025-66202",
"advisory_id": "astro--CVE-2026-33769",
"system_id": "astro",
"priority": "version-sync"
},
@@ -613,11 +538,6 @@
"system_id": "django",
"priority": "version-sync"
},
{
"advisory_id": "fastify--CVE-2026-3635",
"system_id": "fastify",
"priority": "version-sync"
},
{
"advisory_id": "ghost--050f486105",
"system_id": "ghost",
@@ -1179,97 +1099,12 @@
"priority": "version-sync"
},
{
"advisory_id": "mattermost--Issue Identifier",
"advisory_id": "mattermost--CVE-2026-2456",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2025-00562",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2025-00566",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00574",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00578",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00584",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00589",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00590",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00593",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00594",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00595",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00598",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00599",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00603",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00610",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00611",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00621",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00624",
"system_id": "mattermost",
"priority": "version-sync"
},
{
"advisory_id": "mattermost--MMSA-2026-00625",
"advisory_id": "mattermost--CVE-2026-25783",
"system_id": "mattermost",
"priority": "version-sync"
},
@@ -2198,16 +2033,6 @@
"system_id": "prestashop",
"priority": "version-sync"
},
{
"advisory_id": "prestashop--CVE-2026-33673",
"system_id": "prestashop",
"priority": "version-sync"
},
{
"advisory_id": "prestashop--CVE-2026-33674",
"system_id": "prestashop",
"priority": "version-sync"
},
{
"advisory_id": "prestashop--a0f896f1ae",
"system_id": "prestashop",

8
08-threat-intel/generated/latest-ingest.md
查看文件

@@ -1,13 +1,13 @@
# 最新同步摘要
- 渲染时间: `2026-03-26T10:20:34+00:00`
- 渲染时间: `2026-03-27T09:31:00+00:00`
- 系统数量: `62`
- Advisory 数量: `2375`
- Advisory 数量: `2378`
- 已编目实体数量: `110`
- 待编目 backlog 数量: `7`
- 重点 Markdown 数量: `171`
- 重点 Markdown 数量: `174`
- Run Bundle 数量: `89`
- 新增记录: `3`
- 更新记录: `2`
- 更新记录: `0`
- Triage 数量: `1177`
- 失败的 source adapter: `0`

16
08-threat-intel/generated/monitor-summary.json
查看文件

@@ -1,11 +1,11 @@
{
"generated_at": "2026-03-26T10:20:18+00:00",
"generated_at": "2026-03-27T09:30:44+00:00",
"active_source_count": 102,
"green_source_count": 102,
"source_failure_count": 0,
"open_alert_count": 0,
"resolved_alert_count": 101,
"last_fully_green_run": "2026-03-26T10:20:18+00:00",
"last_fully_green_run": "2026-03-27T09:30:44+00:00",
"source_catalog": {
"system_count": 62,
"source_count": 179,
@@ -13,13 +13,11 @@
},
"ingest": {
"new_count": 3,
"updated_count": 2,
"updated_count": 0,
"failure_count": 0,
"systems_touched": [
"fastify",
"nextjs",
"prestashop",
"spring-security"
"astro",
"mattermost"
]
},
"validation": {
@@ -39,14 +37,14 @@
"cataloged_entity_total": 110,
"latest_version_synced_count": 95,
"source_gap_count": 15,
"security_version_total": 6297,
"security_version_total": 6307,
"security_version_entity_count": 83,
"auto_promoted_entity_count": 10,
"lab_enqueued_count": 3
},
"lab_enqueue": {
"enqueued": 3,
"queue_total": 2375,
"queue_total": 2378,
"pending_count": 0
}
}

370
08-threat-intel/generated/release-index.json
查看文件

@@ -1,6 +1,6 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"version_count": 6297,
"generated_at": "2026-03-27T09:31:00+00:00",
"version_count": 6307,
"versions": [
{
"version_id": "angular--package--angular-core--introduced-0-last-affected-18-2-14",
@@ -510,6 +510,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--introduced-2-10-10-fixed-5-18-1",
"entity_id": "astro--project--astro",
"root_system_id": "astro",
"version": "introduced=2.10.10, fixed<5.18.1",
"released_at": "2026-03-26T18:45:17Z",
"release_url": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_name": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_confidence": "official",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"astro--CVE-2026-33769"
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--introduced-2-16-0-fixed-5-15-5",
"entity_id": "astro--project--astro",
@@ -800,6 +816,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--5-18-1",
"entity_id": "astro--project--astro",
"root_system_id": "astro",
"version": "5.18.1",
"released_at": "2026-03-26T19:01:26.420643Z",
"release_url": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_name": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f",
"source_confidence": "official",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"astro--CVE-2026-33769"
],
"is_latest_snapshot": false
},
{
"version_id": "astro--project--astro--9-1-1",
"entity_id": "astro--project--astro",
@@ -27119,7 +27151,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27273,7 +27305,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27287,7 +27319,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.11",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27315,7 +27347,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "10.11.12",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27623,7 +27655,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27665,7 +27697,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27679,7 +27711,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.3",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27693,7 +27725,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27721,7 +27753,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27749,7 +27781,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27763,7 +27795,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27805,7 +27837,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27819,7 +27851,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27833,7 +27865,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -27889,7 +27921,7 @@
"entity_id": "mattermost",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -37686,7 +37718,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -37840,7 +37872,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -37854,7 +37886,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "10.11.11",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38193,7 +38225,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38235,7 +38267,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38249,7 +38281,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.3",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38263,7 +38295,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38291,7 +38323,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38319,7 +38351,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38333,7 +38365,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38375,7 +38407,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38389,7 +38421,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38403,7 +38435,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -38491,7 +38523,7 @@
"entity_id": "mattermost--plugin--mattermost-plugins",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48309,7 +48341,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48463,7 +48495,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48477,7 +48509,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.11",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48505,7 +48537,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "10.11.12",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48813,7 +48845,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48855,7 +48887,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48869,7 +48901,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.3",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48883,7 +48915,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48911,7 +48943,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48939,7 +48971,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48953,7 +48985,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -48995,7 +49027,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -49009,7 +49041,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -49023,7 +49055,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -49079,7 +49111,7 @@
"entity_id": "mattermost--project--issue-platform",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -58865,7 +58897,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59019,7 +59051,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59443,7 +59475,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59485,7 +59517,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59593,7 +59625,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59621,7 +59653,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59733,7 +59765,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59747,7 +59779,7 @@
"entity_id": "mattermost--project--mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -59974,12 +60006,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -60129,6 +60163,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<5.3.2-0.20260127165411-fe3052073dc6",
"released_at": "2026-03-16T15:30:43Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -60161,6 +60211,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<5.3.2-0.20260129181235-1346cf529aef",
"released_at": "2026-03-16T15:30:42Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-5-3-2-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -60335,6 +60401,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<8.0.0-20260127165411-fe3052073dc6",
"released_at": "2026-03-16T15:30:43Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -60367,6 +60449,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "introduced=0, fixed<8.0.0-20260129181235-1346cf529aef",
"released_at": "2026-03-16T15:30:42Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "affected",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--introduced-0-fixed-8-0-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -63789,6 +63887,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "5.3.2-0.20260127165411-fe3052073dc6",
"released_at": "2026-03-26T21:11:03.241919Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -63821,6 +63935,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "5.3.2-0.20260129181235-1346cf529aef",
"released_at": "2026-03-26T21:11:24.090883Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--5-3-2-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -67635,6 +67765,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260127165411-fe3052073dc6",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "8.0.0-20260127165411-fe3052073dc6",
"released_at": "2026-03-26T21:11:03.241919Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-2456"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260129133647-5d787969c2d5",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -67667,6 +67813,22 @@
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260129181235-1346cf529aef",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "8.0.0-20260129181235-1346cf529aef",
"released_at": "2026-03-26T21:11:24.090883Z",
"release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_name": "https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "fixed",
"advisory_refs": [
"mattermost--CVE-2026-25783"
],
"is_latest_snapshot": false
},
{
"version_id": "mattermost--repo--github-com-mattermost-mattermost-server--8-0-0-20260130144323-5bb5261c72fa",
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
@@ -70488,7 +70650,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -70527,12 +70689,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70554,12 +70718,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70696,7 +70862,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.10",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -70721,12 +70887,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70748,12 +70916,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -70778,7 +70948,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "10.11.12",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71086,7 +71256,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71125,12 +71295,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71155,7 +71327,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71180,12 +71352,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71207,12 +71381,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71223,7 +71399,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.2.4",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71251,7 +71427,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71290,12 +71466,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71317,12 +71495,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71344,12 +71524,14 @@
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-4265"
],
@@ -71360,7 +71542,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.3.2",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71402,7 +71584,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.x",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71416,7 +71598,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71430,7 +71612,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.4.1",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -71486,7 +71668,7 @@
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"root_system_id": "mattermost",
"version": "11.5.0",
"released_at": "2026-02-23",
"released_at": "2026-02-24",
"release_url": "https://securityupdates.mattermost.com/security_updates.json",
"source_name": "Mattermost Security Updates JSON",
"source_confidence": "official",
@@ -90852,34 +91034,6 @@
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--1-1-1-reflected-cross-site-scripting-vulnerability",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "1-1-1-reflected-cross-site-scripting-vulnerability",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/gallery-for-ultimate-member/vulnerability/wordpress-video-photo-gallery-for-ultimate-member-plugin-1-1-1-reflected-cross-site-scripting-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--1-1-1",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "1.1.1",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/gallery-for-ultimate-member/vulnerability/wordpress-video-photo-gallery-for-ultimate-member-plugin-1-1-1-reflected-cross-site-scripting-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--2-2-0-reflected-cross-site-scripting-via-page-vulnerability",
"entity_id": "wordpress",
@@ -91034,6 +91188,34 @@
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/smart-slider-3/vulnerability/wordpress-smart-slider-3-plugin-3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--3-5-1-33",
"entity_id": "wordpress",
"root_system_id": "wordpress",
"version": "3.5.1.33",
"released_at": null,
"release_url": "https://patchstack.com/database/wordpress/plugin/smart-slider-3/vulnerability/wordpress-smart-slider-3-plugin-3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"source_name": "Patchstack Database",
"source_confidence": "ecosystem-authority",
"security_relevant": true,
"reason": "security-release",
"advisory_refs": [],
"is_latest_snapshot": false
},
{
"version_id": "wordpress--3-5-6-2-unauthenticated-arbitrary-file-read-via-media-field-vulnerability",
"entity_id": "wordpress",

14
08-threat-intel/generated/run-summary.json
查看文件

@@ -1,17 +1,15 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:31:00+00:00",
"system_count": 62,
"advisory_count": 2375,
"advisory_count": 2378,
"cataloged_entity_total": 110,
"candidate_entity_total": 7,
"markdown_count": 171,
"markdown_count": 174,
"new_count": 3,
"updated_count": 2,
"updated_count": 0,
"systems_touched": [
"fastify",
"nextjs",
"prestashop",
"spring-security"
"astro",
"mattermost"
],
"triage_count": 1177,
"run_bundle_count": 89,

320
08-threat-intel/generated/source-health.json
查看文件

@@ -1,17 +1,17 @@
{
"generated_at": "2026-03-26T10:20:18+00:00",
"generated_at": "2026-03-27T09:30:44+00:00",
"active_source_count": 102,
"green_source_count": 102,
"failure_count": 0,
"all_green": true,
"last_fully_green_run": "2026-03-26T10:20:18+00:00",
"last_fully_green_run": "2026-03-27T09:30:44+00:00",
"retries_performed": 0,
"probes": [
{
"system_id": "adminer",
"source_name": "OSV Adminer",
"source_kind": "osv-batch",
"elapsed_seconds": 35.138,
"elapsed_seconds": 4.288,
"kind": "osv-batch",
"items_seen": 1
},
@@ -19,7 +19,7 @@
"system_id": "adobe-commerce",
"source_name": "Adobe Magento Security Index",
"source_kind": "vendor-index",
"elapsed_seconds": 1.973,
"elapsed_seconds": 6.387,
"kind": "vendor-index",
"items_seen": 46
},
@@ -27,7 +27,7 @@
"system_id": "angular",
"source_name": "OSV Angular",
"source_kind": "osv-batch",
"elapsed_seconds": 2.67,
"elapsed_seconds": 2.576,
"kind": "osv-batch",
"items_seen": 1
},
@@ -35,7 +35,7 @@
"system_id": "apache-httpd",
"source_name": "Apache HTTPD Security",
"source_kind": "html-links",
"elapsed_seconds": 34.836,
"elapsed_seconds": 3.254,
"kind": "html-links",
"items_seen": 182
},
@@ -43,15 +43,15 @@
"system_id": "apache-httpd",
"source_name": "CISA KEV Apache HTTPD",
"source_kind": "kev-json",
"elapsed_seconds": 3.387,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "apache-tomcat",
"source_name": "Apache Tomcat Security",
"source_kind": "html-links",
"elapsed_seconds": 35.095,
"elapsed_seconds": 3.341,
"kind": "html-links",
"items_seen": 270
},
@@ -59,15 +59,15 @@
"system_id": "apache-tomcat",
"source_name": "CISA KEV Tomcat",
"source_kind": "kev-json",
"elapsed_seconds": 3.466,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "aspnet-core",
"source_name": "OSV ASP.NET Core",
"source_kind": "osv-batch",
"elapsed_seconds": 35.025,
"elapsed_seconds": 3.827,
"kind": "osv-batch",
"items_seen": 1
},
@@ -75,7 +75,7 @@
"system_id": "astro",
"source_name": "OSV Astro",
"source_kind": "osv-batch",
"elapsed_seconds": 2.696,
"elapsed_seconds": 2.65,
"kind": "osv-batch",
"items_seen": 1
},
@@ -83,7 +83,7 @@
"system_id": "caddy",
"source_name": "OSV Caddy",
"source_kind": "osv-batch",
"elapsed_seconds": 35.139,
"elapsed_seconds": 4.154,
"kind": "osv-batch",
"items_seen": 1
},
@@ -91,7 +91,7 @@
"system_id": "directus",
"source_name": "Directus GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.195,
"elapsed_seconds": 1.349,
"kind": "html-links",
"items_seen": 127
},
@@ -99,7 +99,7 @@
"system_id": "directus",
"source_name": "OSV Directus",
"source_kind": "osv-batch",
"elapsed_seconds": 0.769,
"elapsed_seconds": 0.987,
"kind": "osv-batch",
"items_seen": 1
},
@@ -107,7 +107,7 @@
"system_id": "discourse",
"source_name": "Discourse Release Notes RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 1.538,
"elapsed_seconds": 2.398,
"kind": "rss-feed",
"items_seen": 30
},
@@ -115,7 +115,7 @@
"system_id": "discourse",
"source_name": "Discourse Security RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 0.926,
"elapsed_seconds": 1.097,
"kind": "rss-feed",
"items_seen": 3
},
@@ -123,7 +123,7 @@
"system_id": "discourse",
"source_name": "OSV Discourse",
"source_kind": "osv-batch",
"elapsed_seconds": 0.954,
"elapsed_seconds": 0.98,
"kind": "osv-batch",
"items_seen": 1
},
@@ -131,7 +131,7 @@
"system_id": "django",
"source_name": "Django Security Releases Archive",
"source_kind": "vendor-index",
"elapsed_seconds": 3.746,
"elapsed_seconds": 2.987,
"kind": "vendor-index",
"items_seen": 1276
},
@@ -139,7 +139,7 @@
"system_id": "django",
"source_name": "Django Security Weblog",
"source_kind": "vendor-index",
"elapsed_seconds": 35.137,
"elapsed_seconds": 2.987,
"kind": "vendor-index",
"items_seen": 332
},
@@ -147,7 +147,7 @@
"system_id": "django",
"source_name": "OSV Django",
"source_kind": "osv-batch",
"elapsed_seconds": 36.192,
"elapsed_seconds": 4.695,
"kind": "osv-batch",
"items_seen": 1
},
@@ -155,7 +155,7 @@
"system_id": "drupal",
"source_name": "Drupal Security Advisories RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 0.605,
"elapsed_seconds": 0.744,
"kind": "rss-feed",
"items_seen": 20
},
@@ -163,7 +163,7 @@
"system_id": "drupal",
"source_name": "OSV Drupal",
"source_kind": "osv-batch",
"elapsed_seconds": 1.981,
"elapsed_seconds": 2.022,
"kind": "osv-batch",
"items_seen": 1
},
@@ -171,7 +171,7 @@
"system_id": "echo",
"source_name": "OSV Echo",
"source_kind": "osv-batch",
"elapsed_seconds": 35.025,
"elapsed_seconds": 3.792,
"kind": "osv-batch",
"items_seen": 1
},
@@ -179,7 +179,7 @@
"system_id": "esbuild",
"source_name": "OSV esbuild",
"source_kind": "osv-batch",
"elapsed_seconds": 3.263,
"elapsed_seconds": 3.176,
"kind": "osv-batch",
"items_seen": 1
},
@@ -187,7 +187,7 @@
"system_id": "express",
"source_name": "OSV Express",
"source_kind": "osv-batch",
"elapsed_seconds": 2.915,
"elapsed_seconds": 2.68,
"kind": "osv-batch",
"items_seen": 1
},
@@ -195,7 +195,7 @@
"system_id": "fastify",
"source_name": "OSV Fastify",
"source_kind": "osv-batch",
"elapsed_seconds": 3.079,
"elapsed_seconds": 3.062,
"kind": "osv-batch",
"items_seen": 1
},
@@ -203,7 +203,7 @@
"system_id": "flask",
"source_name": "OSV Flask",
"source_kind": "osv-batch",
"elapsed_seconds": 35.078,
"elapsed_seconds": 3.732,
"kind": "osv-batch",
"items_seen": 1
},
@@ -211,7 +211,7 @@
"system_id": "ghost",
"source_name": "Ghost GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.099,
"elapsed_seconds": 1.102,
"kind": "html-links",
"items_seen": 119
},
@@ -219,7 +219,7 @@
"system_id": "ghost",
"source_name": "OSV Ghost",
"source_kind": "osv-batch",
"elapsed_seconds": 0.79,
"elapsed_seconds": 1.03,
"kind": "osv-batch",
"items_seen": 1
},
@@ -227,7 +227,7 @@
"system_id": "gin",
"source_name": "OSV Gin",
"source_kind": "osv-batch",
"elapsed_seconds": 35.023,
"elapsed_seconds": 4.84,
"kind": "osv-batch",
"items_seen": 1
},
@@ -235,7 +235,7 @@
"system_id": "gitea",
"source_name": "OSV Gitea",
"source_kind": "osv-batch",
"elapsed_seconds": 35.524,
"elapsed_seconds": 5.232,
"kind": "osv-batch",
"items_seen": 1
},
@@ -243,7 +243,7 @@
"system_id": "gitlab-ce",
"source_name": "GitLab Advisory Database",
"source_kind": "html-links",
"elapsed_seconds": 35.891,
"elapsed_seconds": 3.5,
"kind": "html-links",
"items_seen": 5
},
@@ -251,7 +251,7 @@
"system_id": "gitlab-ce",
"source_name": "GitLab Security Releases Atom",
"source_kind": "atom-feed",
"elapsed_seconds": 35.675,
"elapsed_seconds": 3.5,
"kind": "atom-feed",
"items_seen": 187
},
@@ -259,15 +259,15 @@
"system_id": "grafana",
"source_name": "CISA KEV Grafana",
"source_kind": "kev-json",
"elapsed_seconds": 35.076,
"elapsed_seconds": 3.502,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "grafana",
"source_name": "Grafana Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 35.677,
"elapsed_seconds": 3.5,
"kind": "html-links",
"items_seen": 159
},
@@ -275,7 +275,7 @@
"system_id": "hapi",
"source_name": "OSV Hapi",
"source_kind": "osv-batch",
"elapsed_seconds": 3.044,
"elapsed_seconds": 4.115,
"kind": "osv-batch",
"items_seen": 1
},
@@ -283,7 +283,7 @@
"system_id": "haproxy",
"source_name": "HAProxy Blog Feed",
"source_kind": "rss-feed",
"elapsed_seconds": 36.064,
"elapsed_seconds": 3.463,
"kind": "rss-feed",
"items_seen": 10
},
@@ -291,7 +291,7 @@
"system_id": "jenkins",
"source_name": "Jenkins Security Advisories RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 35.416,
"elapsed_seconds": 3.5,
"kind": "rss-feed",
"items_seen": 96
},
@@ -299,7 +299,7 @@
"system_id": "joomla",
"source_name": "Joomla Security Centre",
"source_kind": "html-links",
"elapsed_seconds": 1.637,
"elapsed_seconds": 1.786,
"kind": "html-links",
"items_seen": 139
},
@@ -307,7 +307,7 @@
"system_id": "joomla",
"source_name": "OSV Joomla",
"source_kind": "osv-batch",
"elapsed_seconds": 0.647,
"elapsed_seconds": 0.983,
"kind": "osv-batch",
"items_seen": 1
},
@@ -315,7 +315,7 @@
"system_id": "kibana",
"source_name": "Elastic Product Security",
"source_kind": "html-links",
"elapsed_seconds": 36.254,
"elapsed_seconds": 3.502,
"kind": "html-links",
"items_seen": 66
},
@@ -323,7 +323,7 @@
"system_id": "kibana",
"source_name": "NVD Kibana",
"source_kind": "nvd-search",
"elapsed_seconds": 36.067,
"elapsed_seconds": 5.239,
"kind": "nvd-search",
"items_seen": 1
},
@@ -331,7 +331,7 @@
"system_id": "koa",
"source_name": "OSV Koa",
"source_kind": "osv-batch",
"elapsed_seconds": 2.967,
"elapsed_seconds": 2.932,
"kind": "osv-batch",
"items_seen": 1
},
@@ -339,7 +339,7 @@
"system_id": "laravel",
"source_name": "OSV Laravel",
"source_kind": "osv-batch",
"elapsed_seconds": 35.139,
"elapsed_seconds": 4.021,
"kind": "osv-batch",
"items_seen": 1
},
@@ -347,7 +347,7 @@
"system_id": "magento-open-source",
"source_name": "Magento GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.624,
"elapsed_seconds": 1.79,
"kind": "html-links",
"items_seen": 99
},
@@ -355,7 +355,7 @@
"system_id": "magento-open-source",
"source_name": "OSV Magento Open Source",
"source_kind": "osv-batch",
"elapsed_seconds": 1.524,
"elapsed_seconds": 2.987,
"kind": "osv-batch",
"items_seen": 1
},
@@ -363,7 +363,7 @@
"system_id": "magento-open-source",
"source_name": "Sansec Research",
"source_kind": "html-links",
"elapsed_seconds": 2.02,
"elapsed_seconds": 2.628,
"kind": "html-links",
"items_seen": 135
},
@@ -371,7 +371,7 @@
"system_id": "mattermost",
"source_name": "Mattermost Security Updates JSON",
"source_kind": "json-feed",
"elapsed_seconds": 35.602,
"elapsed_seconds": 3.732,
"kind": "json-feed",
"items_seen": 594
},
@@ -379,7 +379,7 @@
"system_id": "mattermost",
"source_name": "OSV Mattermost",
"source_kind": "osv-batch",
"elapsed_seconds": 36.592,
"elapsed_seconds": 5.204,
"kind": "osv-batch",
"items_seen": 1
},
@@ -387,7 +387,7 @@
"system_id": "mediawiki",
"source_name": "MediaWiki Announce RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 2.337,
"elapsed_seconds": 2.997,
"kind": "rss-feed",
"items_seen": 30
},
@@ -395,7 +395,7 @@
"system_id": "mediawiki",
"source_name": "OSV MediaWiki",
"source_kind": "osv-batch",
"elapsed_seconds": 0.812,
"elapsed_seconds": 5.941,
"kind": "osv-batch",
"items_seen": 1
},
@@ -403,7 +403,7 @@
"system_id": "medusa",
"source_name": "OSV Medusa",
"source_kind": "osv-batch",
"elapsed_seconds": 2.581,
"elapsed_seconds": 2.198,
"kind": "osv-batch",
"items_seen": 1
},
@@ -411,7 +411,7 @@
"system_id": "moodle",
"source_name": "OSV Moodle",
"source_kind": "osv-batch",
"elapsed_seconds": 37.993,
"elapsed_seconds": 8.986,
"kind": "osv-batch",
"items_seen": 1
},
@@ -419,7 +419,7 @@
"system_id": "nestjs",
"source_name": "OSV NestJS",
"source_kind": "osv-batch",
"elapsed_seconds": 3.06,
"elapsed_seconds": 2.925,
"kind": "osv-batch",
"items_seen": 1
},
@@ -427,7 +427,7 @@
"system_id": "nextjs",
"source_name": "OSV Next.js",
"source_kind": "osv-batch",
"elapsed_seconds": 2.437,
"elapsed_seconds": 3.366,
"kind": "osv-batch",
"items_seen": 1
},
@@ -435,15 +435,15 @@
"system_id": "nginx",
"source_name": "CISA KEV NGINX",
"source_kind": "kev-json",
"elapsed_seconds": 3.374,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "nginx",
"source_name": "NGINX Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 35.358,
"elapsed_seconds": 3.234,
"kind": "html-links",
"items_seen": 150
},
@@ -451,15 +451,15 @@
"system_id": "nodejs",
"source_name": "CISA KEV Node.js",
"source_kind": "kev-json",
"elapsed_seconds": 2.964,
"elapsed_seconds": 3.463,
"kind": "kev-json",
"items_seen": 1552
"items_seen": 1553
},
{
"system_id": "nodejs",
"source_name": "Node.js Security Releases",
"source_kind": "html-links",
"elapsed_seconds": 3.026,
"elapsed_seconds": 2.548,
"kind": "html-links",
"items_seen": 74
},
@@ -467,7 +467,7 @@
"system_id": "nuxt",
"source_name": "OSV Nuxt",
"source_kind": "osv-batch",
"elapsed_seconds": 2.774,
"elapsed_seconds": 3.491,
"kind": "osv-batch",
"items_seen": 1
},
@@ -475,7 +475,7 @@
"system_id": "opencart",
"source_name": "OSV OpenCart",
"source_kind": "osv-batch",
"elapsed_seconds": 2.392,
"elapsed_seconds": 2.99,
"kind": "osv-batch",
"items_seen": 1
},
@@ -483,7 +483,7 @@
"system_id": "opencart",
"source_name": "OpenCart Releases",
"source_kind": "html-links",
"elapsed_seconds": 36.392,
"elapsed_seconds": 1.16,
"kind": "html-links",
"items_seen": 1500
},
@@ -491,7 +491,7 @@
"system_id": "openmage",
"source_name": "OSV OpenMage",
"source_kind": "osv-batch",
"elapsed_seconds": 1.535,
"elapsed_seconds": 1.653,
"kind": "osv-batch",
"items_seen": 1
},
@@ -499,7 +499,7 @@
"system_id": "openmage",
"source_name": "OpenMage GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.323,
"elapsed_seconds": 2.083,
"kind": "html-links",
"items_seen": 125
},
@@ -507,7 +507,7 @@
"system_id": "phpmyadmin",
"source_name": "OSV phpMyAdmin",
"source_kind": "osv-batch",
"elapsed_seconds": 35.308,
"elapsed_seconds": 5.239,
"kind": "osv-batch",
"items_seen": 1
},
@@ -515,7 +515,7 @@
"system_id": "phpmyadmin",
"source_name": "phpMyAdmin Security Page",
"source_kind": "html-links",
"elapsed_seconds": 35.049,
"elapsed_seconds": 3.463,
"kind": "html-links",
"items_seen": 263
},
@@ -523,7 +523,7 @@
"system_id": "prestashop",
"source_name": "Friends Of Presta Security",
"source_kind": "html-links",
"elapsed_seconds": 2.331,
"elapsed_seconds": 1.097,
"kind": "html-links",
"items_seen": 38
},
@@ -531,7 +531,7 @@
"system_id": "prestashop",
"source_name": "GitHub PrestaShop Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.245,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 127
},
@@ -539,7 +539,7 @@
"system_id": "prestashop",
"source_name": "OSV PrestaShop",
"source_kind": "osv-batch",
"elapsed_seconds": 1.978,
"elapsed_seconds": 1.816,
"kind": "osv-batch",
"items_seen": 1
},
@@ -547,7 +547,7 @@
"system_id": "prestashop",
"source_name": "PrestaShop Security Page",
"source_kind": "html-links",
"elapsed_seconds": 1.843,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 60
},
@@ -555,7 +555,7 @@
"system_id": "rails",
"source_name": "OSV Rails",
"source_kind": "osv-batch",
"elapsed_seconds": 3.748,
"elapsed_seconds": 4.015,
"kind": "osv-batch",
"items_seen": 1
},
@@ -563,7 +563,7 @@
"system_id": "react",
"source_name": "OSV React",
"source_kind": "osv-batch",
"elapsed_seconds": 2.581,
"elapsed_seconds": 2.203,
"kind": "osv-batch",
"items_seen": 1
},
@@ -571,7 +571,7 @@
"system_id": "redmine",
"source_name": "OSV Redmine",
"source_kind": "osv-batch",
"elapsed_seconds": 35.697,
"elapsed_seconds": 5.509,
"kind": "osv-batch",
"items_seen": 1
},
@@ -579,7 +579,7 @@
"system_id": "redmine",
"source_name": "Redmine Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 36.813,
"elapsed_seconds": 3.792,
"kind": "html-links",
"items_seen": 371
},
@@ -587,7 +587,7 @@
"system_id": "saleor",
"source_name": "GitHub Saleor Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.78,
"elapsed_seconds": 1.344,
"kind": "html-links",
"items_seen": 120
},
@@ -595,7 +595,7 @@
"system_id": "saleor",
"source_name": "OSV Saleor",
"source_kind": "osv-batch",
"elapsed_seconds": 2.388,
"elapsed_seconds": 3.067,
"kind": "osv-batch",
"items_seen": 1
},
@@ -603,7 +603,7 @@
"system_id": "shopware",
"source_name": "OSV Shopware",
"source_kind": "osv-batch",
"elapsed_seconds": 2.492,
"elapsed_seconds": 2.548,
"kind": "osv-batch",
"items_seen": 1
},
@@ -611,7 +611,7 @@
"system_id": "shopware",
"source_name": "Shopware Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 2.388,
"elapsed_seconds": 1.097,
"kind": "html-links",
"items_seen": 129
},
@@ -619,7 +619,7 @@
"system_id": "spring-boot",
"source_name": "OSV Spring Boot",
"source_kind": "osv-batch",
"elapsed_seconds": 3.466,
"elapsed_seconds": 4.021,
"kind": "osv-batch",
"items_seen": 1
},
@@ -627,7 +627,7 @@
"system_id": "spring-boot",
"source_name": "Spring Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 3.614,
"elapsed_seconds": 2.68,
"kind": "html-links",
"items_seen": 118
},
@@ -635,7 +635,7 @@
"system_id": "spring-framework",
"source_name": "OSV Spring Framework",
"source_kind": "osv-batch",
"elapsed_seconds": 3.387,
"elapsed_seconds": 3.234,
"kind": "osv-batch",
"items_seen": 1
},
@@ -643,7 +643,7 @@
"system_id": "spring-framework",
"source_name": "Spring Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 3.614,
"elapsed_seconds": 2.628,
"kind": "html-links",
"items_seen": 118
},
@@ -651,7 +651,7 @@
"system_id": "spring-security",
"source_name": "OSV Spring Security",
"source_kind": "osv-batch",
"elapsed_seconds": 3.374,
"elapsed_seconds": 3.341,
"kind": "osv-batch",
"items_seen": 1
},
@@ -659,7 +659,7 @@
"system_id": "spring-security",
"source_name": "Spring Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 3.614,
"elapsed_seconds": 2.65,
"kind": "html-links",
"items_seen": 118
},
@@ -667,7 +667,7 @@
"system_id": "strapi",
"source_name": "OSV Strapi",
"source_kind": "osv-batch",
"elapsed_seconds": 0.781,
"elapsed_seconds": 1.074,
"kind": "osv-batch",
"items_seen": 1
},
@@ -675,7 +675,7 @@
"system_id": "strapi",
"source_name": "Strapi GitHub Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.038,
"elapsed_seconds": 1.165,
"kind": "html-links",
"items_seen": 124
},
@@ -683,7 +683,7 @@
"system_id": "sveltekit",
"source_name": "OSV SvelteKit",
"source_kind": "osv-batch",
"elapsed_seconds": 2.69,
"elapsed_seconds": 2.566,
"kind": "osv-batch",
"items_seen": 1
},
@@ -691,7 +691,7 @@
"system_id": "symfony",
"source_name": "OSV Symfony",
"source_kind": "osv-batch",
"elapsed_seconds": 35.448,
"elapsed_seconds": 4.636,
"kind": "osv-batch",
"items_seen": 1
},
@@ -699,7 +699,7 @@
"system_id": "traefik",
"source_name": "OSV Traefik",
"source_kind": "osv-batch",
"elapsed_seconds": 35.077,
"elapsed_seconds": 4.253,
"kind": "osv-batch",
"items_seen": 1
},
@@ -707,7 +707,7 @@
"system_id": "undici",
"source_name": "OSV Undici",
"source_kind": "osv-batch",
"elapsed_seconds": 3.099,
"elapsed_seconds": 3.254,
"kind": "osv-batch",
"items_seen": 1
},
@@ -715,7 +715,7 @@
"system_id": "vite",
"source_name": "OSV Vite",
"source_kind": "osv-batch",
"elapsed_seconds": 2.688,
"elapsed_seconds": 2.577,
"kind": "osv-batch",
"items_seen": 1
},
@@ -723,7 +723,7 @@
"system_id": "vue",
"source_name": "OSV Vue",
"source_kind": "osv-batch",
"elapsed_seconds": 2.85,
"elapsed_seconds": 2.381,
"kind": "osv-batch",
"items_seen": 1
},
@@ -731,7 +731,7 @@
"system_id": "webpack",
"source_name": "OSV webpack",
"source_kind": "osv-batch",
"elapsed_seconds": 3.154,
"elapsed_seconds": 3.176,
"kind": "osv-batch",
"items_seen": 1
},
@@ -739,7 +739,7 @@
"system_id": "werkzeug",
"source_name": "OSV Werkzeug",
"source_kind": "osv-batch",
"elapsed_seconds": 35.076,
"elapsed_seconds": 4.113,
"kind": "osv-batch",
"items_seen": 1
},
@@ -747,7 +747,7 @@
"system_id": "woocommerce",
"source_name": "GitHub WooCommerce Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.976,
"elapsed_seconds": 1.069,
"kind": "html-links",
"items_seen": 107
},
@@ -755,7 +755,7 @@
"system_id": "woocommerce",
"source_name": "OSV WooCommerce",
"source_kind": "osv-batch",
"elapsed_seconds": 1.642,
"elapsed_seconds": 1.716,
"kind": "osv-batch",
"items_seen": 1
},
@@ -763,7 +763,7 @@
"system_id": "woocommerce",
"source_name": "Patchstack Database",
"source_kind": "html-links",
"elapsed_seconds": 1.183,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 193
},
@@ -771,7 +771,7 @@
"system_id": "woocommerce",
"source_name": "Woo Developer Advisories",
"source_kind": "html-links",
"elapsed_seconds": 1.636,
"elapsed_seconds": 1.069,
"kind": "html-links",
"items_seen": 121
},
@@ -779,7 +779,7 @@
"system_id": "woocommerce",
"source_name": "Wordfence Vulnerability Database",
"source_kind": "html-links",
"elapsed_seconds": 1.106,
"elapsed_seconds": 1.095,
"kind": "html-links",
"items_seen": 0
},
@@ -787,7 +787,7 @@
"system_id": "wordpress",
"source_name": "Patchstack Database",
"source_kind": "html-links",
"elapsed_seconds": 1.185,
"elapsed_seconds": 0.009,
"kind": "html-links",
"items_seen": 193
},
@@ -795,7 +795,7 @@
"system_id": "wordpress",
"source_name": "PortSwigger Research",
"source_kind": "html-links",
"elapsed_seconds": 1.336,
"elapsed_seconds": 1.594,
"kind": "html-links",
"items_seen": 99
},
@@ -803,7 +803,7 @@
"system_id": "wordpress",
"source_name": "WPScan Vulnerability Database",
"source_kind": "html-links",
"elapsed_seconds": 1.108,
"elapsed_seconds": 1.582,
"kind": "html-links",
"items_seen": 74
},
@@ -811,7 +811,7 @@
"system_id": "wordpress",
"source_name": "WordPress Security News RSS",
"source_kind": "rss-feed",
"elapsed_seconds": 1.483,
"elapsed_seconds": 1.912,
"kind": "rss-feed",
"items_seen": 10
},
@@ -819,7 +819,7 @@
"system_id": "wordpress",
"source_name": "Wordfence Vulnerability Database",
"source_kind": "html-links",
"elapsed_seconds": 0.34,
"elapsed_seconds": 0.009,
"kind": "html-links",
"items_seen": 0
}
@@ -830,70 +830,70 @@
"system_id": "moodle",
"source_name": "OSV Moodle",
"source_kind": "osv-batch",
"elapsed_seconds": 37.993,
"elapsed_seconds": 8.986,
"status": "ok"
},
{
"system_id": "redmine",
"source_name": "Redmine Security Advisories",
"source_kind": "html-links",
"elapsed_seconds": 36.813,
"system_id": "adobe-commerce",
"source_name": "Adobe Magento Security Index",
"source_kind": "vendor-index",
"elapsed_seconds": 6.387,
"status": "ok"
},
{
"system_id": "mattermost",
"source_name": "OSV Mattermost",
"system_id": "mediawiki",
"source_name": "OSV MediaWiki",
"source_kind": "osv-batch",
"elapsed_seconds": 36.592,
"status": "ok"
},
{
"system_id": "opencart",
"source_name": "OpenCart Releases",
"source_kind": "html-links",
"elapsed_seconds": 36.392,
"status": "ok"
},
{
"system_id": "kibana",
"source_name": "Elastic Product Security",
"source_kind": "html-links",
"elapsed_seconds": 36.254,
"status": "ok"
},
{
"system_id": "django",
"source_name": "OSV Django",
"source_kind": "osv-batch",
"elapsed_seconds": 36.192,
"status": "ok"
},
{
"system_id": "kibana",
"source_name": "NVD Kibana",
"source_kind": "nvd-search",
"elapsed_seconds": 36.067,
"status": "ok"
},
{
"system_id": "haproxy",
"source_name": "HAProxy Blog Feed",
"source_kind": "rss-feed",
"elapsed_seconds": 36.064,
"status": "ok"
},
{
"system_id": "gitlab-ce",
"source_name": "GitLab Advisory Database",
"source_kind": "html-links",
"elapsed_seconds": 35.891,
"elapsed_seconds": 5.941,
"status": "ok"
},
{
"system_id": "redmine",
"source_name": "OSV Redmine",
"source_kind": "osv-batch",
"elapsed_seconds": 35.697,
"elapsed_seconds": 5.509,
"status": "ok"
},
{
"system_id": "kibana",
"source_name": "NVD Kibana",
"source_kind": "nvd-search",
"elapsed_seconds": 5.239,
"status": "ok"
},
{
"system_id": "phpmyadmin",
"source_name": "OSV phpMyAdmin",
"source_kind": "osv-batch",
"elapsed_seconds": 5.239,
"status": "ok"
},
{
"system_id": "gitea",
"source_name": "OSV Gitea",
"source_kind": "osv-batch",
"elapsed_seconds": 5.232,
"status": "ok"
},
{
"system_id": "mattermost",
"source_name": "OSV Mattermost",
"source_kind": "osv-batch",
"elapsed_seconds": 5.204,
"status": "ok"
},
{
"system_id": "gin",
"source_name": "OSV Gin",
"source_kind": "osv-batch",
"elapsed_seconds": 4.84,
"status": "ok"
},
{
"system_id": "django",
"source_name": "OSV Django",
"source_kind": "osv-batch",
"elapsed_seconds": 4.695,
"status": "ok"
}
],

2
08-threat-intel/generated/version-backlog.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:31:00+00:00",
"source_gap_entities": [
{
"entity_id": "adminer",

50
08-threat-intel/generated/version-completeness.json
查看文件

@@ -1,9 +1,9 @@
{
"generated_at": "2026-03-26T10:20:34+00:00",
"generated_at": "2026-03-27T09:31:00+00:00",
"cataloged_entity_total": 110,
"latest_version_synced_count": 95,
"source_gap_count": 15,
"security_version_total": 6297,
"security_version_total": 6307,
"security_version_entity_count": 83,
"auto_promoted_entity_count": 10,
"lab_enqueued_count": 3,
@@ -109,14 +109,14 @@
"cataloged_entity_total": 3,
"latest_version_synced_count": 3,
"source_gap_count": 0,
"security_version_count": 30,
"security_version_count": 32,
"auto_promoted_count": 0,
"latest_versions": [
{
"entity_id": "astro",
"display_name": "Astro",
"entity_type": "system",
"latest_version": "6.0.8",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
},
@@ -124,7 +124,7 @@
"entity_id": "astro--project--astro",
"display_name": "astro",
"entity_type": "project",
"latest_version": "6.0.8",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-27T08:22:36.525875Z",
"version_sync_status": "green"
},
@@ -132,7 +132,7 @@
"entity_id": "astro--module--astro",
"display_name": "astro",
"entity_type": "module",
"latest_version": "6.0.8",
"latest_version": "6.1.1",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"version_sync_status": "green"
}
@@ -396,16 +396,16 @@
"entity_id": "ghost",
"display_name": "Ghost",
"entity_type": "system",
"latest_version": "6.22.1",
"latest_release_at": "2026-03-20T15:25:05Z",
"latest_version": "6.23.0",
"latest_release_at": "2026-03-26T15:04:27Z",
"version_sync_status": "green"
},
{
"entity_id": "ghost--repo--tryghost-ghost",
"display_name": "TryGhost / Ghost",
"entity_type": "repo",
"latest_version": "6.22.1",
"latest_release_at": "2026-03-20T15:25:05Z",
"latest_version": "6.23.0",
"latest_release_at": "2026-03-26T15:04:27Z",
"version_sync_status": "green"
}
]
@@ -648,7 +648,7 @@
"cataloged_entity_total": 5,
"latest_version_synced_count": 5,
"source_gap_count": 0,
"security_version_count": 3840,
"security_version_count": 3848,
"auto_promoted_count": 0,
"latest_versions": [
{
@@ -659,14 +659,6 @@
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"display_name": "Mattermost Server",
"entity_type": "project",
"latest_version": "26.2.1",
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"display_name": "mattermost / mattermost-server",
@@ -675,6 +667,14 @@
"latest_release_at": "2026-03-16T08:26:52Z",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--project--mattermost-server",
"display_name": "Mattermost Server",
"entity_type": "project",
"latest_version": "26.2.1",
"latest_release_at": "2023-10-03",
"version_sync_status": "green"
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"display_name": "Mattermost Plugins",
@@ -1217,24 +1217,24 @@
"entity_id": "traefik",
"display_name": "Traefik",
"entity_type": "system",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
},
{
"entity_id": "traefik--repo--github-com-traefik-traefik-v3",
"display_name": "traefik / traefik / v3",
"entity_type": "repo",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
},
{
"entity_id": "traefik--extension--github-com-traefik-traefik-v3",
"display_name": "traefik / traefik / v3",
"entity_type": "extension",
"latest_version": "2.11.42",
"latest_release_at": "2026-03-26T09:02:56Z",
"latest_version": "3.7.0-ea.3",
"latest_release_at": "2026-03-26T11:10:20Z",
"version_sync_status": "green"
}
]

某些文件未显示,因为此 diff 中更改的文件太多 显示更多