[ { "entity_id": "adminer", "entity_type": "system", "display_name": "Adminer", "parent_entity_id": null, "root_system_id": "adminer", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-28T00:18:44+00:00", "last_synced_at": "2026-02-28T00:18:44+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 0, "first_advisory_at": "2026-02-09T21:15:50+00:00", "latest_advisory_at": "2026-02-28T00:18:44+00:00", "advisory_ids": [ "adminer--CVE-2026-25878", "adminer--CVE-2026-25892" ], "source_refs": [ { "name": "OSV Adminer", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Adminer", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "adobe-commerce", "entity_type": "system", "display_name": "Adobe Commerce", "parent_entity_id": null, "root_system_id": "adobe-commerce", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-10-23T14:51:16+00:00", "last_synced_at": "2025-10-23T14:51:16+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 81, "workflow_complete_advisory_count": 81, "version_mapped_advisory_count": 0, "first_advisory_at": "2021-09-01T15:15:09+00:00", "latest_advisory_at": "2025-10-23T14:51:16+00:00", "advisory_ids": [ "adobe-commerce--047932676d", "adobe-commerce--0a62931b31", "adobe-commerce--0eb3765231", "adobe-commerce--1040fafca2", "adobe-commerce--1255668bf0", "adobe-commerce--12ae93f161", "adobe-commerce--3f204ca99f", "adobe-commerce--4db71027f6", "adobe-commerce--5451447fe7", "adobe-commerce--54dc24517c", "adobe-commerce--5cb7420cf3", "adobe-commerce--8c1e29399c", "adobe-commerce--8ecb2a63a5", "adobe-commerce--933ad16ad5", "adobe-commerce--934b38c7e3", "adobe-commerce--979640da01", "adobe-commerce--CVE-2021-36035", "adobe-commerce--CVE-2021-39864", "adobe-commerce--CVE-2022-24086", "adobe-commerce--CVE-2022-24093", "adobe-commerce--CVE-2022-34253", "adobe-commerce--CVE-2022-34254", "adobe-commerce--CVE-2022-34255", "adobe-commerce--CVE-2022-34256", "adobe-commerce--CVE-2022-34257", "adobe-commerce--CVE-2022-34258", "adobe-commerce--CVE-2022-34259", "adobe-commerce--CVE-2022-35689", "adobe-commerce--CVE-2022-35692", "adobe-commerce--CVE-2022-35698", "adobe-commerce--CVE-2022-42344", "adobe-commerce--CVE-2023-22247", "adobe-commerce--CVE-2023-22248", "adobe-commerce--CVE-2023-22249", "adobe-commerce--CVE-2023-22250", "adobe-commerce--CVE-2023-22251", "adobe-commerce--CVE-2023-26366", "adobe-commerce--CVE-2023-26367", "adobe-commerce--CVE-2023-29287", "adobe-commerce--CVE-2023-29288", "adobe-commerce--CVE-2023-29289", "adobe-commerce--CVE-2023-29290", "adobe-commerce--CVE-2023-29291", "adobe-commerce--CVE-2023-29292", "adobe-commerce--CVE-2023-29293", "adobe-commerce--CVE-2023-29294", "adobe-commerce--CVE-2023-29295", "adobe-commerce--CVE-2023-29296", "adobe-commerce--CVE-2023-29297", "adobe-commerce--CVE-2023-38207", "adobe-commerce--CVE-2023-38208", "adobe-commerce--CVE-2023-38209", "adobe-commerce--CVE-2023-38218", "adobe-commerce--CVE-2023-38219", "adobe-commerce--CVE-2023-38220", "adobe-commerce--CVE-2023-38221", "adobe-commerce--CVE-2023-38249", "adobe-commerce--CVE-2023-38250", "adobe-commerce--CVE-2023-38251", "adobe-commerce--CVE-2024-20716", "adobe-commerce--CVE-2024-20717", "adobe-commerce--CVE-2024-20718", "adobe-commerce--CVE-2024-20719", "adobe-commerce--CVE-2024-20720", "adobe-commerce--CVE-2024-20758", "adobe-commerce--CVE-2024-20759", "adobe-commerce--a0a29ab7eb", "adobe-commerce--a5f12e77b4", "adobe-commerce--a7b623e0d8", "adobe-commerce--ac73b00a05", "adobe-commerce--c1c61771df", "adobe-commerce--ce8484a7ed", "adobe-commerce--d3476d6b14", "adobe-commerce--d4e4aff8b8", "adobe-commerce--d688572a39", "adobe-commerce--d88dbef013", "adobe-commerce--da91b15885", "adobe-commerce--ef1f4e7ed5", "adobe-commerce--f2ffd83268", "adobe-commerce--f35cbfee30", "adobe-commerce--fc2e2dc6d1" ], "source_refs": [ { "name": "Adobe Security Bulletins", "url": "https://helpx.adobe.com/security/products/magento.html", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "Adobe Magento Security Index", "url": "https://helpx.adobe.com/security/products/magento.html", "kind": "vendor-index", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Adobe Commerce", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GHSA Adobe Commerce", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "ecosystem_sources", "official": false }, { "name": "Sansec Research", "url": "https://sansec.io/research", "kind": "vendor-index", "status": "retired", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "angular--package--angular-core", "entity_type": "package", "display_name": "angular / core", "parent_entity_id": "angular", "root_system_id": "angular", "category": "frameworks", "ecosystem": "@angular", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/@angular/core", "marketplace_url": "", "latest_version": "21.2.7", "version_scheme": "semver-ish", "latest_release_at": "2026-03-17T01:31:35.828211Z", "latest_release_url": "https://www.npmjs.com/package/@angular/core", "version_source_refs": [ "https://www.npmjs.com/package/@angular/core", "https://github.com/angular/angular/security/advisories/GHSA-prjf-86w9-mfqv", "https://github.com/angular/angular/security/advisories/GHSA-g93w-mfhg-p222" ], "version_sync_status": "green", "security_version_count": 18, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/angular/angular/security/advisories/GHSA-prjf-86w9-mfqv", "https://github.com/angular/angular/security/advisories/GHSA-g93w-mfhg-p222", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-17T01:31:35+00:00", "last_synced_at": "2026-03-17T01:31:35+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2026-02-27T18:33:16+00:00", "latest_advisory_at": "2026-03-17T01:31:35+00:00", "advisory_ids": [ "angular--CVE-2026-27970", "angular--CVE-2026-32635" ], "source_refs": [] }, { "entity_id": "angular", "entity_type": "system", "display_name": "Angular", "parent_entity_id": null, "root_system_id": "angular", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "21.2.7", "version_scheme": "vendor", "latest_release_at": "2026-03-17T01:31:35.828211Z", "latest_release_url": "https://www.npmjs.com/package/@angular/core", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 18, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-17T01:31:35+00:00", "last_synced_at": "2026-03-17T01:31:35+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2026-02-27T18:33:16+00:00", "latest_advisory_at": "2026-03-17T01:31:35+00:00", "advisory_ids": [ "angular--CVE-2026-27970", "angular--CVE-2026-32635" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Angular", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "apache-httpd", "entity_type": "system", "display_name": "Apache HTTP Server", "parent_entity_id": null, "root_system_id": "apache-httpd", "category": "servers", "ecosystem": "servers", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2.4.x", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/", "version_source_refs": [ "https://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/", "https://httpd.apache.org/security/vulnerabilities_22.html" ], "version_sync_status": "green", "security_version_count": 1, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Apache HTTPD Security" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-05-22T00:00:00+00:00", "last_synced_at": "2025-05-22T00:00:00+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 135, "workflow_complete_advisory_count": 135, "version_mapped_advisory_count": 0, "first_advisory_at": "1999-06-03T04:00:00+00:00", "latest_advisory_at": "2025-05-22T00:00:00+00:00", "advisory_ids": [ "apache-httpd--02cba8895c", "apache-httpd--05cc1afdb1", "apache-httpd--07805b501b", "apache-httpd--0a6be3d9f9", "apache-httpd--0bc105963e", "apache-httpd--0ca4c19a23", "apache-httpd--0dbcc731e3", "apache-httpd--0e5b8af55a", "apache-httpd--101f2d16a4", "apache-httpd--1110a7f1d2", "apache-httpd--172cdd59be", "apache-httpd--1afb0f2b13", "apache-httpd--1c11edba84", "apache-httpd--1e9218e776", "apache-httpd--20376e1d55", "apache-httpd--203c36ee66", "apache-httpd--219b6d2e94", "apache-httpd--22307e5b33", "apache-httpd--22e8d8544b", "apache-httpd--23cd71d5dd", "apache-httpd--276abef65c", "apache-httpd--2ba0a72733", "apache-httpd--2bc69387c4", "apache-httpd--2bf906b1f1", "apache-httpd--2d0d84c490", "apache-httpd--2d92c01d3d", "apache-httpd--2f5a1a9d6e", "apache-httpd--331bc084fd", "apache-httpd--34efd686fd", "apache-httpd--39b0a97f1b", "apache-httpd--3abbe322bc", "apache-httpd--414d53727b", "apache-httpd--4c276fa297", "apache-httpd--4f2f2006f0", "apache-httpd--53ed5e694b", "apache-httpd--54f4c83f62", "apache-httpd--597e01ff2b", "apache-httpd--62f6b74275", "apache-httpd--63991a76ba", "apache-httpd--66951029b9", "apache-httpd--67f45a8c73", "apache-httpd--7235782431", "apache-httpd--72c286c42f", "apache-httpd--72d0a9488a", "apache-httpd--743aad06f7", "apache-httpd--77dc43b9bd", "apache-httpd--7ebb8cbaf7", "apache-httpd--8021fd91fe", "apache-httpd--865fc55d60", "apache-httpd--89048ff274", "apache-httpd--8c1c4a9f69", "apache-httpd--8cb5b0c11c", "apache-httpd--933f3c3296", "apache-httpd--9351ed6cb8", "apache-httpd--9374eed004", "apache-httpd--9b89d11a37", "apache-httpd--9c906c368b", "apache-httpd--CVE-1999-1412", "apache-httpd--CVE-2000-0505", "apache-httpd--CVE-2000-1168", "apache-httpd--CVE-2001-1556", "apache-httpd--CVE-2002-0240", "apache-httpd--CVE-2002-1157", "apache-httpd--CVE-2002-1793", "apache-httpd--CVE-2002-2007", "apache-httpd--CVE-2003-0249", "apache-httpd--CVE-2003-1307", "apache-httpd--CVE-2003-1418", "apache-httpd--CVE-2004-0113", "apache-httpd--CVE-2004-0646", "apache-httpd--CVE-2004-2115", "apache-httpd--CVE-2004-2343", "apache-httpd--CVE-2005-2088", "apache-httpd--CVE-2005-3630", "apache-httpd--CVE-2005-4814", "apache-httpd--CVE-2006-2330", "apache-httpd--CVE-2006-3918", "apache-httpd--CVE-2006-4004", "apache-httpd--CVE-2006-4191", "apache-httpd--CVE-2006-4558", "apache-httpd--CVE-2006-4625", "apache-httpd--CVE-2006-4636", "apache-httpd--CVE-2006-5263", "apache-httpd--CVE-2006-5733", "apache-httpd--CVE-2006-5894", "apache-httpd--CVE-2006-6047", "apache-httpd--CVE-2006-6390", "apache-httpd--CVE-2006-6445", "apache-httpd--CVE-2006-6613", "apache-httpd--CVE-2006-6869", "apache-httpd--CVE-2006-7098", "apache-httpd--CVE-2007-0086", "apache-httpd--CVE-2007-0098", "apache-httpd--CVE-2007-0173", "apache-httpd--CVE-2007-0419", "apache-httpd--CVE-2007-0450", "apache-httpd--CVE-2007-0637", "apache-httpd--CVE-2007-1524", "apache-httpd--CVE-2007-1577", "apache-httpd--CVE-2007-1633", "apache-httpd--CVE-2007-1720", "apache-httpd--CVE-2007-1741", "apache-httpd--CVE-2007-1742", "apache-httpd--CVE-2007-1743", "apache-httpd--CVE-2007-1801", "apache-httpd--CVE-2007-1842", "apache-httpd--CVE-2007-1860", "apache-httpd--CVE-2019-0211", "apache-httpd--CVE-2021-40438", "apache-httpd--CVE-2021-41773", "apache-httpd--CVE-2021-42013", "apache-httpd--CVE-2024-38475", "apache-httpd--a17785142a", "apache-httpd--a45c30ecd9", "apache-httpd--a621acb133", "apache-httpd--a8a1854523", "apache-httpd--aacfaa6a80", "apache-httpd--aca919348b", "apache-httpd--b61c783667", "apache-httpd--c63da36498", "apache-httpd--c6691454bc", "apache-httpd--d0e22d65d1", "apache-httpd--d64723cb44", "apache-httpd--daa9023ed5", "apache-httpd--dd0bd113b7", "apache-httpd--de25fcbe49", "apache-httpd--e18cad1aed", "apache-httpd--e3be78f3ce", "apache-httpd--e4fc049559", "apache-httpd--eb473e3585", "apache-httpd--f0745e0763", "apache-httpd--f7a4b946cb", "apache-httpd--f8fa380112", "apache-httpd--fb4f0f6f89", "apache-httpd--fe666b8dc0" ], "source_refs": [ { "name": "Apache HTTPD Security", "url": "https://httpd.apache.org/security/vulnerabilities_24.html", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "CISA KEV Apache HTTPD", "url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json", "kind": "kev-json", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Apache HTTP Server", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "apache-tomcat", "entity_type": "system", "display_name": "Apache Tomcat", "parent_entity_id": null, "root_system_id": "apache-tomcat", "category": "servers", "ecosystem": "servers", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "11.0-doc", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://tomcat.apache.org/tomcat-11.0-doc/index.html", "version_source_refs": [ "https://tomcat.apache.org/tomcat-11.0-doc/index.html", "https://tomcat.apache.org/tomcat-10.0-doc/security-howto.html", "https://tomcat.apache.org/security-10.html" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Apache Tomcat Security" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-22T00:00:00+00:00", "last_synced_at": "2025-04-22T00:00:00+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 136, "workflow_complete_advisory_count": 136, "version_mapped_advisory_count": 0, "first_advisory_at": "2000-10-20T04:00:00+00:00", "latest_advisory_at": "2025-04-22T00:00:00+00:00", "advisory_ids": [ "apache-tomcat--011725d3b7", "apache-tomcat--049b7d0382", "apache-tomcat--0a3c261703", "apache-tomcat--0ca9da9c59", "apache-tomcat--118d55a36a", "apache-tomcat--13118e2458", "apache-tomcat--149d716532", "apache-tomcat--1ca9fd2888", "apache-tomcat--1f1e953630", "apache-tomcat--207b10584e", "apache-tomcat--242cf7a166", "apache-tomcat--2ffc2aa787", "apache-tomcat--32ce70ac24", "apache-tomcat--33b187389a", "apache-tomcat--3467b45391", "apache-tomcat--35abb36510", "apache-tomcat--3fc96befd0", "apache-tomcat--41118a6375", "apache-tomcat--4d22e4456b", "apache-tomcat--524fcf3503", "apache-tomcat--55e780c0ef", "apache-tomcat--57d32a8906", "apache-tomcat--583e0f80f0", "apache-tomcat--5bcb504893", "apache-tomcat--5de2d17648", "apache-tomcat--5e02bf0896", "apache-tomcat--5e7ef9af14", "apache-tomcat--62347916c4", "apache-tomcat--656b24de26", "apache-tomcat--66500f6f9d", "apache-tomcat--69f233a427", "apache-tomcat--6cb0b97c81", "apache-tomcat--7362e5d6ec", "apache-tomcat--743c78dd96", "apache-tomcat--745679753c", "apache-tomcat--7714a24368", "apache-tomcat--7d8dd36663", "apache-tomcat--85a3b9b4c9", "apache-tomcat--86b167c195", "apache-tomcat--8cf8505808", "apache-tomcat--8f448afa4f", "apache-tomcat--91d886494d", "apache-tomcat--99779e97b3", "apache-tomcat--9d2a8987e8", "apache-tomcat--CVE-2000-0759", "apache-tomcat--CVE-2000-0760", "apache-tomcat--CVE-2000-1210", "apache-tomcat--CVE-2001-0590", "apache-tomcat--CVE-2001-0829", "apache-tomcat--CVE-2002-0493", "apache-tomcat--CVE-2002-0682", "apache-tomcat--CVE-2002-0935", "apache-tomcat--CVE-2002-1394", "apache-tomcat--CVE-2002-1567", "apache-tomcat--CVE-2002-1895", "apache-tomcat--CVE-2002-2006", "apache-tomcat--CVE-2002-2007", "apache-tomcat--CVE-2002-2008", "apache-tomcat--CVE-2002-2009", "apache-tomcat--CVE-2002-2272", "apache-tomcat--CVE-2005-0808", "apache-tomcat--CVE-2005-1753", "apache-tomcat--CVE-2005-1754", "apache-tomcat--CVE-2005-3164", "apache-tomcat--CVE-2005-3510", "apache-tomcat--CVE-2005-4703", "apache-tomcat--CVE-2005-4836", "apache-tomcat--CVE-2006-3835", "apache-tomcat--CVE-2006-7195", "apache-tomcat--CVE-2006-7196", "apache-tomcat--CVE-2006-7197", "apache-tomcat--CVE-2007-0450", "apache-tomcat--CVE-2007-0774", "apache-tomcat--CVE-2007-1358", "apache-tomcat--CVE-2007-1491", "apache-tomcat--CVE-2007-1858", "apache-tomcat--CVE-2007-1860", "apache-tomcat--CVE-2007-2449", "apache-tomcat--CVE-2007-2450", "apache-tomcat--CVE-2007-3382", "apache-tomcat--CVE-2007-3383", "apache-tomcat--CVE-2007-3384", "apache-tomcat--CVE-2007-3385", "apache-tomcat--CVE-2007-3386", "apache-tomcat--CVE-2007-4724", "apache-tomcat--CVE-2007-5333", "apache-tomcat--CVE-2007-5342", "apache-tomcat--CVE-2007-5461", "apache-tomcat--CVE-2007-6286", "apache-tomcat--CVE-2008-0002", "apache-tomcat--CVE-2008-0128", "apache-tomcat--CVE-2008-0457", "apache-tomcat--CVE-2008-1232", "apache-tomcat--CVE-2008-1947", "apache-tomcat--CVE-2016-8735", "apache-tomcat--CVE-2017-12615", "apache-tomcat--CVE-2017-12617", "apache-tomcat--CVE-2020-1938", "apache-tomcat--CVE-2021-1498", "apache-tomcat--CVE-2025-24813", "apache-tomcat--a2590dc47b", "apache-tomcat--ac3714eb57", "apache-tomcat--aea19824c2", "apache-tomcat--af3c91be5c", "apache-tomcat--b23c5e35c9", "apache-tomcat--b55bb1b121", "apache-tomcat--b744a50549", "apache-tomcat--b7ac0eae42", "apache-tomcat--ba168e654b", "apache-tomcat--bc806658b3", "apache-tomcat--bdde1865a6", "apache-tomcat--c10a63610c", "apache-tomcat--c24871aac5", "apache-tomcat--c470f39b6f", "apache-tomcat--c8a2e47ea5", "apache-tomcat--cc1565901e", "apache-tomcat--ce6ff70ffe", "apache-tomcat--cf335ad174", "apache-tomcat--d33b4cbf62", "apache-tomcat--d3ce0dca4e", "apache-tomcat--d9121f9c30", "apache-tomcat--d9eef50097", "apache-tomcat--dc60148766", "apache-tomcat--e0fd2f8d0a", "apache-tomcat--e112505b22", "apache-tomcat--e36bb1c6d7", "apache-tomcat--e4c4769574", "apache-tomcat--e5e80c0a91", "apache-tomcat--e9bbe07c29", "apache-tomcat--eaa9f7ab66", "apache-tomcat--ec10641321", "apache-tomcat--f182e5bf64", "apache-tomcat--f38adeb312", "apache-tomcat--f64ec916fb", "apache-tomcat--fc53c949b0", "apache-tomcat--ff9ba8aa3b" ], "source_refs": [ { "name": "Apache Tomcat Security", "url": "https://tomcat.apache.org/security-10.html", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "CISA KEV Tomcat", "url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json", "kind": "kev-json", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Tomcat", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "aspnet-core", "entity_type": "system", "display_name": "ASP.NET Core", "parent_entity_id": null, "root_system_id": "aspnet-core", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-11T13:53:20+00:00", "last_synced_at": "2026-03-11T13:53:20+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 3, "workflow_complete_advisory_count": 3, "version_mapped_advisory_count": 0, "first_advisory_at": "2020-08-17T19:15:21+00:00", "latest_advisory_at": "2026-03-11T13:53:20+00:00", "advisory_ids": [ "aspnet-core--CVE-2020-1045", "aspnet-core--CVE-2020-1597", "aspnet-core--CVE-2026-26130" ], "source_refs": [ { "name": "OSV ASP.NET Core", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD ASP.NET Core", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "astro--module--astro", "entity_type": "module", "display_name": "astro", "parent_entity_id": "astro", "root_system_id": "astro", "category": "frameworks", "ecosystem": "astro", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/astro", "marketplace_url": "", "latest_version": "6.1.3", "version_scheme": "semver-ish", "latest_release_at": "2025-11-20T14:43:59.624508Z", "latest_release_url": "https://www.npmjs.com/package/astro", "version_source_refs": [ "https://www.npmjs.com/package/astro", "https://github.com/withastro/astro/security/advisories/GHSA-wrwg-2hg8-v723", "https://github.com/withastro/astro/security/advisories/GHSA-m85w-3h95-hcf9" ], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/withastro/astro/security/advisories/GHSA-wrwg-2hg8-v723", "https://github.com/withastro/astro/security/advisories/GHSA-m85w-3h95-hcf9", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-11-27T08:16:37+00:00", "last_synced_at": "2025-11-27T08:16:37+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2024-10-14T20:02:21+00:00", "latest_advisory_at": "2025-11-27T08:16:37+00:00", "advisory_ids": [ "astro--CVE-2024-47885", "astro--CVE-2025-64764" ], "source_refs": [] }, { "entity_id": "astro--project--astro", "entity_type": "project", "display_name": "astro", "parent_entity_id": "astro", "root_system_id": "astro", "category": "frameworks", "ecosystem": "astro", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/astro", "marketplace_url": "", "latest_version": "6.1.3", "version_scheme": "semver-ish", "latest_release_at": "2025-11-27T08:22:36.525875Z", "latest_release_url": "https://www.npmjs.com/package/astro", "version_source_refs": [ "https://www.npmjs.com/package/astro", "https://github.com/withastro/astro/security/advisories/GHSA-c4pw-33h3-35xw", "https://github.com/withastro/astro/security/advisories/GHSA-49w6-73cw-chjr", "https://github.com/withastro/astro/security/advisories/GHSA-xf8x-j4p2-f749", "https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88", "https://github.com/withastro/astro/security/advisories/GHSA-ggxq-hp9w-j794", "https://github.com/withastro/astro/security/advisories/GHSA-fvmw-cj7j-j39q", "https://github.com/withastro/astro/security/advisories/GHSA-hr2q-hp5q-x767", "https://github.com/withastro/astro/security/advisories/GHSA-cq8c-xv66-36gw", "https://github.com/withastro/astro/security/advisories/GHSA-w2vj-39qv-7vh7", "https://github.com/withastro/astro/security/advisories/GHSA-qcpr-679q-rhm2", "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f" ], "version_sync_status": "green", "security_version_count": 28, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/withastro/astro/security/advisories/GHSA-c4pw-33h3-35xw", "https://github.com/withastro/astro/security/advisories/GHSA-49w6-73cw-chjr", "https://github.com/withastro/astro/security/advisories/GHSA-xf8x-j4p2-f749", "https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88", "https://github.com/withastro/astro/security/advisories/GHSA-ggxq-hp9w-j794", "https://github.com/withastro/astro/security/advisories/GHSA-fvmw-cj7j-j39q", "https://github.com/withastro/astro/security/advisories/GHSA-hr2q-hp5q-x767", "https://github.com/withastro/astro/security/advisories/GHSA-cq8c-xv66-36gw", "https://github.com/withastro/astro/security/advisories/GHSA-w2vj-39qv-7vh7", "https://github.com/withastro/astro/security/advisories/GHSA-qcpr-679q-rhm2", "advisory-fixed-version", "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T03:01:27+00:00", "last_synced_at": "2026-02-04T03:01:27+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 13, "workflow_complete_advisory_count": 13, "version_mapped_advisory_count": 13, "first_advisory_at": "2024-12-18T15:02:37+00:00", "latest_advisory_at": "2026-03-26T19:01:26+00:00", "advisory_ids": [ "astro--CVE-2024-56140", "astro--CVE-2024-56159", "astro--CVE-2025-54793", "astro--CVE-2025-55303", "astro--CVE-2025-59837", "astro--CVE-2025-61925", "astro--CVE-2025-64525", "astro--CVE-2025-64745", "astro--CVE-2025-64757", "astro--CVE-2025-64765", "astro--CVE-2025-65019", "astro--CVE-2025-66202", "astro--CVE-2026-33769" ], "source_refs": [] }, { "entity_id": "astro", "entity_type": "system", "display_name": "Astro", "parent_entity_id": null, "root_system_id": "astro", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "6.1.3", "version_scheme": "vendor", "latest_release_at": "2025-11-20T14:43:59.624508Z", "latest_release_url": "https://www.npmjs.com/package/astro", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 32, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T03:01:27+00:00", "last_synced_at": "2026-02-04T03:01:27+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 15, "workflow_complete_advisory_count": 15, "version_mapped_advisory_count": 15, "first_advisory_at": "2024-10-14T20:02:21+00:00", "latest_advisory_at": "2026-03-26T19:01:26+00:00", "advisory_ids": [ "astro--CVE-2024-47885", "astro--CVE-2024-56140", "astro--CVE-2024-56159", "astro--CVE-2025-54793", "astro--CVE-2025-55303", "astro--CVE-2025-59837", "astro--CVE-2025-61925", "astro--CVE-2025-64525", "astro--CVE-2025-64745", "astro--CVE-2025-64757", "astro--CVE-2025-64764", "astro--CVE-2025-64765", "astro--CVE-2025-65019", "astro--CVE-2025-66202", "astro--CVE-2026-33769" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Astro", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "caddy--extension--github-com-caddyserver-caddy-v2", "entity_type": "extension", "display_name": "caddyserver / caddy / v2", "parent_entity_id": "caddy", "root_system_id": "caddy", "category": "servers", "ecosystem": "github.com", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/caddyserver/caddy", "package_registry": "", "marketplace_url": "", "latest_version": "2.11.2", "version_scheme": "semver-ish", "latest_release_at": "2026-03-06T02:43:43Z", "latest_release_url": "https://github.com/caddyserver/caddy/releases/tag/v2.11.2", "version_source_refs": [ "https://github.com/caddyserver/caddy/releases/tag/v2.11.2", "https://github.com/caddyserver/caddy/security/advisories/GHSA-5r3v-vc8m-m96g", "https://github.com/caddyserver/caddy" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitHub Releases API", "https://github.com/caddyserver/caddy/security/advisories/GHSA-5r3v-vc8m-m96g", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-27T19:55:10+00:00", "last_synced_at": "2026-02-27T19:55:10+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-02-24T20:39:08+00:00", "latest_advisory_at": "2026-02-27T19:55:10+00:00", "advisory_ids": [ "caddy--CVE-2026-27590" ], "source_refs": [] }, { "entity_id": "caddy--repo--github-com-caddyserver-caddy-v2", "entity_type": "repo", "display_name": "caddyserver / caddy / v2", "parent_entity_id": "caddy", "root_system_id": "caddy", "category": "servers", "ecosystem": "github.com", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/caddyserver/caddy", "package_registry": "", "marketplace_url": "", "latest_version": "2.11.2", "version_scheme": "semver-ish", "latest_release_at": "2026-03-06T02:43:43Z", "latest_release_url": "https://github.com/caddyserver/caddy/releases/tag/v2.11.2", "version_source_refs": [ "https://github.com/caddyserver/caddy/releases/tag/v2.11.2", "https://github.com/caddyserver/caddy/security/advisories/GHSA-4xrr-hq4w-6vf4", "https://github.com/caddyserver/caddy/security/advisories/GHSA-m2w3-8f23-hxxf", "https://github.com/caddyserver/caddy/security/advisories/GHSA-7r4p-vjf4-gxv4" ], "version_sync_status": "green", "security_version_count": 5, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitHub Releases API", "https://github.com/caddyserver/caddy/security/advisories/GHSA-4xrr-hq4w-6vf4", "https://github.com/caddyserver/caddy/security/advisories/GHSA-m2w3-8f23-hxxf", "https://github.com/caddyserver/caddy/security/advisories/GHSA-7r4p-vjf4-gxv4", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-27T19:54:36+00:00", "last_synced_at": "2026-02-27T19:54:36+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 7, "workflow_complete_advisory_count": 7, "version_mapped_advisory_count": 7, "first_advisory_at": "2026-02-24T20:16:55+00:00", "latest_advisory_at": "2026-03-23T04:52:47+00:00", "advisory_ids": [ "caddy--CVE-2026-27585", "caddy--CVE-2026-27586", "caddy--CVE-2026-27587", "caddy--CVE-2026-27588", "caddy--CVE-2026-27589", "caddy--CVE-2026-30851", "caddy--CVE-2026-30852" ], "source_refs": [] }, { "entity_id": "caddy", "entity_type": "system", "display_name": "Caddy", "parent_entity_id": null, "root_system_id": "caddy", "category": "servers", "ecosystem": "servers", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2.11.2", "version_scheme": "vendor", "latest_release_at": "2026-03-06T02:43:43Z", "latest_release_url": "https://github.com/caddyserver/caddy/releases/tag/v2.11.2", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 7, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-27T19:55:10+00:00", "last_synced_at": "2026-02-27T19:55:10+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 29, "workflow_complete_advisory_count": 29, "version_mapped_advisory_count": 8, "first_advisory_at": "2026-02-24T20:16:55+00:00", "latest_advisory_at": "2026-03-23T04:52:47+00:00", "advisory_ids": [ "caddy--0158a8ddd8", "caddy--0921003cc6", "caddy--146569d56a", "caddy--3b182d7701", "caddy--44cbfe52c8", "caddy--54eb0db436", "caddy--6fb600a3f4", "caddy--745ad1485a", "caddy--752be55ec0", "caddy--7c57bb87cf", "caddy--85a3ff1f30", "caddy--883104fe6c", "caddy--921b808417", "caddy--CVE-2026-27585", "caddy--CVE-2026-27586", "caddy--CVE-2026-27587", "caddy--CVE-2026-27588", "caddy--CVE-2026-27589", "caddy--CVE-2026-27590", "caddy--CVE-2026-30851", "caddy--CVE-2026-30852", "caddy--ade36bbb20", "caddy--c52981f5e2", "caddy--cf9582f72a", "caddy--e598b86910", "caddy--e89796c7cf", "caddy--f0734ced73", "caddy--f5135e4d5d", "caddy--fedac463f1" ], "source_refs": [ { "name": "GitHub Caddy Advisories", "url": "https://github.com/caddyserver/caddy/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Caddy", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "directus--repo--directus-directus", "entity_type": "repo", "display_name": "directus / directus", "parent_entity_id": "directus", "root_system_id": "directus", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/directus/directus", "package_registry": "", "marketplace_url": "", "latest_version": "11.17.1", "version_scheme": "semver-ish", "latest_release_at": "2026-03-30T16:37:32Z", "latest_release_url": "https://github.com/directus/directus/releases/tag/v11.17.1", "version_source_refs": [ "https://github.com/directus/directus/releases/tag/v11.16.1", "https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc", "https://github.com/directus/directus/releases/tag/v11.17.0", "https://github.com/directus/directus/releases/tag/v11.17.1" ], "version_sync_status": "green", "security_version_count": 1, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitHub Releases API", "Directus GitHub Advisories" ], "catalog_source": "Directus GitHub Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "Directus GitHub Advisories", "url": "https://github.com/directus/directus/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "directus", "entity_type": "system", "display_name": "Directus", "parent_entity_id": null, "root_system_id": "directus", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "11.17.1", "version_scheme": "vendor", "latest_release_at": "2026-03-30T16:37:32Z", "latest_release_url": "https://github.com/directus/directus/releases/tag/v11.17.1", "version_source_refs": [ "https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc" ], "version_sync_status": "green", "security_version_count": 1, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Directus GitHub Advisories" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 29, "workflow_complete_advisory_count": 29, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "directus--05a97ef95a", "directus--0f0b39c9f0", "directus--27bdf5ad98", "directus--2af6171363", "directus--371ca874bf", "directus--42698ca19c", "directus--4894f4700e", "directus--6171b57605", "directus--683f41088d", "directus--699c51e2fd", "directus--6bb5a641ff", "directus--6e0381fffb", "directus--780d166a7c", "directus--838e2a1aa3", "directus--8545270cc0", "directus--8a6ee374c5", "directus--928c5c25d6", "directus--9ec35d1559", "directus--ae275563c7", "directus--ae534d9502", "directus--c792942c56", "directus--c95f7731b4", "directus--cc08335ec9", "directus--ce991ada6e", "directus--dbeb181232", "directus--ef120db8c2", "directus--f0befb3e4d", "directus--f2d76edbde", "directus--f9abf30989" ], "source_refs": [ { "name": "Directus GitHub Advisories", "url": "https://github.com/directus/directus/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "OSV Directus", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "discourse", "entity_type": "system", "display_name": "Discourse", "parent_entity_id": null, "root_system_id": "discourse", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2502-05-2023-143713-1.zip", "version_scheme": "vendor", "latest_release_at": "Wed, 05 Feb 2025 14:26:56 +0000", "latest_release_url": "https://meta.discourse.org/t/3-4-0-beta4-redesigned-emojis-exporting-user-data-flagging-illegal-content-and-more/349299", "version_source_refs": [ "https://meta.discourse.org/t/3-4-0-beta4-redesigned-emojis-exporting-user-data-flagging-illegal-content-and-more/349299", "https://meta.discourse.org/t/statement-regarding-openssl-vulnerabilities-2022-11-01/244230", "https://meta.discourse.org/t/release-v2025-12-0-discourse-rewind-new-review-queue-and-ui-to-create-tags-chat-channel-customisation-and-live-pr-statuses/392314", "https://meta.discourse.org/t/discourse-and-the-log4j-vulnerability/212609", "https://meta.discourse.org/t/3-3-4-security-and-maintenance-release/349301", "https://meta.discourse.org/t/3-4-0-major-release/349303", "https://meta.discourse.org/t/3-4-0-beta3-check-for-updates-on-what-s-new-page-filter-by-user-in-the-review-queue-threading-in-chat-dms-and-group-chats-and-more/343237", "https://meta.discourse.org/t/3-4-1-bug-fix-and-ux-release/353247", "https://meta.discourse.org/t/3-4-2-security-and-bug-fix-release/358152", "https://meta.discourse.org/t/3-4-3-bug-fix-and-ux-release/362895", "https://meta.discourse.org/t/3-4-4-bug-fix-and-ux-release/367301", "https://meta.discourse.org/t/3-4-5-security-fixes-release/369347", "https://meta.discourse.org/t/3-4-6-security-fix-release/370631", "https://meta.discourse.org/t/3-4-7-security-and-maintenance-release/375747", "https://meta.discourse.org/t/january-2026-releases/393903" ], "version_sync_status": "green", "security_version_count": 82, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Discourse Release Notes RSS", "Discourse Security RSS" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-01-28T17:35:34+00:00", "last_synced_at": "2026-01-28T17:35:34+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 31, "workflow_complete_advisory_count": 31, "version_mapped_advisory_count": 0, "first_advisory_at": "2024-12-19T16:53:54+00:00", "latest_advisory_at": "2026-03-31T14:35:49+00:00", "advisory_ids": [ "discourse--0a6de28d35", "discourse--111e9b52a2", "discourse--124fce0a46", "discourse--20c3aec988", "discourse--321c09b9ad", "discourse--3b96456013", "discourse--4222d879a1", "discourse--451d4d9871", "discourse--4dbfe76896", "discourse--5d3cafdece", "discourse--5dce90675e", "discourse--615bee56ae", "discourse--6216e2732b", "discourse--68e2bb93e1", "discourse--703d073816", "discourse--734b2c6337", "discourse--76d1008283", "discourse--79ee74932d", "discourse--7dafb7d908", "discourse--88ede35504", "discourse--8c344d4912", "discourse--9052caf22d", "discourse--9812e0316d", "discourse--b0b7e41525", "discourse--b1f0515c49", "discourse--b5351f62de", "discourse--be91796fd3", "discourse--c407380775", "discourse--c9760a2b16", "discourse--dc3c665a74", "discourse--feb2fecd8e" ], "source_refs": [ { "name": "Discourse Meta Security", "url": "https://meta.discourse.org/c/bug/security/40", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "Discourse Release Notes RSS", "url": "https://meta.discourse.org/tag/release-notes.rss", "kind": "rss-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "Discourse Security RSS", "url": "https://meta.discourse.org/tag/security.rss", "kind": "rss-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub Discourse Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Discourse", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "django--project--django", "entity_type": "project", "display_name": "django", "parent_entity_id": "django", "root_system_id": "django", "category": "frameworks", "ecosystem": "django", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/django", "marketplace_url": "", "latest_version": "1.0.0", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/django", "version_source_refs": [ "https://www.npmjs.com/package/django", "https://nvd.nist.gov/vuln/detail/CVE-2019-11358" ], "version_sync_status": "green", "security_version_count": 160, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://nvd.nist.gov/vuln/detail/CVE-2019-11358" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T21:56:20+00:00", "last_synced_at": "2026-03-13T21:56:20+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 5, "workflow_complete_advisory_count": 5, "version_mapped_advisory_count": 5, "first_advisory_at": "2019-04-26T16:29:11+00:00", "latest_advisory_at": "2026-03-13T21:56:20+00:00", "advisory_ids": [ "django--CVE-2019-11358", "django--CVE-2025-14550", "django--CVE-2026-1285", "django--CVE-2026-25673", "django--CVE-2026-25674" ], "source_refs": [] }, { "entity_id": "django", "entity_type": "system", "display_name": "Django", "parent_entity_id": null, "root_system_id": "django", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "1.0.0", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/django", "version_source_refs": [ "https://www.djangoproject.com/weblog/2026/mar/03/security-releases/", "https://docs.djangoproject.com/en/1.8/releases/security/", "https://docs.djangoproject.com/en/1.10/releases/security/", "https://docs.djangoproject.com/en/1.11/releases/security/", "https://docs.djangoproject.com/en/2.0/releases/security/", "https://docs.djangoproject.com/en/2.1/releases/security/", "https://docs.djangoproject.com/en/2.2/releases/security/", "https://docs.djangoproject.com/en/3.0/releases/security/", "https://docs.djangoproject.com/en/3.1/releases/security/", "https://docs.djangoproject.com/en/3.2/releases/security/", "https://docs.djangoproject.com/en/4.0/releases/security/", "https://docs.djangoproject.com/en/4.1/releases/security/", "https://docs.djangoproject.com/en/4.2/releases/security/", "https://www.djangoproject.com/weblog/2026/feb/03/security-releases/", "https://docs.djangoproject.com/en/5.0/releases/security/", "https://docs.djangoproject.com/en/5.1/releases/security/", "https://docs.djangoproject.com/en/5.2/releases/security/", "https://docs.djangoproject.com/en/6.0/releases/security/" ], "version_sync_status": "green", "security_version_count": 160, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Django Security Weblog", "Django Security Releases Archive" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T21:56:20+00:00", "last_synced_at": "2026-03-13T21:56:20+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 82, "workflow_complete_advisory_count": 82, "version_mapped_advisory_count": 5, "first_advisory_at": "2019-04-26T16:29:11+00:00", "latest_advisory_at": "2026-03-13T21:56:20+00:00", "advisory_ids": [ "django--039dc7ddc9", "django--04b01f915c", "django--09baedefbe", "django--0aab906a01", "django--0b0d3e8528", "django--0d2f5bfda9", "django--0de38e6fb7", "django--0e66e85b69", "django--119d0d44f0", "django--12d8627bfa", "django--1596250124", "django--163aa85f65", "django--1b9318835e", "django--24b638c263", "django--254015d606", "django--29d47a1fa6", "django--2a2a9aae5c", "django--309f1c9e59", "django--3215595b39", "django--3d449deb1a", "django--4081c9ffc7", "django--40fd3207dc", "django--42826bad6f", "django--4664cc7401", "django--48994827de", "django--4c2cb798dd", "django--51863f2eee", "django--5251fd783b", "django--54c04190fc", "django--5799bb4ab0", "django--59cca01c55", "django--5c72de7281", "django--6550a47df6", "django--6ae5586701", "django--6db958e7e6", "django--70feb242af", "django--71dee0d572", "django--758119a235", "django--76e1c5f91b", "django--7a24d6ab99", "django--7fd9d0710a", "django--809f77ff6c", "django--86345b7646", "django--89b37a409b", "django--8d2e24a3e2", "django--8deb186b5c", "django--8f1d5b2184", "django--928c980a74", "django--9b63010325", "django--9eea409102", "django--CVE-2019-11358", "django--CVE-2025-14550", "django--CVE-2026-1285", "django--CVE-2026-25673", "django--CVE-2026-25674", "django--a654414489", "django--a74cec3cef", "django--a879747124", "django--ab84c56040", "django--abc897f0c7", "django--ad28ca10f9", "django--ae8246f865", "django--aec284a220", "django--b1898bd10a", "django--ba34c0875e", "django--be47316ecb", "django--c0e395334c", "django--c1c8aebaa5", "django--ca18cde235", "django--cc7d4242ff", "django--ceac3aac2d", "django--d10de5d475", "django--d4d142eb6a", "django--ddee5ea549", "django--e051892857", "django--e2ea656f3a", "django--e6a6ebb203", "django--ed78bd7fe9", "django--f1e794c313", "django--f668a81433", "django--f81fc1c2ed", "django--fcf34c2bb9" ], "source_refs": [ { "name": "Django Security RSS", "url": "https://www.djangoproject.com/weblog/feeds/tags/security/", "kind": "rss-feed", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "Django Security Weblog", "url": "https://www.djangoproject.com/weblog/", "kind": "vendor-index", "status": "active", "bucket": "official_sources", "official": true }, { "name": "Django Security Releases Archive", "url": "https://docs.djangoproject.com/en/dev/releases/security/", "kind": "vendor-index", "status": "active", "bucket": "official_sources", "official": true }, { "name": "OSV Django", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "drupal", "entity_type": "system", "display_name": "Drupal", "parent_entity_id": null, "root_system_id": "drupal", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "11.2.8", "version_scheme": "vendor", "latest_release_at": "Wed, 12 Nov 2025 20:16:22 +0000", "latest_release_url": "https://www.drupal.org/sa-core-2025-008", "version_source_refs": [ "https://www.drupal.org/sa-core-2025-008", "https://www.drupal.org/sa-core-2024-008", "https://www.drupal.org/sa-core-2023-004", "https://www.drupal.org/sa-core-2023-005", "https://www.drupal.org/sa-core-2024-001", "https://www.drupal.org/sa-core-2023-006", "https://www.drupal.org/sa-core-2024-003" ], "version_sync_status": "green", "security_version_count": 74, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Drupal Security Advisories RSS" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-11-12T20:16:22+00:00", "last_synced_at": "2025-11-12T20:16:22+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 70, "workflow_complete_advisory_count": 70, "version_mapped_advisory_count": 0, "first_advisory_at": "2002-12-31T05:00:00+00:00", "latest_advisory_at": "2025-11-12T20:16:22+00:00", "advisory_ids": [ "drupal--156bde9702", "drupal--170612fa5f", "drupal--1ab9013d16", "drupal--23ec7fa241", "drupal--284d6aff2f", "drupal--3144ddd947", "drupal--454e57e9ec", "drupal--47ee170dd0", "drupal--4a0d8893d5", "drupal--65bf5646d9", "drupal--6da7fc8e2e", "drupal--9d2d9c684a", "drupal--CVE-2002-1806", "drupal--CVE-2005-0682", "drupal--CVE-2005-1871", "drupal--CVE-2005-1921", "drupal--CVE-2005-2106", "drupal--CVE-2005-2498", "drupal--CVE-2005-3973", "drupal--CVE-2005-3974", "drupal--CVE-2005-3975", "drupal--CVE-2006-0070", "drupal--CVE-2006-1225", "drupal--CVE-2006-1226", "drupal--CVE-2006-1227", "drupal--CVE-2006-1228", "drupal--CVE-2006-2260", "drupal--CVE-2006-2742", "drupal--CVE-2006-2743", "drupal--CVE-2006-2831", "drupal--CVE-2006-2832", "drupal--CVE-2006-2833", "drupal--CVE-2006-3473", "drupal--CVE-2006-3570", "drupal--CVE-2006-4002", "drupal--CVE-2006-4107", "drupal--CVE-2006-4108", "drupal--CVE-2006-4109", "drupal--CVE-2006-4120", "drupal--CVE-2006-4355", "drupal--CVE-2006-4356", "drupal--CVE-2006-4360", "drupal--CVE-2006-4646", "drupal--CVE-2006-4717", "drupal--CVE-2006-4821", "drupal--CVE-2006-4947", "drupal--CVE-2006-4949", "drupal--CVE-2006-5475", "drupal--CVE-2006-5476", "drupal--CVE-2006-5477", "drupal--CVE-2006-5608", "drupal--CVE-2006-6386", "drupal--CVE-2006-6528", "drupal--CVE-2006-6529", "drupal--CVE-2006-6530", "drupal--CVE-2006-6531", "drupal--CVE-2006-6646", "drupal--CVE-2006-6647", "drupal--CVE-2007-0124", "drupal--CVE-2007-0136", "drupal--CVE-2007-0505", "drupal--CVE-2007-0506", "drupal--a141e2f71d", "drupal--affa7a9ea5", "drupal--b57027329e", "drupal--bf3b4df605", "drupal--de8979ff41", "drupal--dffda84bb1", "drupal--e0da564201", "drupal--e8587ffc80" ], "source_refs": [ { "name": "Drupal Security Advisories RSS", "url": "https://www.drupal.org/security/rss.xml", "kind": "rss-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Drupal", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Drupal", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "echo--repo--github-com-labstack-echo-v4", "entity_type": "repo", "display_name": "labstack / echo / v4", "parent_entity_id": "echo", "root_system_id": "echo", "category": "frameworks", "ecosystem": "github.com", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/labstack/echo", "package_registry": "", "marketplace_url": "", "latest_version": "5.1.0", "version_scheme": "semver-ish", "latest_release_at": "2026-03-31T20:56:54Z", "latest_release_url": "https://github.com/labstack/echo/releases/tag/v5.1.0", "version_source_refs": [ "https://github.com/labstack/echo/releases/tag/v5.0.4", "https://github.com/labstack/echo/pull/1718", "https://github.com/labstack/echo/issues/2259", "https://github.com/labstack/echo/releases/tag/v5.1.0" ], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitHub Releases API", "https://github.com/labstack/echo/pull/1718", "https://github.com/labstack/echo/issues/2259", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2024-05-20T16:03:47+00:00", "last_synced_at": "2024-05-20T16:03:47+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2021-04-14T20:04:52+00:00", "latest_advisory_at": "2024-05-20T16:03:47+00:00", "advisory_ids": [ "echo--CVE-2020-36565", "echo--CVE-2022-40083" ], "source_refs": [] }, { "entity_id": "echo", "entity_type": "system", "display_name": "Echo", "parent_entity_id": null, "root_system_id": "echo", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "5.1.0", "version_scheme": "vendor", "latest_release_at": "2026-03-31T20:56:54Z", "latest_release_url": "https://github.com/labstack/echo/releases/tag/v5.1.0", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2024-05-20T16:03:47+00:00", "last_synced_at": "2024-05-20T16:03:47+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2021-04-14T20:04:52+00:00", "latest_advisory_at": "2024-05-20T16:03:47+00:00", "advisory_ids": [ "echo--CVE-2020-36565", "echo--CVE-2022-40083" ], "source_refs": [ { "name": "OSV Echo", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "esbuild--project--esbuild", "entity_type": "project", "display_name": "esbuild", "parent_entity_id": "esbuild", "root_system_id": "esbuild", "category": "frameworks", "ecosystem": "esbuild", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/esbuild", "marketplace_url": "", "latest_version": "0.27.5", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/esbuild", "version_source_refs": [ "https://www.npmjs.com/package/esbuild", "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T02:50:58+00:00", "last_synced_at": "2026-02-04T02:50:58+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2025-02-10T17:48:07+00:00", "latest_advisory_at": "2026-02-04T02:50:58+00:00", "advisory_ids": [ "esbuild--GHSA-67mh-4wv8-2f99" ], "source_refs": [] }, { "entity_id": "esbuild", "entity_type": "system", "display_name": "esbuild", "parent_entity_id": null, "root_system_id": "esbuild", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "0.27.5", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/esbuild", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T02:50:58+00:00", "last_synced_at": "2026-02-04T02:50:58+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2025-02-10T17:48:07+00:00", "latest_advisory_at": "2026-02-04T02:50:58+00:00", "advisory_ids": [ "esbuild--GHSA-67mh-4wv8-2f99" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV esbuild", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD esbuild", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "express", "entity_type": "system", "display_name": "Express", "parent_entity_id": null, "root_system_id": "express", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-17T19:40:55+00:00", "last_synced_at": "2026-03-17T19:40:55+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 0, "first_advisory_at": "2025-12-12T08:15:48+00:00", "latest_advisory_at": "2026-03-17T19:40:55+00:00", "advisory_ids": [ "express--CVE-2025-67731" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Express", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Express.js", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "fastify--project--fastify", "entity_type": "project", "display_name": "fastify", "parent_entity_id": "fastify", "root_system_id": "fastify", "category": "frameworks", "ecosystem": "fastify", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/fastify", "marketplace_url": "", "latest_version": "5.8.4", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/fastify", "version_source_refs": [ "https://www.npmjs.com/package/fastify", "https://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9", "https://github.com/fastify/fastify/security/advisories/GHSA-444r-cwp2-x5xf" ], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9", "https://github.com/fastify/fastify/security/advisories/GHSA-444r-cwp2-x5xf" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-16T03:05:26+00:00", "last_synced_at": "2026-03-16T03:05:26+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2026-03-05T21:29:54+00:00", "latest_advisory_at": "2026-03-25T19:48:38+00:00", "advisory_ids": [ "fastify--CVE-2026-3419", "fastify--CVE-2026-3635" ], "source_refs": [] }, { "entity_id": "fastify", "entity_type": "system", "display_name": "Fastify", "parent_entity_id": null, "root_system_id": "fastify", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "5.8.4", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/fastify", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-16T03:05:26+00:00", "last_synced_at": "2026-03-16T03:05:26+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2026-03-05T21:29:54+00:00", "latest_advisory_at": "2026-03-25T19:48:38+00:00", "advisory_ids": [ "fastify--CVE-2026-3419", "fastify--CVE-2026-3635" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Fastify", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "flask--project--flask", "entity_type": "project", "display_name": "flask", "parent_entity_id": "flask", "root_system_id": "flask", "category": "frameworks", "ecosystem": "flask", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/flask", "marketplace_url": "", "latest_version": "0.2.10", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/flask", "version_source_refs": [ "https://www.npmjs.com/package/flask", "https://github.com/pallets/flask/security/advisories/GHSA-68rp-wp8r-4726" ], "version_sync_status": "green", "security_version_count": 22, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/pallets/flask/security/advisories/GHSA-68rp-wp8r-4726" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-23T23:43:45+00:00", "last_synced_at": "2026-02-23T23:43:45+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-02-19T20:45:41+00:00", "latest_advisory_at": "2026-02-23T23:43:45+00:00", "advisory_ids": [ "flask--CVE-2026-27205" ], "source_refs": [] }, { "entity_id": "flask", "entity_type": "system", "display_name": "Flask", "parent_entity_id": null, "root_system_id": "flask", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "0.2.10", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/flask", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 22, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-23T23:43:45+00:00", "last_synced_at": "2026-02-23T23:43:45+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-02-19T20:45:41+00:00", "latest_advisory_at": "2026-02-23T23:43:45+00:00", "advisory_ids": [ "flask--CVE-2026-27205" ], "source_refs": [ { "name": "OSV Flask", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "ghost--repo--tryghost-ghost", "entity_type": "repo", "display_name": "TryGhost / Ghost", "parent_entity_id": "ghost", "root_system_id": "ghost", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/TryGhost/Ghost", "package_registry": "", "marketplace_url": "", "latest_version": "6.25.1", "version_scheme": "semver-ish", "latest_release_at": "2026-04-01T15:46:09Z", "latest_release_url": "https://github.com/TryGhost/Ghost/releases/tag/v6.25.1", "version_source_refs": [ "https://github.com/TryGhost/Ghost/releases/tag/v6.22.1", "https://github.com/login?return_to=%2FTryGhost%2FGhost", "https://github.com/TryGhost/Ghost/releases/tag/v6.23.0", "https://github.com/TryGhost/Ghost/releases/tag/v6.24.0", "https://github.com/TryGhost/Ghost/releases/tag/v6.25.1" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitHub Releases API", "Ghost GitHub Advisories" ], "catalog_source": "Ghost GitHub Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "Ghost GitHub Advisories", "url": "https://github.com/TryGhost/Ghost/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "ghost", "entity_type": "system", "display_name": "Ghost", "parent_entity_id": null, "root_system_id": "ghost", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "6.25.1", "version_scheme": "vendor", "latest_release_at": "2026-04-01T15:46:09Z", "latest_release_url": "https://github.com/TryGhost/Ghost/releases/tag/v6.25.1", "version_source_refs": [ "https://github.com/login?return_to=%2FTryGhost%2FGhost" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Ghost GitHub Advisories" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 23, "workflow_complete_advisory_count": 23, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "ghost--050f486105", "ghost--090e8094eb", "ghost--15b63fe17a", "ghost--166d40d22d", "ghost--214e65d27a", "ghost--2bb19dc8b5", "ghost--2d257c1a3f", "ghost--348baca052", "ghost--4790f1f5b1", "ghost--5b6cbdd8d3", "ghost--5ffdf9f6ca", "ghost--67a651def4", "ghost--6909d346cf", "ghost--6bd46da019", "ghost--7170c8a4d5", "ghost--827aa34bee", "ghost--be7bb8cffa", "ghost--d477cae14c", "ghost--d4f7933eda", "ghost--d7636173ec", "ghost--ea643e53ee", "ghost--ede727cb7f", "ghost--f9a0df2a1e" ], "source_refs": [ { "name": "Ghost GitHub Advisories", "url": "https://github.com/TryGhost/Ghost/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Ghost", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Ghost", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "gin--repo--github-com-gin-gonic-gin", "entity_type": "repo", "display_name": "gin-gonic / gin", "parent_entity_id": "gin", "root_system_id": "gin", "category": "frameworks", "ecosystem": "github.com", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/gin-gonic/gin", "package_registry": "", "marketplace_url": "", "latest_version": "1.12.0", "version_scheme": "semver-ish", "latest_release_at": "2026-02-28T10:12:25Z", "latest_release_url": "https://github.com/gin-gonic/gin/releases/tag/v1.12.0", "version_source_refs": [ "https://github.com/gin-gonic/gin/releases/tag/v1.12.0", "https://nvd.nist.gov/vuln/detail/CVE-2020-28483" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitHub Releases API", "https://nvd.nist.gov/vuln/detail/CVE-2020-28483", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-14T10:41:18+00:00", "last_synced_at": "2026-03-14T10:41:18+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2021-06-23T17:53:21+00:00", "latest_advisory_at": "2026-03-14T10:41:18+00:00", "advisory_ids": [ "gin--CVE-2020-28483" ], "source_refs": [] }, { "entity_id": "gin", "entity_type": "system", "display_name": "Gin", "parent_entity_id": null, "root_system_id": "gin", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "1.12.0", "version_scheme": "vendor", "latest_release_at": "2026-02-28T10:12:25Z", "latest_release_url": "https://github.com/gin-gonic/gin/releases/tag/v1.12.0", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-14T10:41:18+00:00", "last_synced_at": "2026-03-14T10:41:18+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2021-06-23T17:53:21+00:00", "latest_advisory_at": "2026-03-14T10:41:18+00:00", "advisory_ids": [ "gin--CVE-2020-28483" ], "source_refs": [ { "name": "OSV Gin", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "gitea", "entity_type": "system", "display_name": "Gitea", "parent_entity_id": null, "root_system_id": "gitea", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 13, "workflow_complete_advisory_count": 13, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "gitea--1c8e9c362e", "gitea--208153c00f", "gitea--3c92da972b", "gitea--4f40ff00d2", "gitea--60d8bd1b2f", "gitea--60ffa874a0", "gitea--68986f8ea3", "gitea--75ca48cec8", "gitea--92f58ba270", "gitea--ac40e44172", "gitea--bd619d11bf", "gitea--cb211a66e3", "gitea--f6062fad75" ], "source_refs": [ { "name": "GitHub Gitea Advisories", "url": "https://github.com/go-gitea/gitea/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Gitea", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "gitlab-ce", "entity_type": "system", "display_name": "GitLab CE", "parent_entity_id": null, "root_system_id": "gitlab-ce", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2026-4363---incorrect-authorization-issue-in-authorization-caching-impacts-gitlab-ee", "version_scheme": "vendor", "latest_release_at": "2026-03-25T00:00:00+00:00", "latest_release_url": "https://about.gitlab.com/security-releases.xml", "version_source_refs": [ "https://about.gitlab.com/security-releases.xml" ], "version_sync_status": "green", "security_version_count": 627, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitLab Security Releases Atom" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-25T00:00:00+00:00", "last_synced_at": "2026-03-25T00:00:00+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 56, "workflow_complete_advisory_count": 56, "version_mapped_advisory_count": 0, "first_advisory_at": "2026-03-25T00:00:00+00:00", "latest_advisory_at": "2026-03-25T00:00:00+00:00", "advisory_ids": [ "gitlab-ce--0304f4760b", "gitlab-ce--09c34791d2", "gitlab-ce--0af1e61b92", "gitlab-ce--0c6eba5267", "gitlab-ce--1596d3a555", "gitlab-ce--263f6d0d37", "gitlab-ce--26a255a05f", "gitlab-ce--2813fa5a96", "gitlab-ce--2affcfa2c1", "gitlab-ce--2c0d894121", "gitlab-ce--2f585ea84e", "gitlab-ce--3286c13a3b", "gitlab-ce--3a81287450", "gitlab-ce--3e8351831b", "gitlab-ce--46bda62e73", "gitlab-ce--49077868ec", "gitlab-ce--4944e96c58", "gitlab-ce--4bf93f5f82", "gitlab-ce--5295a425fa", "gitlab-ce--5dc1056579", "gitlab-ce--60c0e12ae9", "gitlab-ce--651cad237f", "gitlab-ce--675f843b73", "gitlab-ce--6b4c8f1491", "gitlab-ce--7399a6db08", "gitlab-ce--7935ca3692", "gitlab-ce--7be697e21e", "gitlab-ce--8290264c31", "gitlab-ce--8434efb057", "gitlab-ce--938df6b05f", "gitlab-ce--9a09c62131", "gitlab-ce--9c714fe216", "gitlab-ce--9cc0f1cf89", "gitlab-ce--9e485b609c", "gitlab-ce--9f02fc37d2", "gitlab-ce--a2b1c1f8bc", "gitlab-ce--acd249a8fd", "gitlab-ce--af56dacb39", "gitlab-ce--b38206af65", "gitlab-ce--b3a99c43e9", "gitlab-ce--b5e1e8f332", "gitlab-ce--be97071d14", "gitlab-ce--bf146427d8", "gitlab-ce--c4b5b43585", "gitlab-ce--c6afa3fc85", "gitlab-ce--c91032430a", "gitlab-ce--c9ed3b92bd", "gitlab-ce--cd7b46219e", "gitlab-ce--d3bfede960", "gitlab-ce--ea5bd69217", "gitlab-ce--ea62e1c23e", "gitlab-ce--f77fded226", "gitlab-ce--fb4ec4238e", "gitlab-ce--fb926ce823", "gitlab-ce--fe1c39648d", "gitlab-ce--feaa64d0ea" ], "source_refs": [ { "name": "GitLab Security Releases", "url": "https://about.gitlab.com/releases/categories/releases/", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GitLab Security Releases Atom", "url": "https://about.gitlab.com/security-releases.xml", "kind": "atom-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD GitLab", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GitLab Advisory Database", "url": "https://gitlab.com/gitlab-org/advisories-community", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "grafana", "entity_type": "system", "display_name": "Grafana", "parent_entity_id": null, "root_system_id": "grafana", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 60, "workflow_complete_advisory_count": 60, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "grafana--00af5c25c8", "grafana--05333b1b24", "grafana--07068e25de", "grafana--07a1903a4a", "grafana--0a82462ef5", "grafana--0adf50e220", "grafana--0ba1a53238", "grafana--0dc00bc1c4", "grafana--1c5a7a374c", "grafana--1e316bc62d", "grafana--1f9b921de5", "grafana--2fc7be1880", "grafana--31f9e20b0a", "grafana--35cbc61add", "grafana--38775f57b8", "grafana--3877b6ebbd", "grafana--38fd016989", "grafana--3e7e038fb3", "grafana--3f85728ff6", "grafana--42bb12d78a", "grafana--43778eba4b", "grafana--44a81d8784", "grafana--47bb8ea4ec", "grafana--4b41b14571", "grafana--5662799fe6", "grafana--5e5eaf68bd", "grafana--5eadda9a27", "grafana--685b619e53", "grafana--6f629de8b4", "grafana--7733292087", "grafana--787e1601f8", "grafana--825c89829c", "grafana--8341ec0b41", "grafana--8733a3a65c", "grafana--87a03f63e7", "grafana--87f7fa025f", "grafana--89b3873541", "grafana--8de0670959", "grafana--9429cff3a9", "grafana--a2b3a6c9cf", "grafana--a7dee3b9f8", "grafana--a98badf36a", "grafana--ab94143974", "grafana--b0606ae76d", "grafana--b3b307644b", "grafana--bbad25094b", "grafana--be01c475a8", "grafana--be3c074b13", "grafana--c10d34e67d", "grafana--c57800f5cf", "grafana--e0d45449da", "grafana--e1c626f550", "grafana--e5a8e937e7", "grafana--e86602e5d7", "grafana--ec1f5b0bed", "grafana--ecf8d1ec85", "grafana--ee7000e772", "grafana--efacf0b5bd", "grafana--f6331c13ee", "grafana--fb7c780853" ], "source_refs": [ { "name": "Grafana Security Advisories", "url": "https://grafana.com/security/security-advisories/", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "CISA KEV Grafana", "url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json", "kind": "kev-json", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "hapi--package--hapi-hapi", "entity_type": "package", "display_name": "hapi / hapi", "parent_entity_id": "hapi", "root_system_id": "hapi", "category": "frameworks", "ecosystem": "@hapi", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/@hapi/hapi", "marketplace_url": "", "latest_version": "21.4.8", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/@hapi/hapi", "version_source_refs": [ "https://www.npmjs.com/package/@hapi/hapi", "https://www.npmjs.com/advisories/1482" ], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://www.npmjs.com/advisories/1482" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2020-09-03T15:48:43+00:00", "last_synced_at": "2020-09-03T15:48:43+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2020-08-31T19:00:56+00:00", "latest_advisory_at": "2020-09-03T15:48:43+00:00", "advisory_ids": [ "hapi--GHSA-23vw-mhv5-grv5" ], "source_refs": [] }, { "entity_id": "hapi", "entity_type": "system", "display_name": "Hapi", "parent_entity_id": null, "root_system_id": "hapi", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "21.4.8", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/@hapi/hapi", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2020-09-03T15:48:43+00:00", "last_synced_at": "2020-09-03T15:48:43+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2020-08-31T19:00:56+00:00", "latest_advisory_at": "2020-09-03T15:48:43+00:00", "advisory_ids": [ "hapi--GHSA-23vw-mhv5-grv5" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Hapi", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "haproxy", "entity_type": "system", "display_name": "HAProxy", "parent_entity_id": null, "root_system_id": "haproxy", "category": "servers", "ecosystem": "servers", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2.0", "version_scheme": "vendor", "latest_release_at": "Mon, 16 Mar 2026 08:00:00 +0000", "latest_release_url": "https://www.haproxy.com/blog/announcing-haproxy-fusion-2-0", "version_source_refs": [ "https://www.haproxy.com/blog/announcing-haproxy-fusion-2-0", "https://www.haproxy.com/blog/announcing-haproxy-unified-gateway-1-0" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "HAProxy Blog Feed" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-16T08:00:00+00:00", "last_synced_at": "2026-03-16T08:00:00+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 7, "workflow_complete_advisory_count": 7, "version_mapped_advisory_count": 0, "first_advisory_at": "2026-02-19T09:00:00+00:00", "latest_advisory_at": "2026-03-24T00:00:00+00:00", "advisory_ids": [ "haproxy--0b253e2576", "haproxy--10754c864c", "haproxy--3164dd5e31", "haproxy--9149e77a37", "haproxy--c60ee42162", "haproxy--ecfe8a1346", "haproxy--f1c3251635" ], "source_refs": [ { "name": "HAProxy Security Advisories", "url": "https://www.haproxy.org/security/", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "HAProxy Blog Feed", "url": "https://www.haproxy.com/feed/", "kind": "rss-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD HAProxy", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "jenkins", "entity_type": "system", "display_name": "Jenkins", "parent_entity_id": null, "root_system_id": "jenkins", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 60, "workflow_complete_advisory_count": 60, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "jenkins--03dd61ed6c", "jenkins--06fb3ff46d", "jenkins--08ceec4df7", "jenkins--09052b3eae", "jenkins--0a32a3c571", "jenkins--113fd8c968", "jenkins--133a539448", "jenkins--1bc045cd97", "jenkins--1c7585b982", "jenkins--1ffcdeba8a", "jenkins--21f9320895", "jenkins--2cddf1d9b3", "jenkins--3005588667", "jenkins--34d0560049", "jenkins--38db1fb5cd", "jenkins--411af8e507", "jenkins--42e52daf9c", "jenkins--470e058a98", "jenkins--48b8a77bf5", "jenkins--4c843e4744", "jenkins--4e0b132d14", "jenkins--4fa1149604", "jenkins--53044482c6", "jenkins--5b1b79c24c", "jenkins--5f65aa9b6a", "jenkins--5f74193a87", "jenkins--637532efa3", "jenkins--6a782085fb", "jenkins--7060df2f52", "jenkins--727934295c", "jenkins--7a7b0f9b6a", "jenkins--7cc232821e", "jenkins--7d8d1bc956", "jenkins--81b102650c", "jenkins--81b41ce555", "jenkins--82b8e9027a", "jenkins--84ba926453", "jenkins--85dff1bae2", "jenkins--8da7175fc9", "jenkins--90a372bd22", "jenkins--9753fb4e37", "jenkins--a2dea9e6b5", "jenkins--adc4c2202c", "jenkins--b087de8424", "jenkins--b26ccec7cb", "jenkins--b82c5cb629", "jenkins--bf4f7de3b2", "jenkins--bfb52e90f7", "jenkins--c044eaedaf", "jenkins--ca6b8b3a11", "jenkins--ca6f165400", "jenkins--d026244993", "jenkins--d2c5f61bf5", "jenkins--d77aaec914", "jenkins--dd853984ba", "jenkins--e6dae6e89f", "jenkins--e8b9105178", "jenkins--ebfee752bb", "jenkins--eefc478f8f", "jenkins--f8f32744e4" ], "source_refs": [ { "name": "Jenkins Security Advisories", "url": "https://www.jenkins.io/security/advisories/", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "Jenkins Security Advisories RSS", "url": "https://www.jenkins.io/security/advisories/rss.xml", "kind": "rss-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Jenkins", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "joomla", "entity_type": "system", "display_name": "Joomla", "parent_entity_id": null, "root_system_id": "joomla", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "1027-20260301-core-acl-hardening-in-com-ajax.html", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://developer.joomla.org/security-centre/1027-20260301-core-acl-hardening-in-com-ajax.html", "version_source_refs": [ "https://developer.joomla.org/security-centre/1017-20260102-core-xss-vector-in-the-pagebreak-plugin.html", "https://developer.joomla.org/security-centre/963-20250401-framework-sql-injection-vulnerability-in-quotenamestr-method-of-database-package.html", "https://developer.joomla.org/security-centre/1010-20250901-core-inadequate-content-filtering-within-the-checkattribute-filter-code.html", "https://developer.joomla.org/security-centre/1011-20250902-core-user-enumeration-in-passkey-authentication-method.html", "https://developer.joomla.org/security-centre/1016-20260101-core-inadequate-content-filtering-for-data-urls.html", "https://developer.joomla.org/security-centre/1027-20260301-core-acl-hardening-in-com-ajax.html" ], "version_sync_status": "green", "security_version_count": 1, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Joomla Security Centre" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-03T01:03:51+00:00", "last_synced_at": "2025-04-03T01:03:51+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 100, "workflow_complete_advisory_count": 100, "version_mapped_advisory_count": 0, "first_advisory_at": "2005-11-23T00:03:00+00:00", "latest_advisory_at": "2025-04-03T01:03:51+00:00", "advisory_ids": [ "joomla--04eb646043", "joomla--23d7a390f9", "joomla--24ba7c55d7", "joomla--2d45de3cec", "joomla--335ce67f07", "joomla--3c51a803ee", "joomla--45b7bd62a3", "joomla--475479eb0e", "joomla--4a08dc024f", "joomla--4dbeb2067a", "joomla--4f00956a06", "joomla--5222192148", "joomla--525f769852", "joomla--5b52fd6b65", "joomla--5ecd0fbd53", "joomla--5f81299b1e", "joomla--60ee98bd5c", "joomla--714431d210", "joomla--724c381bfc", "joomla--770ffa7fab", "joomla--7f0797a2fb", "joomla--806c79cd04", "joomla--8493fba7d4", "joomla--86d4ee7f29", "joomla--8c73f0e5c7", "joomla--997a583937", "joomla--CVE-2005-3771", "joomla--CVE-2005-3772", "joomla--CVE-2005-3773", "joomla--CVE-2005-4650", "joomla--CVE-2006-0114", "joomla--CVE-2006-0303", "joomla--CVE-2006-1027", "joomla--CVE-2006-1028", "joomla--CVE-2006-1029", "joomla--CVE-2006-1030", "joomla--CVE-2006-1047", "joomla--CVE-2006-1048", "joomla--CVE-2006-1049", "joomla--CVE-2006-1956", "joomla--CVE-2006-1957", "joomla--CVE-2006-2815", "joomla--CVE-2006-2960", "joomla--CVE-2006-3480", "joomla--CVE-2006-3481", "joomla--CVE-2006-3530", "joomla--CVE-2006-3750", "joomla--CVE-2006-3773", "joomla--CVE-2006-3774", "joomla--CVE-2006-3969", "joomla--CVE-2006-3970", "joomla--CVE-2006-3990", "joomla--CVE-2006-3995", "joomla--CVE-2006-4074", "joomla--CVE-2006-4129", "joomla--CVE-2006-4130", "joomla--CVE-2006-4229", "joomla--CVE-2006-4242", "joomla--CVE-2006-4263", "joomla--CVE-2006-4269", "joomla--CVE-2006-4282", "joomla--CVE-2006-4320", "joomla--CVE-2006-4348", "joomla--CVE-2006-4378", "joomla--CVE-2006-4466", "joomla--CVE-2006-4468", "joomla--CVE-2006-4469", "joomla--CVE-2006-4470", "joomla--CVE-2006-4471", "joomla--CVE-2006-4472", "joomla--CVE-2006-4473", "joomla--CVE-2006-4474", "joomla--CVE-2006-4475", "joomla--CVE-2006-4476", "joomla--CVE-2006-4553", "joomla--CVE-2006-4556", "joomla--a7a023bff5", "joomla--ab83ad83ad", "joomla--aca979b01a", "joomla--b4fb591845", "joomla--b9999d3e1c", "joomla--b9f5b26f40", "joomla--bd778c8ddf", "joomla--bea8d1b18a", "joomla--c4621ba95d", "joomla--c5469b6a4f", "joomla--cc9ce9f25c", "joomla--ceecce7e07", "joomla--d83e385f9b", "joomla--da2be3cb70", "joomla--dad8415251", "joomla--e4b38bd298", "joomla--e6adae1ee9", "joomla--e85c02f461", "joomla--e930a1e9a6", "joomla--eeba0fbc99", "joomla--f105b1e370", "joomla--f73cd5b959", "joomla--fb3f9be78d", "joomla--fe529bef2c" ], "source_refs": [ { "name": "Joomla Security Centre", "url": "https://developer.joomla.org/security-centre.html", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Joomla", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Joomla", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "kibana", "entity_type": "system", "display_name": "Kibana", "parent_entity_id": null, "root_system_id": "kibana", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-19T16:59:58+00:00", "last_synced_at": "2026-03-19T16:59:58+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 47, "workflow_complete_advisory_count": 47, "version_mapped_advisory_count": 0, "first_advisory_at": "2026-03-19T16:51:08+00:00", "latest_advisory_at": "2026-03-19T16:59:58+00:00", "advisory_ids": [ "kibana--012933e759", "kibana--02f2023a8a", "kibana--082700f544", "kibana--0e828e6029", "kibana--0fcd01159e", "kibana--157f40093e", "kibana--158d81dda2", "kibana--17ec732cae", "kibana--276c9fdc58", "kibana--2c7ad92c1a", "kibana--2d44c7ddc9", "kibana--3309f8d4f8", "kibana--332161e412", "kibana--398fb07209", "kibana--3f4199182c", "kibana--484aff4130", "kibana--4bfdbe9da9", "kibana--4d0ef3a07b", "kibana--4ff6f55b20", "kibana--52faac291e", "kibana--5d7157b40e", "kibana--5e1dcece83", "kibana--6427363bd4", "kibana--6de16e8ced", "kibana--70e8ff1612", "kibana--7952feb737", "kibana--7cb177b65a", "kibana--7d6bc3fcfb", "kibana--7e7bcc67f0", "kibana--844efe5dac", "kibana--89cdc4b053", "kibana--939fa43e76", "kibana--94812c4238", "kibana--9c240031a6", "kibana--9fc909f906", "kibana--c9e439e476", "kibana--c9f808dd38", "kibana--ca14c406d9", "kibana--cad1e6e82a", "kibana--cb1cf167b3", "kibana--e768c02e69", "kibana--e7cc09ecb5", "kibana--e932368e80", "kibana--ec9f892aba", "kibana--edc2461512", "kibana--f21d1fb9d1", "kibana--f4817a0201" ], "source_refs": [ { "name": "Elastic Product Security", "url": "https://www.elastic.co/product-security", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "Elastic Security Announcements RSS", "url": "https://discuss.elastic.co/c/announcements/security-announcements/31.rss", "kind": "rss-feed", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "NVD Kibana", "url": null, "kind": "nvd-search", "status": "active", "bucket": "official_sources", "official": true }, { "name": "Elastic Security Announcements", "url": "https://discuss.elastic.co/c/announcements/security-announcements/31", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "koa--project--koa", "entity_type": "project", "display_name": "koa", "parent_entity_id": "koa", "root_system_id": "koa", "category": "frameworks", "ecosystem": "koa", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/koa", "marketplace_url": "", "latest_version": "3.2.0", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/koa", "version_source_refs": [ "https://www.npmjs.com/package/koa", "https://github.com/koajs/koa/security/advisories/GHSA-7gcc-r8m5-44qm" ], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/koajs/koa/security/advisories/GHSA-7gcc-r8m5-44qm" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-26T23:36:36+00:00", "last_synced_at": "2026-02-26T23:36:36+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-02-26T22:42:57+00:00", "latest_advisory_at": "2026-02-26T23:36:36+00:00", "advisory_ids": [ "koa--CVE-2026-27959" ], "source_refs": [] }, { "entity_id": "koa", "entity_type": "system", "display_name": "Koa", "parent_entity_id": null, "root_system_id": "koa", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "3.2.0", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/koa", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-26T23:36:36+00:00", "last_synced_at": "2026-02-26T23:36:36+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-02-26T22:42:57+00:00", "latest_advisory_at": "2026-02-26T23:36:36+00:00", "advisory_ids": [ "koa--CVE-2026-27959" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Koa", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "laravel--package--laravel-framework", "entity_type": "package", "display_name": "laravel / framework", "parent_entity_id": "laravel", "root_system_id": "laravel", "category": "frameworks", "ecosystem": "laravel", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/laravel/framework", "package_registry": "https://packagist.org/packages/laravel/framework", "marketplace_url": "", "latest_version": "13.3.0", "version_scheme": "semver-ish", "latest_release_at": "2026-04-01T15:39:53+00:00", "latest_release_url": "https://packagist.org/packages/laravel/framework", "version_source_refs": [ "https://packagist.org/packages/laravel/framework", "https://github.com/laravel/framework/security/advisories/GHSA-66hf-2p6w-jqfw" ], "version_sync_status": "green", "security_version_count": 103, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Packagist p2", "https://github.com/laravel/framework/security/advisories/GHSA-66hf-2p6w-jqfw" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T22:15:34+00:00", "last_synced_at": "2026-03-13T22:15:34+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2021-01-19T19:36:51+00:00", "latest_advisory_at": "2026-03-13T22:15:34+00:00", "advisory_ids": [ "laravel--CVE-2021-21263", "laravel--CVE-2021-43808" ], "source_refs": [] }, { "entity_id": "laravel", "entity_type": "system", "display_name": "Laravel", "parent_entity_id": null, "root_system_id": "laravel", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "13.3.0", "version_scheme": "vendor", "latest_release_at": "2026-04-01T15:39:53+00:00", "latest_release_url": "https://packagist.org/packages/laravel/framework", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 103, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T22:15:34+00:00", "last_synced_at": "2026-03-13T22:15:34+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2021-01-19T19:36:51+00:00", "latest_advisory_at": "2026-03-13T22:15:34+00:00", "advisory_ids": [ "laravel--CVE-2021-21263", "laravel--CVE-2021-43808" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Laravel", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "magento-open-source--repo--magento-magento2", "entity_type": "repo", "display_name": "magento / magento2", "parent_entity_id": "magento-open-source", "root_system_id": "magento-open-source", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/magento/magento2", "package_registry": "", "marketplace_url": "", "latest_version": "2.4.9-beta1", "version_scheme": "semver-ish", "latest_release_at": "2026-03-10T14:04:22Z", "latest_release_url": "https://github.com/magento/magento2/releases/tag/2.4.9-beta1", "version_source_refs": [ "https://github.com/magento/magento2/releases/tag/2.4.9-beta1", "https://sansec.io/research/vendors-defeat-magento-security-patch-simple-check", "https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerability", "https://sansec.io/research/magento-apsb25-08", "https://sansec.io/research/visbot-malware-on-6691-stores-analysis" ], "version_sync_status": "green", "security_version_count": 3, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "GitHub Releases API", "Sansec Research" ], "catalog_source": "Magento GitHub Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "Magento GitHub Advisories", "url": "https://github.com/magento/magento2/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "magento-open-source", "entity_type": "system", "display_name": "Magento Open Source", "parent_entity_id": null, "root_system_id": "magento-open-source", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2.4.9-beta1", "version_scheme": "vendor", "latest_release_at": "2026-03-10T14:04:22Z", "latest_release_url": "https://github.com/magento/magento2/releases/tag/2.4.9-beta1", "version_source_refs": [ "https://sansec.io/research/visbot-malware-on-6691-stores-analysis", "https://sansec.io/research/vendors-defeat-magento-security-patch-simple-check", "https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerability", "https://sansec.io/research/magento-apsb25-08" ], "version_sync_status": "green", "security_version_count": 3, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Sansec Research" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-20T01:37:25+00:00", "last_synced_at": "2025-04-20T01:37:25+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 89, "workflow_complete_advisory_count": 89, "version_mapped_advisory_count": 0, "first_advisory_at": "2009-02-25T16:30:00+00:00", "latest_advisory_at": "2025-04-20T01:37:25+00:00", "advisory_ids": [ "magento-open-source--04900a2ec3", "magento-open-source--12a55f0b15", "magento-open-source--1311d8bbf5", "magento-open-source--2466016ebd", "magento-open-source--272078bc6b", "magento-open-source--27b9c8ed81", "magento-open-source--29939ee22e", "magento-open-source--2d2aac0d18", "magento-open-source--3d51189790", "magento-open-source--3fb6056982", "magento-open-source--439d8e183b", "magento-open-source--4566edaa3e", "magento-open-source--48afb07030", "magento-open-source--4bd674a1cf", "magento-open-source--4f949e4e63", "magento-open-source--526ef73ddc", "magento-open-source--543aaa92bf", "magento-open-source--57350e411c", "magento-open-source--5939c3e146", "magento-open-source--652e12fa78", "magento-open-source--69b54a8ff1", "magento-open-source--6c8fcba66c", "magento-open-source--74ed1a826e", "magento-open-source--80b4f7c3fb", "magento-open-source--85342933d9", "magento-open-source--8ea98ef70b", "magento-open-source--94e564a2f8", "magento-open-source--97d69c894f", "magento-open-source--9b4e19c3a1", "magento-open-source--CVE-2009-0541", "magento-open-source--CVE-2011-5240", "magento-open-source--CVE-2012-3243", "magento-open-source--CVE-2014-8770", "magento-open-source--CVE-2014-9758", "magento-open-source--CVE-2015-1397", "magento-open-source--CVE-2015-1398", "magento-open-source--CVE-2015-1399", "magento-open-source--CVE-2015-2067", "magento-open-source--CVE-2015-2068", "magento-open-source--CVE-2015-3457", "magento-open-source--CVE-2015-3458", "magento-open-source--CVE-2015-8707", "magento-open-source--CVE-2016-10704", "magento-open-source--CVE-2016-2212", "magento-open-source--CVE-2016-4010", "magento-open-source--CVE-2016-6485", "magento-open-source--CVE-2017-13761", "magento-open-source--CVE-2018-5301", "magento-open-source--CVE-2019-7139", "magento-open-source--CVE-2019-7849", "magento-open-source--CVE-2019-7851", "magento-open-source--CVE-2019-7852", "magento-open-source--CVE-2019-7853", "magento-open-source--CVE-2019-7854", "magento-open-source--CVE-2019-7855", "magento-open-source--CVE-2019-7857", "magento-open-source--CVE-2019-7858", "magento-open-source--CVE-2019-7859", "magento-open-source--CVE-2019-7860", "magento-open-source--CVE-2019-7861", "magento-open-source--CVE-2019-7862", "magento-open-source--CVE-2019-7863", "magento-open-source--CVE-2019-7864", "magento-open-source--CVE-2019-7865", "magento-open-source--CVE-2019-7866", "magento-open-source--CVE-2019-7867", "magento-open-source--CVE-2019-7868", "magento-open-source--CVE-2019-7869", "magento-open-source--CVE-2019-7871", "magento-open-source--CVE-2019-7872", "magento-open-source--CVE-2019-7873", "magento-open-source--CVE-2019-7874", "magento-open-source--CVE-2019-7875", "magento-open-source--CVE-2019-7876", "magento-open-source--CVE-2019-7877", "magento-open-source--CVE-2019-7880", "magento-open-source--CVE-2019-7881", "magento-open-source--CVE-2019-7882", "magento-open-source--CVE-2019-7885", "magento-open-source--a4535e6afb", "magento-open-source--a64786432a", "magento-open-source--a6c3143101", "magento-open-source--a6fcbeebc9", "magento-open-source--b10ea6e032", "magento-open-source--b2f601bd6e", "magento-open-source--ba53bb232c", "magento-open-source--baaf1324e7", "magento-open-source--c462082dbb", "magento-open-source--ca8d3dbb05" ], "source_refs": [ { "name": "Magento GitHub Advisories", "url": "https://github.com/magento/magento2/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "OSV Magento Open Source", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Magento", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "Sansec Research", "url": "https://sansec.io/research", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "mattermost--plugin--mattermost-plugins", "entity_type": "plugin", "display_name": "Mattermost Plugins", "parent_entity_id": "mattermost", "root_system_id": "mattermost", "category": "platforms", "ecosystem": "Mattermost Plugins", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/Mattermost Plugins", "marketplace_url": "", "latest_version": "26.2.1", "version_scheme": "semver-ish", "latest_release_at": "2023-10-03", "latest_release_url": "https://securityupdates.mattermost.com/security_updates.json", "version_source_refs": [ "https://securityupdates.mattermost.com/security_updates.json" ], "version_sync_status": "green", "security_version_count": 759, "last_version_synced_at": "2026-04-02T09:18:42+00:00", "latest_version_evidence": [ "Mattermost Security Updates JSON", "https://securityupdates.mattermost.com/security_updates.json", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-10T00:00:00+00:00", "last_synced_at": "2026-03-10T00:00:00+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 5, "workflow_complete_advisory_count": 5, "version_mapped_advisory_count": 5, "first_advisory_at": "2026-02-24T00:00:00+00:00", "latest_advisory_at": "2026-03-10T00:00:00+00:00", "advisory_ids": [ "mattermost--MMSA-2026-00584", "mattermost--MMSA-2026-00589", "mattermost--MMSA-2026-00610", "mattermost--MMSA-2026-00611", "mattermost--MMSA-2026-00621" ], "source_refs": [] }, { "entity_id": "mattermost--project--issue-platform", "entity_type": "project", "display_name": "Issue Platform", "parent_entity_id": "mattermost", "root_system_id": "mattermost", "category": "platforms", "ecosystem": "Issue Platform", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/Issue Platform", "marketplace_url": "", "latest_version": "26.2.1", "version_scheme": "semver-ish", "latest_release_at": "2023-10-03", "latest_release_url": "https://securityupdates.mattermost.com/security_updates.json", "version_source_refs": [ "https://securityupdates.mattermost.com/security_updates.json" ], "version_sync_status": "green", "security_version_count": 756, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "Mattermost Security Updates JSON", "https://securityupdates.mattermost.com/security_updates.json", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "mattermost--Issue Identifier" ], "source_refs": [] }, { "entity_id": "mattermost--project--mattermost-server", "entity_type": "project", "display_name": "Mattermost Server", "parent_entity_id": "mattermost", "root_system_id": "mattermost", "category": "platforms", "ecosystem": "Mattermost Server", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/Mattermost Server", "marketplace_url": "", "latest_version": "26.2.1", "version_scheme": "semver-ish", "latest_release_at": "2023-10-03", "latest_release_url": "https://securityupdates.mattermost.com/security_updates.json", "version_source_refs": [ "https://securityupdates.mattermost.com/security_updates.json" ], "version_sync_status": "green", "security_version_count": 764, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "Mattermost Security Updates JSON", "advisory-fixed-version", "https://securityupdates.mattermost.com/security_updates.json" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-16T00:00:00+00:00", "last_synced_at": "2026-03-16T00:00:00+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 13, "workflow_complete_advisory_count": 13, "version_mapped_advisory_count": 13, "first_advisory_at": "2026-02-23T00:00:00+00:00", "latest_advisory_at": "2026-03-16T00:00:00+00:00", "advisory_ids": [ "mattermost--MMSA-2025-00562", "mattermost--MMSA-2025-00566", "mattermost--MMSA-2026-00574", "mattermost--MMSA-2026-00578", "mattermost--MMSA-2026-00590", "mattermost--MMSA-2026-00593", "mattermost--MMSA-2026-00594", "mattermost--MMSA-2026-00595", "mattermost--MMSA-2026-00598", "mattermost--MMSA-2026-00599", "mattermost--MMSA-2026-00603", "mattermost--MMSA-2026-00624", "mattermost--MMSA-2026-00625" ], "source_refs": [] }, { "entity_id": "mattermost--repo--github-com-mattermost-mattermost-server", "entity_type": "repo", "display_name": "mattermost / mattermost-server", "parent_entity_id": "mattermost", "root_system_id": "mattermost", "category": "platforms", "ecosystem": "github.com", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/mattermost/mattermost-server", "package_registry": "", "marketplace_url": "", "latest_version": "11.4.3", "version_scheme": "semver-ish", "latest_release_at": "2026-03-16T08:26:52Z", "latest_release_url": "https://github.com/mattermost/mattermost/releases/tag/v11.4.3", "version_source_refs": [ "https://github.com/mattermost/mattermost/releases/tag/v11.4.3", "https://nvd.nist.gov/vuln/detail/CVE-2026-22545", "https://securityupdates.mattermost.com/security_updates.json", "https://nvd.nist.gov/vuln/detail/CVE-2026-21386", "https://nvd.nist.gov/vuln/detail/CVE-2026-2463", "https://nvd.nist.gov/vuln/detail/CVE-2026-24692", "https://nvd.nist.gov/vuln/detail/CVE-2026-4265", "https://nvd.nist.gov/vuln/detail/CVE-2026-2458", "https://nvd.nist.gov/vuln/detail/CVE-2026-26246", "https://nvd.nist.gov/vuln/detail/CVE-2026-2457", "https://nvd.nist.gov/vuln/detail/CVE-2026-25780", "https://nvd.nist.gov/vuln/detail/CVE-2026-2578", "https://nvd.nist.gov/vuln/detail/CVE-2026-2455", "https://nvd.nist.gov/vuln/detail/CVE-2026-24458", "https://nvd.nist.gov/vuln/detail/CVE-2026-2456", "https://nvd.nist.gov/vuln/detail/CVE-2026-25783", "https://nvd.nist.gov/vuln/detail/CVE-2025-14350", "https://nvd.nist.gov/vuln/detail/CVE-2025-13821", "https://nvd.nist.gov/vuln/detail/CVE-2026-0999", "https://nvd.nist.gov/vuln/detail/CVE-2025-14573" ], "version_sync_status": "green", "security_version_count": 843, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub Releases API", "https://nvd.nist.gov/vuln/detail/CVE-2026-22545", "Mattermost Security Updates JSON", "https://nvd.nist.gov/vuln/detail/CVE-2026-21386", "https://nvd.nist.gov/vuln/detail/CVE-2026-2463", "https://nvd.nist.gov/vuln/detail/CVE-2026-24692", "https://nvd.nist.gov/vuln/detail/CVE-2026-4265", "https://nvd.nist.gov/vuln/detail/CVE-2026-2458", "https://nvd.nist.gov/vuln/detail/CVE-2026-26246", "https://nvd.nist.gov/vuln/detail/CVE-2026-2457", "https://nvd.nist.gov/vuln/detail/CVE-2026-25780", "https://nvd.nist.gov/vuln/detail/CVE-2026-2578", "https://nvd.nist.gov/vuln/detail/CVE-2026-2455", "https://nvd.nist.gov/vuln/detail/CVE-2026-24458", "https://nvd.nist.gov/vuln/detail/CVE-2026-2456", "https://nvd.nist.gov/vuln/detail/CVE-2026-25783", "https://nvd.nist.gov/vuln/detail/CVE-2025-14350", "https://nvd.nist.gov/vuln/detail/CVE-2025-13821", "https://nvd.nist.gov/vuln/detail/CVE-2026-0999", "https://nvd.nist.gov/vuln/detail/CVE-2025-14573" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-19T19:31:20+00:00", "last_synced_at": "2026-03-19T19:31:20+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 21, "workflow_complete_advisory_count": 21, "version_mapped_advisory_count": 21, "first_advisory_at": "2026-02-16T12:30:24+00:00", "latest_advisory_at": "2026-04-01T17:35:38+00:00", "advisory_ids": [ "mattermost--CVE-2025-13821", "mattermost--CVE-2025-14350", "mattermost--CVE-2025-14573", "mattermost--CVE-2026-0999", "mattermost--CVE-2026-21386", "mattermost--CVE-2026-22545", "mattermost--CVE-2026-24458", "mattermost--CVE-2026-2455", "mattermost--CVE-2026-2456", "mattermost--CVE-2026-2457", "mattermost--CVE-2026-2458", "mattermost--CVE-2026-2463", "mattermost--CVE-2026-24692", "mattermost--CVE-2026-2578", "mattermost--CVE-2026-25780", "mattermost--CVE-2026-25783", "mattermost--CVE-2026-26233", "mattermost--CVE-2026-26246", "mattermost--CVE-2026-27656", "mattermost--CVE-2026-3113", "mattermost--CVE-2026-4265" ], "source_refs": [] }, { "entity_id": "mattermost", "entity_type": "system", "display_name": "Mattermost", "parent_entity_id": null, "root_system_id": "mattermost", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "26.2.1", "version_scheme": "vendor", "latest_release_at": "2023-10-03", "latest_release_url": "https://securityupdates.mattermost.com/security_updates.json", "version_source_refs": [ "https://securityupdates.mattermost.com/security_updates.json" ], "version_sync_status": "green", "security_version_count": 3122, "last_version_synced_at": "2026-04-02T09:18:38+00:00", "latest_version_evidence": [ "Mattermost Security Updates JSON" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-19T19:31:20+00:00", "last_synced_at": "2026-03-19T19:31:20+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 40, "workflow_complete_advisory_count": 40, "version_mapped_advisory_count": 40, "first_advisory_at": "2026-02-16T12:30:24+00:00", "latest_advisory_at": "2026-04-01T17:35:38+00:00", "advisory_ids": [ "mattermost--CVE-2025-13821", "mattermost--CVE-2025-14350", "mattermost--CVE-2025-14573", "mattermost--CVE-2026-0999", "mattermost--CVE-2026-21386", "mattermost--CVE-2026-22545", "mattermost--CVE-2026-24458", "mattermost--CVE-2026-2455", "mattermost--CVE-2026-2456", "mattermost--CVE-2026-2457", "mattermost--CVE-2026-2458", "mattermost--CVE-2026-2463", "mattermost--CVE-2026-24692", "mattermost--CVE-2026-2578", "mattermost--CVE-2026-25780", "mattermost--CVE-2026-25783", "mattermost--CVE-2026-26233", "mattermost--CVE-2026-26246", "mattermost--CVE-2026-27656", "mattermost--CVE-2026-3113", "mattermost--CVE-2026-4265", "mattermost--Issue Identifier", "mattermost--MMSA-2025-00562", "mattermost--MMSA-2025-00566", "mattermost--MMSA-2026-00574", "mattermost--MMSA-2026-00578", "mattermost--MMSA-2026-00584", "mattermost--MMSA-2026-00589", "mattermost--MMSA-2026-00590", "mattermost--MMSA-2026-00593", "mattermost--MMSA-2026-00594", "mattermost--MMSA-2026-00595", "mattermost--MMSA-2026-00598", "mattermost--MMSA-2026-00599", "mattermost--MMSA-2026-00603", "mattermost--MMSA-2026-00610", "mattermost--MMSA-2026-00611", "mattermost--MMSA-2026-00621", "mattermost--MMSA-2026-00624", "mattermost--MMSA-2026-00625" ], "source_refs": [ { "name": "Mattermost Security Updates", "url": "https://mattermost.com/security-updates/", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "NVD Mattermost", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "Mattermost Security Updates JSON", "url": "https://securityupdates.mattermost.com/security_updates.json", "kind": "json-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "OSV Mattermost", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "mediawiki", "entity_type": "system", "display_name": "MediaWiki", "parent_entity_id": null, "root_system_id": "mediawiki", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "28-10-2025", "version_scheme": "vendor", "latest_release_at": "Tue, 07 Oct 2025 15:18:36 +0000", "latest_release_url": "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/7WBTCHTWB2ZBLPFDKZS3HPBL5F2CMDU2/", "version_source_refs": [ "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/7WBTCHTWB2ZBLPFDKZS3HPBL5F2CMDU2/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/TVI3VMUX3LEK554OKQSOZOET7HCVRZFZ/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/YRWHNMUHAUQZ547FQCVP7LAZTBN5SSVD/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/3EXWLDDHRGVDQACOHP3Y4ZE5H6BHBJPJ/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/JURTP3O5CLKAIWGVGELFKP7VCDWVQBBJ/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/PFTE5RHUERS6KTUGGRZO7XXV5THNJ77E/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/CIXFJVC57OFRBCCEIDRLZCLFGMYGEYTT/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/TT45WDZ7MDTXXBEFLBMLAJI532O2PN2U/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/FFD4KWZMOVZQJF4PIIVUTCEHDJLMNZEB/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/6I6GV6OP27OB7CZS2JUQ5IC6XFXRHLNQ/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/", "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/6VW6OGVSC7LO3QUMBEZOPQFYYOFDJ452/" ], "version_sync_status": "green", "security_version_count": 280, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "MediaWiki Announce RSS" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-01-09T17:54:29+00:00", "last_synced_at": "2026-01-09T17:54:29+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 73, "workflow_complete_advisory_count": 73, "version_mapped_advisory_count": 0, "first_advisory_at": "2004-12-31T05:00:00+00:00", "latest_advisory_at": "2026-04-01T13:09:42+00:00", "advisory_ids": [ "mediawiki--05670a18f6", "mediawiki--0cd3c8cc6d", "mediawiki--0fe51dab1c", "mediawiki--13680966cb", "mediawiki--1da990d870", "mediawiki--263a51dc17", "mediawiki--2b8b31c4ea", "mediawiki--318c62346b", "mediawiki--31d957bc6b", "mediawiki--38ad6c5da5", "mediawiki--468e6bcac6", "mediawiki--469c5db88b", "mediawiki--46bf0dec8b", "mediawiki--4bb7b4f173", "mediawiki--57ad4abb33", "mediawiki--5ae1c442a8", "mediawiki--6dfc7c9310", "mediawiki--746b221830", "mediawiki--77f2193adf", "mediawiki--7a3e57910a", "mediawiki--7f293ae8df", "mediawiki--8264120aae", "mediawiki--82708fa15f", "mediawiki--9520c4eb80", "mediawiki--9531fc3afb", "mediawiki--CVE-2004-1405", "mediawiki--CVE-2004-2152", "mediawiki--CVE-2004-2185", "mediawiki--CVE-2004-2186", "mediawiki--CVE-2004-2187", "mediawiki--CVE-2005-0534", "mediawiki--CVE-2005-0535", "mediawiki--CVE-2005-0536", "mediawiki--CVE-2005-1245", "mediawiki--CVE-2005-1888", "mediawiki--CVE-2005-2215", "mediawiki--CVE-2005-2396", "mediawiki--CVE-2005-3165", "mediawiki--CVE-2005-3166", "mediawiki--CVE-2005-3167", "mediawiki--CVE-2005-4031", "mediawiki--CVE-2005-4501", "mediawiki--CVE-2006-0322", "mediawiki--CVE-2006-1498", "mediawiki--CVE-2006-2611", "mediawiki--CVE-2006-2895", "mediawiki--CVE-2007-0177", "mediawiki--CVE-2007-0788", "mediawiki--CVE-2007-0894", "mediawiki--CVE-2007-1054", "mediawiki--CVE-2007-1055", "mediawiki--CVE-2007-4828", "mediawiki--CVE-2007-4883", "mediawiki--CVE-2008-0460", "mediawiki--CVE-2008-1318", "mediawiki--CVE-2008-4408", "mediawiki--CVE-2008-5249", "mediawiki--CVE-2008-5250", "mediawiki--CVE-2008-5252", "mediawiki--CVE-2008-5687", "mediawiki--CVE-2008-5688", "mediawiki--CVE-2009-0737", "mediawiki--CVE-2009-4589", "mediawiki--CVE-2010-1189", "mediawiki--CVE-2010-1190", "mediawiki--a7589e254a", "mediawiki--aca545ecfd", "mediawiki--c36eeb5d22", "mediawiki--d779f6ce31", "mediawiki--e7b4a9ed1c", "mediawiki--e900dc8656", "mediawiki--eb8c65d48d", "mediawiki--f2f6ab880e" ], "source_refs": [ { "name": "MediaWiki Security Releases", "url": "https://www.mediawiki.org/wiki/Security", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "MediaWiki Announce RSS", "url": "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/feed/", "kind": "rss-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD MediaWiki", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV MediaWiki", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "medusa", "entity_type": "system", "display_name": "Medusa", "parent_entity_id": null, "root_system_id": "medusa", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 15, "workflow_complete_advisory_count": 15, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "medusa--16e8e57a44", "medusa--25e199859a", "medusa--3585e9e0a9", "medusa--45a3c9a64c", "medusa--4a9f3a2775", "medusa--511da765e2", "medusa--5607e5a2fb", "medusa--5ac46b1e92", "medusa--8a6a5535d5", "medusa--a0859be24d", "medusa--b3c14dab60", "medusa--b94a42f31a", "medusa--bc03637189", "medusa--e59164be8e", "medusa--fef9f011be" ], "source_refs": [ { "name": "GitHub Medusa Advisories", "url": "https://github.com/medusajs/medusa/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Medusa", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "moodle", "entity_type": "system", "display_name": "Moodle", "parent_entity_id": null, "root_system_id": "moodle", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-09T00:30:58+00:00", "last_synced_at": "2025-04-09T00:30:58+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 40, "workflow_complete_advisory_count": 40, "version_mapped_advisory_count": 0, "first_advisory_at": "2004-04-30T04:00:00+00:00", "latest_advisory_at": "2025-04-09T00:30:58+00:00", "advisory_ids": [ "moodle--CVE-2004-0725", "moodle--CVE-2004-1424", "moodle--CVE-2004-1425", "moodle--CVE-2004-1711", "moodle--CVE-2004-1978", "moodle--CVE-2004-2232", "moodle--CVE-2004-2233", "moodle--CVE-2004-2234", "moodle--CVE-2004-2235", "moodle--CVE-2004-2236", "moodle--CVE-2004-2237", "moodle--CVE-2005-2247", "moodle--CVE-2005-3648", "moodle--CVE-2005-3649", "moodle--CVE-2006-0146", "moodle--CVE-2006-0147", "moodle--CVE-2006-3951", "moodle--CVE-2006-4784", "moodle--CVE-2006-4785", "moodle--CVE-2006-4786", "moodle--CVE-2006-4935", "moodle--CVE-2006-4936", "moodle--CVE-2006-4937", "moodle--CVE-2006-4938", "moodle--CVE-2006-4939", "moodle--CVE-2006-4940", "moodle--CVE-2006-4941", "moodle--CVE-2006-4942", "moodle--CVE-2006-4943", "moodle--CVE-2006-5219", "moodle--CVE-2006-6625", "moodle--CVE-2006-6626", "moodle--CVE-2006-7048", "moodle--CVE-2007-1429", "moodle--CVE-2007-1647", "moodle--CVE-2007-3555", "moodle--CVE-2007-6538", "moodle--CVE-2008-0123", "moodle--CVE-2008-1502", "moodle--CVE-2008-3325" ], "source_refs": [ { "name": "Moodle Security News", "url": "https://moodle.org/security/", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "NVD Moodle", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Moodle", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "nestjs", "entity_type": "system", "display_name": "NestJS", "parent_entity_id": null, "root_system_id": "nestjs", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-02T20:30:10+00:00", "last_synced_at": "2026-03-02T20:30:10+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 0, "first_advisory_at": "2025-12-29T16:15:44+00:00", "latest_advisory_at": "2026-03-02T20:30:10+00:00", "advisory_ids": [ "nestjs--CVE-2025-69211", "nestjs--CVE-2026-2293" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV NestJS", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD NestJS", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "nextjs--project--next", "entity_type": "project", "display_name": "next", "parent_entity_id": "nextjs", "root_system_id": "nextjs", "category": "frameworks", "ecosystem": "next", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/next", "marketplace_url": "", "latest_version": "16.2.2", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/next", "version_source_refs": [ "https://www.npmjs.com/package/next", "https://github.com/vercel/next.js", "https://github.com/zeit/next.js/security/advisories/GHSA-fq77-7p7r-83rj", "https://github.com/vercel/next.js/security/advisories/GHSA-vxf5-wxwp-m7g9", "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx", "https://nvd.nist.gov/vuln/detail/CVE-2023-46298", "https://github.com/vercel/next.js/security/advisories/GHSA-qpjv-v59x-3qc4", "https://github.com/vercel/next.js/security/advisories/GHSA-xv57-4mr9-wg8v", "https://github.com/vercel/next.js/security/advisories/GHSA-4342-x723-ch2f", "https://nvd.nist.gov/vuln/detail/CVE-2017-16877", "https://nvd.nist.gov/vuln/detail/CVE-2018-6184", "https://nvd.nist.gov/vuln/detail/CVE-2018-18282", "https://github.com/vercel/next.js/security/advisories/GHSA-x56p-c8cg-q435", "https://github.com/vercel/next.js/security/advisories/GHSA-ggv3-7p47-pfv8", "https://github.com/vercel/next.js/security/advisories/GHSA-7gfc-8cq8-jh5f" ], "version_sync_status": "green", "security_version_count": 181, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/vercel/next.js", "https://github.com/zeit/next.js/security/advisories/GHSA-fq77-7p7r-83rj", "https://github.com/vercel/next.js/security/advisories/GHSA-vxf5-wxwp-m7g9", "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx", "https://nvd.nist.gov/vuln/detail/CVE-2023-46298", "https://github.com/vercel/next.js/security/advisories/GHSA-qpjv-v59x-3qc4", "https://github.com/vercel/next.js/security/advisories/GHSA-xv57-4mr9-wg8v", "https://github.com/vercel/next.js/security/advisories/GHSA-4342-x723-ch2f", "https://nvd.nist.gov/vuln/detail/CVE-2017-16877", "https://nvd.nist.gov/vuln/detail/CVE-2018-6184", "https://nvd.nist.gov/vuln/detail/CVE-2018-18282", "https://github.com/vercel/next.js/security/advisories/GHSA-x56p-c8cg-q435", "https://github.com/vercel/next.js/security/advisories/GHSA-ggv3-7p47-pfv8", "https://github.com/vercel/next.js/security/advisories/GHSA-7gfc-8cq8-jh5f" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-19T18:48:06+00:00", "last_synced_at": "2026-03-19T18:48:06+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 41, "workflow_complete_advisory_count": 41, "version_mapped_advisory_count": 41, "first_advisory_at": "2017-12-05T02:04:14+00:00", "latest_advisory_at": "2026-04-01T17:31:03+00:00", "advisory_ids": [ "nextjs--CVE-2017-16877", "nextjs--CVE-2018-18282", "nextjs--CVE-2018-6184", "nextjs--CVE-2020-15242", "nextjs--CVE-2020-5284", "nextjs--CVE-2021-37699", "nextjs--CVE-2021-39178", "nextjs--CVE-2021-43803", "nextjs--CVE-2022-21721", "nextjs--CVE-2022-23646", "nextjs--CVE-2022-36046", "nextjs--CVE-2023-46298", "nextjs--CVE-2024-34350", "nextjs--CVE-2024-34351", "nextjs--CVE-2024-39693", "nextjs--CVE-2024-46982", "nextjs--CVE-2024-47831", "nextjs--CVE-2024-51479", "nextjs--CVE-2024-56332", "nextjs--CVE-2025-29927", "nextjs--CVE-2025-30218", "nextjs--CVE-2025-32421", "nextjs--CVE-2025-48068", "nextjs--CVE-2025-49005", "nextjs--CVE-2025-49826", "nextjs--CVE-2025-55173", "nextjs--CVE-2025-57752", "nextjs--CVE-2025-57822", "nextjs--CVE-2025-59471", "nextjs--CVE-2025-59472", "nextjs--CVE-2026-27977", "nextjs--CVE-2026-27978", "nextjs--CVE-2026-27979", "nextjs--CVE-2026-27980", "nextjs--CVE-2026-29057", "nextjs--GHSA-5j59-xgg2-r9c4", "nextjs--GHSA-5vj8-3v2h-h38v", "nextjs--GHSA-9qr9-h5gf-34mp", "nextjs--GHSA-h25m-26qc-wcjf", "nextjs--GHSA-mwv6-3258-q52c", "nextjs--GHSA-w37m-7fhw-fmv9" ], "source_refs": [] }, { "entity_id": "nextjs", "entity_type": "system", "display_name": "Next.js", "parent_entity_id": null, "root_system_id": "nextjs", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "16.2.2", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/next", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 181, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-19T18:48:06+00:00", "last_synced_at": "2026-03-19T18:48:06+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 66, "workflow_complete_advisory_count": 66, "version_mapped_advisory_count": 41, "first_advisory_at": "2017-12-05T02:04:14+00:00", "latest_advisory_at": "2026-04-01T17:31:03+00:00", "advisory_ids": [ "nextjs--0bc50e56d4", "nextjs--0dc6888d4d", "nextjs--141ab877e6", "nextjs--1dc77c2e8c", "nextjs--2273921172", "nextjs--2f7ce5f22d", "nextjs--30749468ad", "nextjs--33433e3c48", "nextjs--49efa644c2", "nextjs--4a184c2b42", "nextjs--4f1317042a", "nextjs--89882b7557", "nextjs--8e12818ec0", "nextjs--CVE-2017-16877", "nextjs--CVE-2018-18282", "nextjs--CVE-2018-6184", "nextjs--CVE-2020-15242", "nextjs--CVE-2020-5284", "nextjs--CVE-2021-37699", "nextjs--CVE-2021-39178", "nextjs--CVE-2021-43803", "nextjs--CVE-2022-21721", "nextjs--CVE-2022-23646", "nextjs--CVE-2022-36046", "nextjs--CVE-2023-46298", "nextjs--CVE-2024-34350", "nextjs--CVE-2024-34351", "nextjs--CVE-2024-39693", "nextjs--CVE-2024-46982", "nextjs--CVE-2024-47831", "nextjs--CVE-2024-51479", "nextjs--CVE-2024-56332", "nextjs--CVE-2025-29927", "nextjs--CVE-2025-30218", "nextjs--CVE-2025-32421", "nextjs--CVE-2025-48068", "nextjs--CVE-2025-49005", "nextjs--CVE-2025-49826", "nextjs--CVE-2025-55173", "nextjs--CVE-2025-57752", "nextjs--CVE-2025-57822", "nextjs--CVE-2025-59471", "nextjs--CVE-2025-59472", "nextjs--CVE-2026-27977", "nextjs--CVE-2026-27978", "nextjs--CVE-2026-27979", "nextjs--CVE-2026-27980", "nextjs--CVE-2026-29057", "nextjs--GHSA-5j59-xgg2-r9c4", "nextjs--GHSA-5vj8-3v2h-h38v", "nextjs--GHSA-9qr9-h5gf-34mp", "nextjs--GHSA-h25m-26qc-wcjf", "nextjs--GHSA-mwv6-3258-q52c", "nextjs--GHSA-w37m-7fhw-fmv9", "nextjs--a2c7259ddc", "nextjs--ae380e9321", "nextjs--b6cd982531", "nextjs--b7cd10199e", "nextjs--ba8c047631", "nextjs--c22545df7f", "nextjs--c28e8c0dbc", "nextjs--ca9b9a6983", "nextjs--e50a174f6a", "nextjs--f3892d9cb1", "nextjs--f553550ff7", "nextjs--f99bc2ccb0" ], "source_refs": [ { "name": "GitHub Next.js Advisories", "url": "https://github.com/vercel/next.js/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Next.js", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "nginx", "entity_type": "system", "display_name": "Nginx", "parent_entity_id": null, "root_system_id": "nginx", "category": "servers", "ecosystem": "servers", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-08-12T17:24:44+00:00", "last_synced_at": "2025-08-12T17:24:44+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 110, "workflow_complete_advisory_count": 110, "version_mapped_advisory_count": 0, "first_advisory_at": "2009-09-15T22:30:00+00:00", "latest_advisory_at": "2025-08-12T17:24:44+00:00", "advisory_ids": [ "nginx--0569e618e2", "nginx--1cb54d668d", "nginx--217331376c", "nginx--24c7ae5def", "nginx--28e23502f7", "nginx--29fb978af2", "nginx--2a4e47ce04", "nginx--2fe2a861d1", "nginx--30236b2c9d", "nginx--336e602ecb", "nginx--368044500b", "nginx--40800318f2", "nginx--4738d89a16", "nginx--4c58a724ee", "nginx--4c76bccaad", "nginx--5085b8b99b", "nginx--61abb2ec77", "nginx--62c2fc321b", "nginx--68931ef7db", "nginx--68ece90d2c", "nginx--6c245ac287", "nginx--6f2294c12b", "nginx--732499f0b5", "nginx--7bddb39d26", "nginx--804016cf59", "nginx--83b80e3519", "nginx--84226f6252", "nginx--851e8b9969", "nginx--8bb031ebe6", "nginx--8d64c2c7e1", "nginx--8d7938fe7f", "nginx--9209e9e91e", "nginx--979bf408c2", "nginx--9de19228db", "nginx--CVE-2009-2629", "nginx--CVE-2009-3896", "nginx--CVE-2009-3898", "nginx--CVE-2009-4487", "nginx--CVE-2010-2263", "nginx--CVE-2010-2266", "nginx--CVE-2011-4315", "nginx--CVE-2011-4963", "nginx--CVE-2012-1180", "nginx--CVE-2012-2089", "nginx--CVE-2012-3380", "nginx--CVE-2013-0337", "nginx--CVE-2013-2028", "nginx--CVE-2013-2070", "nginx--CVE-2013-4547", "nginx--CVE-2014-0088", "nginx--CVE-2014-0133", "nginx--CVE-2014-3556", "nginx--CVE-2014-3616", "nginx--CVE-2016-0742", "nginx--CVE-2016-0746", "nginx--CVE-2016-0747", "nginx--CVE-2016-1247", "nginx--CVE-2016-4450", "nginx--CVE-2017-7529", "nginx--CVE-2017-8301", "nginx--CVE-2018-1000653", "nginx--CVE-2018-11046", "nginx--CVE-2018-11747", "nginx--CVE-2018-12029", "nginx--CVE-2018-1299", "nginx--CVE-2018-16843", "nginx--CVE-2018-16844", "nginx--CVE-2018-16845", "nginx--CVE-2018-8059", "nginx--CVE-2019-11837", "nginx--CVE-2019-11838", "nginx--CVE-2019-11839", "nginx--CVE-2019-12206", "nginx--CVE-2019-12207", "nginx--CVE-2019-12208", "nginx--CVE-2019-12938", "nginx--CVE-2019-13067", "nginx--CVE-2019-13617", "nginx--CVE-2019-13980", "nginx--CVE-2019-15517", "nginx--CVE-2019-18371", "nginx--CVE-2019-7401", "nginx--CVE-2019-9161", "nginx--CVE-2019-9945", "nginx--a0b816a7d3", "nginx--ace282d050", "nginx--bb184634ce", "nginx--be6ea396fd", "nginx--c5cd1bbbef", "nginx--c607778484", "nginx--c622afc84e", "nginx--c827e4bfa3", "nginx--c93f3b000f", "nginx--cdbcb1c927", "nginx--ceb85c4841", "nginx--d1a9b18422", "nginx--d306e098c7", "nginx--d85922ee1e", "nginx--e0a442e45e", "nginx--e7a0540903", "nginx--ed112ebde1", "nginx--ee6036785b", "nginx--f62c0e16b5", "nginx--f86689b061", "nginx--f8846aa3f0", "nginx--f9b761c25d", "nginx--f9faf8fadb", "nginx--fb39810518", "nginx--fd94394912", "nginx--fe30b91a56" ], "source_refs": [ { "name": "NGINX Security Advisories", "url": "https://nginx.org/en/security_advisories.html", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD NGINX", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "CISA KEV NGINX", "url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json", "kind": "kev-json", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "nodejs", "entity_type": "system", "display_name": "Node.js", "parent_entity_id": null, "root_system_id": "nodejs", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-01-21T00:00:00+00:00", "last_synced_at": "2025-01-21T00:00:00+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 8, "workflow_complete_advisory_count": 8, "version_mapped_advisory_count": 0, "first_advisory_at": "2022-01-18T00:00:00+00:00", "latest_advisory_at": "2025-01-21T00:00:00+00:00", "advisory_ids": [ "nodejs--6734913818", "nodejs--71860b6d34", "nodejs--80e3e57e30", "nodejs--CVE-2021-21315", "nodejs--CVE-2024-55591", "nodejs--c4dcafe482", "nodejs--eafd98a5b3", "nodejs--f802d25ee1" ], "source_refs": [ { "name": "Node.js Security Releases", "url": "https://nodejs.org/en/blog/vulnerability", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "CISA KEV Node.js", "url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json", "kind": "kev-json", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "nuxt--project--nuxt", "entity_type": "project", "display_name": "nuxt", "parent_entity_id": "nuxt", "root_system_id": "nuxt", "category": "frameworks", "ecosystem": "nuxt", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/nuxt", "marketplace_url": "", "latest_version": "4.4.2", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/nuxt", "version_source_refs": [ "https://www.npmjs.com/package/nuxt", "https://github.com/nuxt/nuxt/security/advisories/GHSA-vf6r-87q4-2vjf", "https://github.com/nuxt/nuxt/security/advisories/GHSA-jvhm-gjrh-3h93", "https://nvd.nist.gov/vuln/detail/CVE-2023-3224", "https://github.com/nuxt/nuxt/security/advisories/GHSA-v784-fjjh-f8r4", "https://github.com/nuxt/nuxt/security/advisories/GHSA-p6jq-8vc4-79f6" ], "version_sync_status": "green", "security_version_count": 11, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/nuxt/nuxt/security/advisories/GHSA-vf6r-87q4-2vjf", "https://github.com/nuxt/nuxt/security/advisories/GHSA-jvhm-gjrh-3h93", "https://nvd.nist.gov/vuln/detail/CVE-2023-3224", "https://github.com/nuxt/nuxt/security/advisories/GHSA-v784-fjjh-f8r4", "https://github.com/nuxt/nuxt/security/advisories/GHSA-p6jq-8vc4-79f6" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-09-18T13:04:21+00:00", "last_synced_at": "2025-09-18T13:04:21+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 5, "workflow_complete_advisory_count": 5, "version_mapped_advisory_count": 5, "first_advisory_at": "2023-06-13T18:30:40+00:00", "latest_advisory_at": "2025-09-18T13:04:21+00:00", "advisory_ids": [ "nuxt--CVE-2023-3224", "nuxt--CVE-2024-34343", "nuxt--CVE-2024-34344", "nuxt--CVE-2025-27415", "nuxt--CVE-2025-59414" ], "source_refs": [] }, { "entity_id": "nuxt", "entity_type": "system", "display_name": "Nuxt", "parent_entity_id": null, "root_system_id": "nuxt", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "4.4.2", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/nuxt", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 11, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-09-18T13:04:21+00:00", "last_synced_at": "2025-09-18T13:04:21+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 28, "workflow_complete_advisory_count": 28, "version_mapped_advisory_count": 5, "first_advisory_at": "2023-06-13T18:30:40+00:00", "latest_advisory_at": "2025-09-18T13:04:21+00:00", "advisory_ids": [ "nuxt--00074e880d", "nuxt--0978cdeee4", "nuxt--11f3bee749", "nuxt--163526e31e", "nuxt--1b5070a28c", "nuxt--2c7e32295b", "nuxt--350e7269f5", "nuxt--38d59d7143", "nuxt--3c00028522", "nuxt--437f36c605", "nuxt--4c88683fcf", "nuxt--54a7a92ef0", "nuxt--67601b87ec", "nuxt--971cf9be95", "nuxt--CVE-2023-3224", "nuxt--CVE-2024-34343", "nuxt--CVE-2024-34344", "nuxt--CVE-2025-27415", "nuxt--CVE-2025-59414", "nuxt--a50e1b9fc6", "nuxt--aa3625fcbc", "nuxt--be7f3fbbc1", "nuxt--cf9b360a45", "nuxt--da2ffad408", "nuxt--db9acba4cb", "nuxt--e3b7c9ce87", "nuxt--f0cdaf4c60", "nuxt--f189ab795d" ], "source_refs": [ { "name": "Nuxt Security", "url": "https://github.com/nuxt/nuxt/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Nuxt", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "opencart--repo--opencart-opencart", "entity_type": "repo", "display_name": "opencart / opencart", "parent_entity_id": "opencart", "root_system_id": "opencart", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/opencart/opencart", "package_registry": "", "marketplace_url": "", "latest_version": "3.0.5.0", "version_scheme": "semver-ish", "latest_release_at": "2025-12-12T10:27:11Z", "latest_release_url": "https://github.com/opencart/opencart/releases/tag/3.0.5.0", "version_source_refs": [ "https://github.com/opencart/opencart/releases/tag/3.0.5.0", "https://github.com/opencart/opencart/tree/3.0.5.0", "https://github.com/login?return_to=%2Fopencart%2Fopencart" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub Releases API", "OpenCart Releases" ], "catalog_source": "OpenCart Releases", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "OpenCart Releases", "url": "https://github.com/opencart/opencart/releases", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "opencart", "entity_type": "system", "display_name": "OpenCart", "parent_entity_id": null, "root_system_id": "opencart", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "3.0.5.0", "version_scheme": "vendor", "latest_release_at": "2025-12-12T10:27:11Z", "latest_release_url": "https://github.com/opencart/opencart/releases/tag/3.0.5.0", "version_source_refs": [ "https://github.com/login?return_to=%2Fopencart%2Fopencart", "https://github.com/opencart/opencart/tree/3.0.5.0" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "OpenCart Releases" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-05-15T19:15:54+00:00", "last_synced_at": "2025-05-15T19:15:54+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 100, "workflow_complete_advisory_count": 100, "version_mapped_advisory_count": 0, "first_advisory_at": "2008-07-10T23:41:00+00:00", "latest_advisory_at": "2025-05-15T19:15:54+00:00", "advisory_ids": [ "opencart--139edfb591", "opencart--152643f4dc", "opencart--173620a91b", "opencart--29b09ea7c3", "opencart--2ef2d6324d", "opencart--32a94fc273", "opencart--32e040da25", "opencart--3682265bda", "opencart--4177db93f1", "opencart--4e5239b63d", "opencart--50b6423e49", "opencart--56b30c5737", "opencart--6347aad108", "opencart--650dc573c7", "opencart--661c1ed81c", "opencart--66c7c43692", "opencart--67690a305c", "opencart--6cdb303d85", "opencart--6e240216ae", "opencart--6eb01915bf", "opencart--71b8d154cc", "opencart--781a3198e8", "opencart--83cad0e28c", "opencart--87d232be19", "opencart--8fa2fb2c1a", "opencart--CVE-2008-3130", "opencart--CVE-2009-1027", "opencart--CVE-2009-1621", "opencart--CVE-2010-0956", "opencart--CVE-2010-1610", "opencart--CVE-2011-3763", "opencart--CVE-2013-1891", "opencart--CVE-2014-3990", "opencart--CVE-2015-4671", "opencart--CVE-2016-10509", "opencart--CVE-2018-1000640", "opencart--CVE-2018-11231", "opencart--CVE-2018-11494", "opencart--CVE-2018-11495", "opencart--CVE-2018-13067", "opencart--CVE-2019-15081", "opencart--CVE-2020-10596", "opencart--CVE-2020-13980", "opencart--CVE-2020-15478", "opencart--CVE-2020-20491", "opencart--CVE-2020-28838", "opencart--CVE-2020-29470", "opencart--CVE-2020-29471", "opencart--CVE-2021-37823", "opencart--CVE-2022-24108", "opencart--CVE-2022-41403", "opencart--CVE-2023-2315", "opencart--CVE-2023-40834", "opencart--CVE-2023-47444", "opencart--CVE-2024-21514", "opencart--CVE-2024-21515", "opencart--CVE-2024-21516", "opencart--CVE-2024-21517", "opencart--CVE-2024-21518", "opencart--CVE-2024-21519", "opencart--CVE-2024-36694", "opencart--CVE-2024-51835", "opencart--CVE-2025-0214", "opencart--CVE-2025-0460", "opencart--CVE-2025-0579", "opencart--CVE-2025-0580", "opencart--CVE-2025-0841", "opencart--CVE-2025-0974", "opencart--CVE-2025-1116", "opencart--CVE-2025-1117", "opencart--CVE-2025-1746", "opencart--CVE-2025-1747", "opencart--CVE-2025-1748", "opencart--CVE-2025-1749", "opencart--CVE-2025-22335", "opencart--a5fd173846", "opencart--a6d38feafd", "opencart--a78be18997", "opencart--b82c285b5d", "opencart--b90c58a53b", "opencart--b9505f6b40", "opencart--bc58835992", "opencart--c230e64eee", "opencart--c6aa723016", "opencart--c7095ac5c4", "opencart--c971a2586e", "opencart--c9e04e0601", "opencart--cc0c4ce1db", "opencart--cec4aaddde", "opencart--cf2ae6a5b8", "opencart--d9188f0a5c", "opencart--dda59d6d6b", "opencart--e19398ce31", "opencart--e6cd6e0a9e", "opencart--e6e061bcdc", "opencart--e718d88d27", "opencart--ee0bcf69a5", "opencart--f0defacae9", "opencart--f2011c59dd", "opencart--f64f318f0c" ], "source_refs": [ { "name": "OpenCart Releases", "url": "https://github.com/opencart/opencart/releases", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD OpenCart", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV OpenCart", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "openmage--repo--openmage-magento-lts", "entity_type": "repo", "display_name": "OpenMage / magento-lts", "parent_entity_id": "openmage", "root_system_id": "openmage", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/OpenMage/magento-lts", "package_registry": "", "marketplace_url": "", "latest_version": "20.16.0", "version_scheme": "semver-ish", "latest_release_at": "2025-11-01T00:02:10Z", "latest_release_url": "https://github.com/OpenMage/magento-lts/releases/tag/v20.16.0", "version_source_refs": [ "https://github.com/OpenMage/magento-lts/releases/tag/v20.16.0" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub Releases API" ], "catalog_source": "OpenMage GitHub Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "OpenMage GitHub Advisories", "url": "https://github.com/OpenMage/magento-lts/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "openmage", "entity_type": "system", "display_name": "OpenMage / Mage-OS", "parent_entity_id": null, "root_system_id": "openmage", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "20.16.0", "version_scheme": "vendor", "latest_release_at": "2025-11-01T00:02:10Z", "latest_release_url": "https://github.com/OpenMage/magento-lts/releases/tag/v20.16.0", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 27, "workflow_complete_advisory_count": 27, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "openmage--00ec9cbd94", "openmage--05dce0ecb4", "openmage--0dab4c1acf", "openmage--0ea08d028a", "openmage--36f3104a3a", "openmage--3a51ff5004", "openmage--3b021a4e27", "openmage--40fcea18aa", "openmage--4543f23d23", "openmage--543cbfcb3a", "openmage--56acb3408d", "openmage--5f86fc559d", "openmage--6470662d28", "openmage--6ad0ee83b2", "openmage--73bd721bcb", "openmage--75ecc8c69a", "openmage--8242490b5f", "openmage--8db808ae7c", "openmage--98b9fc6dcd", "openmage--9b0daf9805", "openmage--b54fef776b", "openmage--dc1d1ecc2e", "openmage--e95d53d356", "openmage--f2ad71899c", "openmage--f9c68197bb", "openmage--fa1e601784", "openmage--ffd3c23a64" ], "source_refs": [ { "name": "OpenMage GitHub Advisories", "url": "https://github.com/OpenMage/magento-lts/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD OpenMage", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV OpenMage", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "phpmyadmin", "entity_type": "system", "display_name": "phpMyAdmin", "parent_entity_id": null, "root_system_id": "phpmyadmin", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "5.2.3-all-languages.zip", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://files.phpmyadmin.net/phpMyAdmin/5.2.3/phpMyAdmin-5.2.3-all-languages.zip", "version_source_refs": [ "https://files.phpmyadmin.net/phpMyAdmin/5.2.3/phpMyAdmin-5.2.3-all-languages.zip" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "phpMyAdmin Security Page" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 50, "workflow_complete_advisory_count": 50, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "phpmyadmin--04b4918ca9", "phpmyadmin--061948dba4", "phpmyadmin--099c7a9e41", "phpmyadmin--1138f2e464", "phpmyadmin--15e877c3b2", "phpmyadmin--2990adc377", "phpmyadmin--2b03b271e5", "phpmyadmin--2c943e6cc8", "phpmyadmin--32730a2240", "phpmyadmin--337a84a6c4", "phpmyadmin--41ae0b8a3d", "phpmyadmin--421b34d972", "phpmyadmin--437e6e9078", "phpmyadmin--4507eb8dd0", "phpmyadmin--4b2e1eadc9", "phpmyadmin--4cc36ce48c", "phpmyadmin--54962ccd4b", "phpmyadmin--54f36111cd", "phpmyadmin--55827f8c93", "phpmyadmin--5b59c06851", "phpmyadmin--63eee95cc8", "phpmyadmin--6f4102a516", "phpmyadmin--79ef30f4f5", "phpmyadmin--7bf1994362", "phpmyadmin--7f45dd935c", "phpmyadmin--8cd3c5e494", "phpmyadmin--8efd1bcfaa", "phpmyadmin--953daf5e04", "phpmyadmin--97a396578a", "phpmyadmin--9b5211f3ca", "phpmyadmin--a7ea3aedf4", "phpmyadmin--b1a43220a0", "phpmyadmin--b65bc83298", "phpmyadmin--b99b5f9f8f", "phpmyadmin--bd5217d6e3", "phpmyadmin--be801a0403", "phpmyadmin--c59bed7b03", "phpmyadmin--c8271fb98e", "phpmyadmin--c8a86d8f70", "phpmyadmin--ca0f4c9484", "phpmyadmin--cc0ebec308", "phpmyadmin--dd85608700", "phpmyadmin--deeb6d0c9f", "phpmyadmin--e36ebea6ae", "phpmyadmin--e995390f8f", "phpmyadmin--f1851fb737", "phpmyadmin--f244048411", "phpmyadmin--f25e4700c4", "phpmyadmin--faae11554f", "phpmyadmin--fcca009119" ], "source_refs": [ { "name": "phpMyAdmin Security Page", "url": "https://www.phpmyadmin.net/security/", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD phpMyAdmin", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV phpMyAdmin", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "prestashop--package--prestashop-prestashop", "entity_type": "package", "display_name": "prestashop / prestashop", "parent_entity_id": "prestashop", "root_system_id": "prestashop", "category": "ecommerce", "ecosystem": "prestashop", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/prestashop/prestashop", "package_registry": "https://packagist.org/packages/prestashop/prestashop", "marketplace_url": "", "latest_version": "9.1.0", "version_scheme": "semver-ish", "latest_release_at": "2026-03-13T18:04:58+00:00", "latest_release_url": "https://packagist.org/packages/prestashop/prestashop", "version_source_refs": [ "https://packagist.org/packages/prestashop/prestashop", "https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-35pf-37c6-jxjv", "https://security.friendsofpresta.org/core/2025/09/04/CVE-2025-51586.html" ], "version_sync_status": "green", "security_version_count": 41, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "Packagist p2", "https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-35pf-37c6-jxjv", "Friends Of Presta Security" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-25T19:49:27+00:00", "last_synced_at": "2026-03-25T19:49:27+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2026-03-25T19:40:42+00:00", "latest_advisory_at": "2026-03-30T12:26:07+00:00", "advisory_ids": [ "prestashop--CVE-2026-33673", "prestashop--CVE-2026-33674" ], "source_refs": [] }, { "entity_id": "prestashop--repo--prestashop-prestashop", "entity_type": "repo", "display_name": "PrestaShop / PrestaShop", "parent_entity_id": "prestashop", "root_system_id": "prestashop", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/PrestaShop/PrestaShop", "package_registry": "", "marketplace_url": "", "latest_version": "8.2.5", "version_scheme": "semver-ish", "latest_release_at": "2026-03-23T10:07:16Z", "latest_release_url": "https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.5", "version_source_refs": [ "https://github.com/PrestaShop/PrestaShop/releases/tag/9.0.3", "https://security.friendsofpresta.org/core/2025/09/04/CVE-2025-51586.html", "https://security.friendsofpresta.org/modules/2025/05/22/appagebuilder.html", "https://build.prestashop-project.org/news/2026/prestashop-8-2-4-maintenance-release/", "https://security.friendsofpresta.org/modules/2026/02/16/advancedpopupcreator-cve-2025-69633.html", "https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-3366-9287-7qpr", "https://build.prestashop-project.org/news/2026/prestashop-8-2-5-maintenance-release/", "https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.5" ], "version_sync_status": "green", "security_version_count": 9, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub Releases API", "Friends Of Presta Security", "PrestaShop Security Page", "GitHub PrestaShop Advisories" ], "catalog_source": "GitHub PrestaShop Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "GitHub PrestaShop Advisories", "url": "https://github.com/PrestaShop/PrestaShop/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "prestashop", "entity_type": "system", "display_name": "PrestaShop", "parent_entity_id": null, "root_system_id": "prestashop", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "8.2.5", "version_scheme": "vendor", "latest_release_at": "2026-03-23T10:07:16Z", "latest_release_url": "https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.5", "version_source_refs": [ "https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-3366-9287-7qpr", "https://security.friendsofpresta.org/core/2025/09/04/CVE-2025-51586.html", "https://security.friendsofpresta.org/modules/2025/05/22/appagebuilder.html", "https://build.prestashop-project.org/news/2026/prestashop-8-2-4-maintenance-release/", "https://security.friendsofpresta.org/modules/2026/02/16/advancedpopupcreator-cve-2025-69633.html", "https://build.prestashop-project.org/news/2026/prestashop-8-2-5-maintenance-release/" ], "version_sync_status": "green", "security_version_count": 50, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub PrestaShop Advisories", "Friends Of Presta Security", "PrestaShop Security Page" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-12T10:46:40+00:00", "last_synced_at": "2025-04-12T10:46:40+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 114, "workflow_complete_advisory_count": 114, "version_mapped_advisory_count": 2, "first_advisory_at": "2008-12-31T11:30:00+00:00", "latest_advisory_at": "2026-03-30T12:26:07+00:00", "advisory_ids": [ "prestashop--07b452707c", "prestashop--080f1ad67c", "prestashop--0a99372628", "prestashop--0b4cde142a", "prestashop--0cf1445861", "prestashop--0f3d1052fe", "prestashop--1143148052", "prestashop--17a4020b8e", "prestashop--194d3624d9", "prestashop--1960d3328b", "prestashop--1ae6727547", "prestashop--1c4fd08f00", "prestashop--2887e623db", "prestashop--2ac3b23224", "prestashop--2db6b7a5cb", "prestashop--370138b15f", "prestashop--3ba2f71e19", "prestashop--3d2f6a9c11", "prestashop--3d5108fb77", "prestashop--3e17240b4a", "prestashop--3e59307468", "prestashop--41272d385b", "prestashop--42b99ec487", "prestashop--439f12a7f0", "prestashop--4490b2f515", "prestashop--457d471c98", "prestashop--4993617c4b", "prestashop--526249c655", "prestashop--5354623814", "prestashop--53dacbadfe", "prestashop--54032297bb", "prestashop--5b40a10031", "prestashop--5cb36272bb", "prestashop--5f34902a35", "prestashop--63604b23bc", "prestashop--69bfb37e23", "prestashop--71c6fa029e", "prestashop--7766d9922a", "prestashop--7dfef9df45", "prestashop--7f433feb85", "prestashop--85f12ef1da", "prestashop--8b01105c25", "prestashop--8e4cc5b1b1", "prestashop--9269919ece", "prestashop--99df6b5f8c", "prestashop--CVE-2008-5791", "prestashop--CVE-2008-6503", "prestashop--CVE-2011-3796", "prestashop--CVE-2011-4544", "prestashop--CVE-2011-4545", "prestashop--CVE-2012-2517", "prestashop--CVE-2012-5799", "prestashop--CVE-2012-5800", "prestashop--CVE-2012-5801", "prestashop--CVE-2012-6641", "prestashop--CVE-2013-4791", "prestashop--CVE-2013-4792", "prestashop--CVE-2013-6295", "prestashop--CVE-2013-6358", "prestashop--CVE-2014-2008", "prestashop--CVE-2014-2009", "prestashop--CVE-2015-1175", "prestashop--CVE-2018-10942", "prestashop--CVE-2018-13784", "prestashop--CVE-2018-19124", "prestashop--CVE-2018-19125", "prestashop--CVE-2018-19126", "prestashop--CVE-2018-19355", "prestashop--CVE-2018-20717", "prestashop--CVE-2018-5681", "prestashop--CVE-2018-5682", "prestashop--CVE-2018-7491", "prestashop--CVE-2018-8823", "prestashop--CVE-2018-8824", "prestashop--CVE-2019-11876", "prestashop--CVE-2019-13461", "prestashop--CVE-2019-15565", "prestashop--CVE-2019-19594", "prestashop--CVE-2019-19595", "prestashop--CVE-2020-5250", "prestashop--CVE-2020-5266", "prestashop--CVE-2020-5273", "prestashop--CVE-2020-5277", "prestashop--CVE-2020-5294", "prestashop--CVE-2020-6632", "prestashop--CVE-2026-33673", "prestashop--CVE-2026-33674", "prestashop--a0f896f1ae", "prestashop--a2727cdb40", "prestashop--a433672695", "prestashop--a4680a587b", "prestashop--a8de8dcd40", "prestashop--a9884ea8ca", "prestashop--aba2c74bb6", "prestashop--aca010719a", "prestashop--af5fa14c69", "prestashop--b17c489f8a", "prestashop--b55a9a50fe", "prestashop--b57869fa03", "prestashop--b7feb74da8", "prestashop--bdf8465493", "prestashop--c746c64241", "prestashop--ca5fd6693a", "prestashop--cb6263120d", "prestashop--cc8c72b6d8", "prestashop--cd62d2df40", "prestashop--cdf49add4c", "prestashop--cf731ac297", "prestashop--e828aea1f4", "prestashop--e8fcf4653b", "prestashop--eab2fbb1b2", "prestashop--eb4978e1ad", "prestashop--f275ddbbd6", "prestashop--f7b00578a3" ], "source_refs": [ { "name": "PrestaShop Security Page", "url": "https://build.prestashop-project.org/news/", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub PrestaShop Advisories", "url": "https://github.com/PrestaShop/PrestaShop/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD PrestaShop", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV PrestaShop", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false }, { "name": "Friends Of Presta Security", "url": "https://security.friendsofpresta.org/", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "rails--project--rails", "entity_type": "project", "display_name": "rails", "parent_entity_id": "rails", "root_system_id": "rails", "category": "frameworks", "ecosystem": "rails", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/rails", "marketplace_url": "", "latest_version": "4.1.0-beta", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/rails", "version_source_refs": [ "https://www.npmjs.com/package/rails", "https://nvd.nist.gov/vuln/detail/CVE-2007-5379", "https://nvd.nist.gov/vuln/detail/CVE-2007-3227", "https://nvd.nist.gov/vuln/detail/CVE-2007-6077", "https://nvd.nist.gov/vuln/detail/CVE-2008-5189", "https://nvd.nist.gov/vuln/detail/CVE-2009-4214" ], "version_sync_status": "green", "security_version_count": 102, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "npm latest", "https://nvd.nist.gov/vuln/detail/CVE-2007-5379", "https://nvd.nist.gov/vuln/detail/CVE-2007-3227", "https://nvd.nist.gov/vuln/detail/CVE-2007-6077", "https://nvd.nist.gov/vuln/detail/CVE-2008-5189", "https://nvd.nist.gov/vuln/detail/CVE-2009-4214" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-05-01T18:49:06+00:00", "last_synced_at": "2025-05-01T18:49:06+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 10, "workflow_complete_advisory_count": 10, "version_mapped_advisory_count": 10, "first_advisory_at": "2017-10-24T18:33:36+00:00", "latest_advisory_at": "2025-05-01T18:49:06+00:00", "advisory_ids": [ "rails--CVE-2006-4111", "rails--CVE-2006-4112", "rails--CVE-2007-3227", "rails--CVE-2007-5379", "rails--CVE-2007-5380", "rails--CVE-2007-6077", "rails--CVE-2008-5189", "rails--CVE-2009-4214", "rails--CVE-2014-0081", "rails--CVE-2024-26143" ], "source_refs": [] }, { "entity_id": "rails", "entity_type": "system", "display_name": "Ruby on Rails", "parent_entity_id": null, "root_system_id": "rails", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "4.1.0-beta", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/rails", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 102, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-05-01T18:49:06+00:00", "last_synced_at": "2025-05-01T18:49:06+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 42, "workflow_complete_advisory_count": 42, "version_mapped_advisory_count": 10, "first_advisory_at": "2008-09-30T17:22:09+00:00", "latest_advisory_at": "2025-05-01T18:49:06+00:00", "advisory_ids": [ "rails--CVE-2006-4111", "rails--CVE-2006-4112", "rails--CVE-2007-3227", "rails--CVE-2007-5379", "rails--CVE-2007-5380", "rails--CVE-2007-6077", "rails--CVE-2008-4094", "rails--CVE-2008-5189", "rails--CVE-2008-7248", "rails--CVE-2009-2422", "rails--CVE-2009-3009", "rails--CVE-2009-3086", "rails--CVE-2009-4214", "rails--CVE-2010-3933", "rails--CVE-2011-0446", "rails--CVE-2011-0447", "rails--CVE-2011-0448", "rails--CVE-2011-0449", "rails--CVE-2011-2197", "rails--CVE-2011-2929", "rails--CVE-2011-2930", "rails--CVE-2011-2931", "rails--CVE-2011-2932", "rails--CVE-2011-3186", "rails--CVE-2011-3187", "rails--CVE-2011-4319", "rails--CVE-2012-1098", "rails--CVE-2012-1099", "rails--CVE-2012-2660", "rails--CVE-2012-2661", "rails--CVE-2012-2694", "rails--CVE-2012-2695", "rails--CVE-2012-3424", "rails--CVE-2012-3463", "rails--CVE-2012-3464", "rails--CVE-2012-3465", "rails--CVE-2012-6496", "rails--CVE-2012-6497", "rails--CVE-2013-0155", "rails--CVE-2013-0156", "rails--CVE-2014-0081", "rails--CVE-2024-26143" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Rails", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Ruby on Rails", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "react--project--react-dom", "entity_type": "project", "display_name": "react-dom", "parent_entity_id": "react", "root_system_id": "react", "category": "frameworks", "ecosystem": "react-dom", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/react-dom", "marketplace_url": "", "latest_version": "19.2.4", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/react-dom", "version_source_refs": [ "https://www.npmjs.com/package/react-dom", "https://nvd.nist.gov/vuln/detail/CVE-2018-6341" ], "version_sync_status": "green", "security_version_count": 12, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "npm latest", "https://nvd.nist.gov/vuln/detail/CVE-2018-6341" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2023-11-08T04:00:21+00:00", "last_synced_at": "2023-11-08T04:00:21+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2019-01-04T19:05:35+00:00", "latest_advisory_at": "2023-11-08T04:00:21+00:00", "advisory_ids": [ "react--CVE-2018-6341" ], "source_refs": [] }, { "entity_id": "react--project--react", "entity_type": "project", "display_name": "react", "parent_entity_id": "react", "root_system_id": "react", "category": "frameworks", "ecosystem": "react", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/react", "marketplace_url": "", "latest_version": "19.2.4", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/react", "version_source_refs": [ "https://www.npmjs.com/package/react", "https://github.com/facebook/react", "https://nvd.nist.gov/vuln/detail/CVE-2013-7035" ], "version_sync_status": "green", "security_version_count": 6, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/facebook/react", "https://nvd.nist.gov/vuln/detail/CVE-2013-7035" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2023-11-08T03:57:27+00:00", "last_synced_at": "2023-11-08T03:57:27+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2020-09-04T15:26:04+00:00", "latest_advisory_at": "2023-11-08T03:57:27+00:00", "advisory_ids": [ "react--CVE-2013-7035", "react--GHSA-hg79-j56m-fxgv" ], "source_refs": [] }, { "entity_id": "react", "entity_type": "system", "display_name": "React", "parent_entity_id": null, "root_system_id": "react", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "19.2.4", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/react-dom", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 18, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2023-11-08T04:00:21+00:00", "last_synced_at": "2023-11-08T04:00:21+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 21, "workflow_complete_advisory_count": 21, "version_mapped_advisory_count": 3, "first_advisory_at": "2019-01-04T19:05:35+00:00", "latest_advisory_at": "2023-11-08T04:00:21+00:00", "advisory_ids": [ "react--1f07e46cdd", "react--3590f8d2eb", "react--424360ed96", "react--440e2f2fe0", "react--5e34f09431", "react--5f14eebccf", "react--631bc8f9ec", "react--639047312a", "react--69243f52c9", "react--83279f54c6", "react--87bd5d2df7", "react--8bf6525f07", "react--8fb9c56ed6", "react--90e1bf3aa2", "react--CVE-2013-7035", "react--CVE-2018-6341", "react--GHSA-hg79-j56m-fxgv", "react--a97e2dd555", "react--afae360015", "react--bc9ece6017", "react--c3d13ac7ba" ], "source_refs": [ { "name": "GitHub React Advisories", "url": "https://github.com/facebook/react/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV React", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "redmine", "entity_type": "system", "display_name": "Redmine", "parent_entity_id": null, "root_system_id": "redmine", "category": "platforms", "ecosystem": "platforms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "6.1.2", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.redmine.org/versions/220", "version_source_refs": [ "https://www.redmine.org/versions/220" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "Redmine Security Advisories" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 50, "workflow_complete_advisory_count": 50, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "redmine--0282099421", "redmine--06dcc3d798", "redmine--07648e61ad", "redmine--11018a1a44", "redmine--11954098a7", "redmine--14b81e27e4", "redmine--1b774dc215", "redmine--1d6e3053bd", "redmine--1eac2c6e99", "redmine--21d6c05288", "redmine--240d14f6bf", "redmine--2519faedc9", "redmine--257fde8edc", "redmine--2833824585", "redmine--2a63e0d8db", "redmine--2df4082eef", "redmine--2ff3f53268", "redmine--3874d4f368", "redmine--3bc961d9f5", "redmine--3d768dc788", "redmine--40a5b74e89", "redmine--4482cb2cab", "redmine--4f77e58dfd", "redmine--5324f62fc1", "redmine--5389ff67a1", "redmine--5425f40fc4", "redmine--581d3cab8b", "redmine--5a06acdefc", "redmine--63227d38e4", "redmine--67194fad35", "redmine--772bb797e3", "redmine--7f8cb15c92", "redmine--83c1e28359", "redmine--88073787c5", "redmine--8eea04bc6d", "redmine--9333808981", "redmine--9b363f3bd7", "redmine--a0902bcb94", "redmine--a28ac4c571", "redmine--b91defae91", "redmine--baac7591cc", "redmine--bd4ca4c303", "redmine--be912d4336", "redmine--c27a1d5ee1", "redmine--d24676e738", "redmine--de7babae35", "redmine--e83581619b", "redmine--f1bebcdccf", "redmine--f380daaeaa", "redmine--fb3fd042a0" ], "source_refs": [ { "name": "Redmine Security Advisories", "url": "https://www.redmine.org/projects/redmine/wiki/Security_Advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Redmine", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Redmine", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "saleor--repo--saleor-saleor", "entity_type": "repo", "display_name": "saleor / saleor", "parent_entity_id": "saleor", "root_system_id": "saleor", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/saleor/saleor", "package_registry": "", "marketplace_url": "", "latest_version": "3.22.45", "version_scheme": "semver-ish", "latest_release_at": "2026-03-30T14:56:59Z", "latest_release_url": "https://github.com/saleor/saleor/releases/tag/3.22.45", "version_source_refs": [ "https://github.com/saleor/saleor/releases/tag/3.22.43", "https://github.com/login?return_to=%2Fsaleor%2Fsaleor", "https://github.com/saleor/saleor/releases/tag/3.22.44", "https://github.com/saleor/saleor/releases/tag/3.22.45" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub Releases API", "GitHub Saleor Advisories" ], "catalog_source": "GitHub Saleor Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "GitHub Saleor Advisories", "url": "https://github.com/saleor/saleor/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "saleor", "entity_type": "system", "display_name": "Saleor", "parent_entity_id": null, "root_system_id": "saleor", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "3.22.45", "version_scheme": "vendor", "latest_release_at": "2026-03-30T14:56:59Z", "latest_release_url": "https://github.com/saleor/saleor/releases/tag/3.22.45", "version_source_refs": [ "https://github.com/login?return_to=%2Fsaleor%2Fsaleor" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub Saleor Advisories" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 24, "workflow_complete_advisory_count": 24, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "saleor--06ef9177f9", "saleor--0b7b2f4f3f", "saleor--0e960c719b", "saleor--1f0fa2da71", "saleor--21ac98f89e", "saleor--29410aa1c6", "saleor--34b9e39e81", "saleor--431e3f7372", "saleor--44e8c4d838", "saleor--4ab94b985a", "saleor--4ee3f5bbd2", "saleor--6a0cba201c", "saleor--6b33da830a", "saleor--7a3e54b667", "saleor--9ad660fe0e", "saleor--a512876f2d", "saleor--a8df0219b9", "saleor--af296325b0", "saleor--c416bcc3dd", "saleor--ca7819c06d", "saleor--ce2407a2e9", "saleor--edf3c3a6a5", "saleor--f1b23f95f2", "saleor--f764e86271" ], "source_refs": [ { "name": "GitHub Saleor Advisories", "url": "https://github.com/saleor/saleor/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Saleor", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Saleor", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "shopware--repo--shopware-shopware", "entity_type": "repo", "display_name": "shopware / shopware", "parent_entity_id": "shopware", "root_system_id": "shopware", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/shopware/shopware", "package_registry": "", "marketplace_url": "", "latest_version": "6.7.8.2", "version_scheme": "semver-ish", "latest_release_at": "2026-03-18T15:05:49Z", "latest_release_url": "https://github.com/shopware/shopware/releases/tag/v6.7.8.2", "version_source_refs": [ "https://github.com/shopware/shopware/releases/tag/v6.7.8.2", "https://github.com/login?return_to=%2Fshopware%2Fshopware" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "GitHub Releases API", "Shopware Security Advisories" ], "catalog_source": "Shopware Security Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "Shopware Security Advisories", "url": "https://github.com/shopware/shopware/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "shopware", "entity_type": "system", "display_name": "Shopware", "parent_entity_id": null, "root_system_id": "shopware", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "6.7.8.2", "version_scheme": "vendor", "latest_release_at": "2026-03-18T15:05:49Z", "latest_release_url": "https://github.com/shopware/shopware/releases/tag/v6.7.8.2", "version_source_refs": [ "https://github.com/login?return_to=%2Fshopware%2Fshopware" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [ "Shopware Security Advisories" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-20T01:37:25+00:00", "last_synced_at": "2025-04-20T01:37:25+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 71, "workflow_complete_advisory_count": 71, "version_mapped_advisory_count": 0, "first_advisory_at": "2017-04-21T20:59:00+00:00", "latest_advisory_at": "2025-04-20T01:37:25+00:00", "advisory_ids": [ "shopware--0cb639c8df", "shopware--1445c0c00a", "shopware--166d8db678", "shopware--210c487342", "shopware--4afc0aae28", "shopware--57d591fbaa", "shopware--6599dde67b", "shopware--68336e295b", "shopware--6e4f6e4afb", "shopware--7ceba0fbae", "shopware--7e1366732b", "shopware--8b0027b775", "shopware--9203c7e616", "shopware--966863ab2d", "shopware--9cc76a0615", "shopware--CVE-2016-3109", "shopware--CVE-2017-15374", "shopware--CVE-2017-18357", "shopware--CVE-2018-20713", "shopware--CVE-2019-12799", "shopware--CVE-2019-12935", "shopware--CVE-2020-13970", "shopware--CVE-2020-13971", "shopware--CVE-2020-13997", "shopware--CVE-2020-28199", "shopware--CVE-2021-32709", "shopware--CVE-2021-32710", "shopware--CVE-2021-32711", "shopware--CVE-2021-32712", "shopware--CVE-2021-32713", "shopware--CVE-2021-32716", "shopware--CVE-2021-32717", "shopware--CVE-2021-37707", "shopware--CVE-2021-37708", "shopware--CVE-2021-37709", "shopware--CVE-2021-37710", "shopware--CVE-2021-41188", "shopware--CVE-2022-21651", "shopware--CVE-2022-21652", "shopware--CVE-2022-24744", "shopware--CVE-2022-24745", "shopware--CVE-2022-24746", "shopware--CVE-2022-24747", "shopware--CVE-2022-24748", "shopware--CVE-2022-24871", "shopware--CVE-2022-24872", "shopware--CVE-2022-24873", "shopware--CVE-2022-24879", "shopware--CVE-2022-24892", "shopware--CVE-2022-24956", "shopware--CVE-2022-31057", "shopware--CVE-2022-31148", "shopware--CVE-2022-36101", "shopware--CVE-2022-36102", "shopware--CVE-2023-22730", "shopware--ac322cd050", "shopware--b3cad63289", "shopware--b6516ddaa8", "shopware--b6c8a4aa31", "shopware--b89c99e036", "shopware--c611c6d9a5", "shopware--c6d55e5d34", "shopware--ccdc5e2235", "shopware--cefaaefd27", "shopware--dac63eff72", "shopware--dc0d63a152", "shopware--ecd78f9e67", "shopware--f3ea19ae1d", "shopware--f8b6b65918", "shopware--fad367ec4b", "shopware--fb83697aae" ], "source_refs": [ { "name": "Shopware Security Advisories", "url": "https://github.com/shopware/shopware/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Shopware", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Shopware", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "spring-boot--project--org-springframework-boot-spring-boot", "entity_type": "project", "display_name": "org.springframework.boot:spring-boot", "parent_entity_id": "spring-boot", "root_system_id": "spring-boot", "category": "frameworks", "ecosystem": "org.springframework.boot:spring-boot", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/org.springframework.boot:spring-boot", "marketplace_url": "", "latest_version": "2.2.11.RELEASE", "version_scheme": "semver-ish", "latest_release_at": "2026-03-13T21:59:19.426456Z", "latest_release_url": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85", "version_source_refs": [ "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85" ], "version_sync_status": "green", "security_version_count": 22, "last_version_synced_at": "2026-04-02T09:18:44+00:00", "latest_version_evidence": [ "advisory-fixed-version", "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T21:59:19+00:00", "last_synced_at": "2026-03-13T21:59:19+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2022-07-11T20:59:02+00:00", "latest_advisory_at": "2026-03-13T21:59:19+00:00", "advisory_ids": [ "spring-boot--CVE-2022-27772" ], "source_refs": [] }, { "entity_id": "spring-boot", "entity_type": "system", "display_name": "Spring Boot", "parent_entity_id": null, "root_system_id": "spring-boot", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2.2.11.RELEASE", "version_scheme": "vendor", "latest_release_at": "2026-03-13T21:59:19.426456Z", "latest_release_url": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 22, "last_version_synced_at": "2026-04-02T09:18:43+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T21:59:19+00:00", "last_synced_at": "2026-03-13T21:59:19+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 1, "first_advisory_at": "2022-07-11T20:59:02+00:00", "latest_advisory_at": "2026-03-13T21:59:19+00:00", "advisory_ids": [ "spring-boot--0f2728a088", "spring-boot--CVE-2022-27772" ], "source_refs": [ { "name": "Spring Security Advisories", "url": "https://spring.io/security", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Spring Boot", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "spring-framework", "entity_type": "system", "display_name": "Spring Framework", "parent_entity_id": null, "root_system_id": "spring-framework", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:44+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 11, "workflow_complete_advisory_count": 11, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "spring-framework--138983e8a8", "spring-framework--1cce2f0e27", "spring-framework--38d4e91fa6", "spring-framework--390b9499b1", "spring-framework--7817f6fd2f", "spring-framework--99395e049e", "spring-framework--ced42291b6", "spring-framework--ddd48c93c1", "spring-framework--e0221e4183", "spring-framework--ed688dadf5", "spring-framework--f5790eb958" ], "source_refs": [ { "name": "Spring Security Advisories", "url": "https://spring.io/security", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Spring Framework", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "spring-security--project--org-springframework-security-spring-security-web", "entity_type": "project", "display_name": "org.springframework.security:spring-security-web", "parent_entity_id": "spring-security", "root_system_id": "spring-security", "category": "frameworks", "ecosystem": "org.springframework.security:spring-security-web", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/org.springframework.security:spring-security-web", "marketplace_url": "", "latest_version": "7.0.4", "version_scheme": "semver-ish", "latest_release_at": "2026-03-25T19:59:15.827722Z", "latest_release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22732", "version_source_refs": [ "https://nvd.nist.gov/vuln/detail/CVE-2026-22732" ], "version_sync_status": "green", "security_version_count": 92, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "advisory-fixed-version", "https://nvd.nist.gov/vuln/detail/CVE-2026-22732" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-20T20:46:26+00:00", "last_synced_at": "2026-03-20T20:46:26+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-03-20T00:31:28+00:00", "latest_advisory_at": "2026-03-25T19:59:15+00:00", "advisory_ids": [ "spring-security--CVE-2026-22732" ], "source_refs": [] }, { "entity_id": "spring-security", "entity_type": "system", "display_name": "Spring Security", "parent_entity_id": null, "root_system_id": "spring-security", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "7.0.4", "version_scheme": "vendor", "latest_release_at": "2026-03-25T19:59:15.827722Z", "latest_release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22732", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 92, "last_version_synced_at": "2026-04-02T09:18:44+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-20T20:46:26+00:00", "last_synced_at": "2026-03-20T20:46:26+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 4, "workflow_complete_advisory_count": 4, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-03-20T00:31:28+00:00", "latest_advisory_at": "2026-03-25T19:59:15+00:00", "advisory_ids": [ "spring-security--3da31f4883", "spring-security--7817f6fd2f", "spring-security--9516ccd1a4", "spring-security--CVE-2026-22732" ], "source_refs": [ { "name": "Spring Security Advisories", "url": "https://spring.io/security", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Spring Security", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "strapi--repo--strapi-strapi", "entity_type": "repo", "display_name": "strapi / strapi", "parent_entity_id": "strapi", "root_system_id": "strapi", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/strapi/strapi", "package_registry": "", "marketplace_url": "", "latest_version": "5.41.1", "version_scheme": "semver-ish", "latest_release_at": "2026-04-01T09:55:43Z", "latest_release_url": "https://github.com/strapi/strapi/releases/tag/v5.41.1", "version_source_refs": [ "https://github.com/strapi/strapi/releases/tag/v5.40.0", "https://github.com/login?return_to=%2Fstrapi%2Fstrapi", "https://github.com/strapi/strapi/releases/tag/v5.41.0", "https://github.com/strapi/strapi/releases/tag/v5.41.1" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "GitHub Releases API", "Strapi GitHub Advisories" ], "catalog_source": "Strapi GitHub Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "Strapi GitHub Advisories", "url": "https://github.com/strapi/strapi/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "strapi", "entity_type": "system", "display_name": "Strapi", "parent_entity_id": null, "root_system_id": "strapi", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "5.41.1", "version_scheme": "vendor", "latest_release_at": "2026-04-01T09:55:43Z", "latest_release_url": "https://github.com/strapi/strapi/releases/tag/v5.41.1", "version_source_refs": [ "https://github.com/login?return_to=%2Fstrapi%2Fstrapi" ], "version_sync_status": "green", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "Strapi GitHub Advisories" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 26, "workflow_complete_advisory_count": 26, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [ "strapi--05ba9bef79", "strapi--1473dee955", "strapi--197f0bbd33", "strapi--24f8b59ff9", "strapi--2db1a8c04f", "strapi--3eebee5d89", "strapi--48a214349c", "strapi--4b6da3fb0f", "strapi--622329861e", "strapi--624ccd57fe", "strapi--87ddb42a69", "strapi--889fa1f744", "strapi--8fa6768ba1", "strapi--917bb8917b", "strapi--9f4a582896", "strapi--b269e71df1", "strapi--b31a6ebd6c", "strapi--b50d0f7842", "strapi--b7319d090f", "strapi--bafe5f7634", "strapi--bde77c915a", "strapi--bdf9253f45", "strapi--c4a353b074", "strapi--cc8d7c3c7a", "strapi--e52f38e110", "strapi--ea5ecc42f3" ], "source_refs": [ { "name": "Strapi GitHub Advisories", "url": "https://github.com/strapi/strapi/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "OSV Strapi", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "sveltekit--package--sveltejs-kit", "entity_type": "package", "display_name": "sveltejs / kit", "parent_entity_id": "sveltekit", "root_system_id": "sveltekit", "category": "frameworks", "ecosystem": "@sveltejs", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/@sveltejs/kit", "marketplace_url": "", "latest_version": "2.55.0", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/@sveltejs/kit", "version_source_refs": [ "https://www.npmjs.com/package/@sveltejs/kit", "https://github.com/sveltejs/kit/security/advisories/GHSA-88qp-p4qg-rqm6", "https://github.com/sveltejs/kit/security/advisories/GHSA-fpg4-jhqr-589c" ], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/sveltejs/kit/security/advisories/GHSA-88qp-p4qg-rqm6", "https://github.com/sveltejs/kit/security/advisories/GHSA-fpg4-jhqr-589c" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-28T06:27:26+00:00", "last_synced_at": "2026-02-28T06:27:26+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 3, "workflow_complete_advisory_count": 3, "version_mapped_advisory_count": 3, "first_advisory_at": "2026-02-19T20:29:42+00:00", "latest_advisory_at": "2026-02-28T06:27:26+00:00", "advisory_ids": [ "sveltekit--GHSA-88qp-p4qg-rqm6", "sveltekit--GHSA-fpg4-jhqr-589c", "sveltekit--GHSA-vrhm-gvg7-fpcf" ], "source_refs": [] }, { "entity_id": "sveltekit", "entity_type": "system", "display_name": "SvelteKit", "parent_entity_id": null, "root_system_id": "sveltekit", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "2.55.0", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/@sveltejs/kit", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-28T06:27:26+00:00", "last_synced_at": "2026-02-28T06:27:26+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 3, "workflow_complete_advisory_count": 3, "version_mapped_advisory_count": 3, "first_advisory_at": "2026-02-19T20:29:42+00:00", "latest_advisory_at": "2026-02-28T06:27:26+00:00", "advisory_ids": [ "sveltekit--GHSA-88qp-p4qg-rqm6", "sveltekit--GHSA-fpg4-jhqr-589c", "sveltekit--GHSA-vrhm-gvg7-fpcf" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV SvelteKit", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "symfony--package--symfony-symfony", "entity_type": "package", "display_name": "symfony / symfony", "parent_entity_id": "symfony", "root_system_id": "symfony", "category": "frameworks", "ecosystem": "symfony", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/symfony/symfony", "package_registry": "https://packagist.org/packages/symfony/symfony", "marketplace_url": "", "latest_version": "8.0.8", "version_scheme": "semver-ish", "latest_release_at": "2026-03-31T21:14:58+00:00", "latest_release_url": "https://packagist.org/packages/symfony/symfony", "version_source_refs": [ "https://packagist.org/packages/symfony/symfony", "https://github.com/symfony/symfony/security/advisories/GHSA-5pv8-ppvj-4h68" ], "version_sync_status": "green", "security_version_count": 220, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "Packagist p2", "https://github.com/symfony/symfony/security/advisories/GHSA-5pv8-ppvj-4h68" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T22:16:14+00:00", "last_synced_at": "2026-03-13T22:16:14+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 9, "workflow_complete_advisory_count": 9, "version_mapped_advisory_count": 9, "first_advisory_at": "2020-03-30T20:09:16+00:00", "latest_advisory_at": "2026-03-13T22:16:14+00:00", "advisory_ids": [ "symfony--CVE-2020-15094", "symfony--CVE-2020-5255", "symfony--CVE-2020-5274", "symfony--CVE-2020-5275", "symfony--CVE-2021-21424", "symfony--CVE-2021-32693", "symfony--CVE-2021-41267", "symfony--CVE-2021-41268", "symfony--CVE-2021-41270" ], "source_refs": [] }, { "entity_id": "symfony", "entity_type": "system", "display_name": "Symfony", "parent_entity_id": null, "root_system_id": "symfony", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "8.0.8", "version_scheme": "vendor", "latest_release_at": "2026-03-31T21:14:58+00:00", "latest_release_url": "https://packagist.org/packages/symfony/symfony", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 220, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-13T22:16:14+00:00", "last_synced_at": "2026-03-13T22:16:14+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 9, "workflow_complete_advisory_count": 9, "version_mapped_advisory_count": 9, "first_advisory_at": "2020-03-30T20:09:16+00:00", "latest_advisory_at": "2026-03-13T22:16:14+00:00", "advisory_ids": [ "symfony--CVE-2020-15094", "symfony--CVE-2020-5255", "symfony--CVE-2020-5274", "symfony--CVE-2020-5275", "symfony--CVE-2021-21424", "symfony--CVE-2021-32693", "symfony--CVE-2021-41267", "symfony--CVE-2021-41268", "symfony--CVE-2021-41270" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Symfony", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "traefik--extension--github-com-traefik-traefik-v3", "entity_type": "extension", "display_name": "traefik / traefik / v3", "parent_entity_id": "traefik", "root_system_id": "traefik", "category": "servers", "ecosystem": "github.com", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/traefik/traefik", "package_registry": "", "marketplace_url": "", "latest_version": "3.7.0-ea.3", "version_scheme": "semver-ish", "latest_release_at": "2026-03-26T11:10:20Z", "latest_release_url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3", "version_source_refs": [ "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.2", "https://github.com/traefik/traefik/security/advisories/GHSA-wvvq-wgcr-9q48", "https://github.com/traefik/traefik/releases/tag/v2.11.42", "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3" ], "version_sync_status": "green", "security_version_count": 8, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "GitHub Releases API", "https://github.com/traefik/traefik/security/advisories/GHSA-wvvq-wgcr-9q48", "advisory-fixed-version" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-20T15:46:41+00:00", "last_synced_at": "2026-03-20T15:46:41+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-03-20T15:43:01+00:00", "latest_advisory_at": "2026-03-23T18:56:07+00:00", "advisory_ids": [ "traefik--CVE-2026-32305" ], "source_refs": [] }, { "entity_id": "traefik--repo--github-com-traefik-traefik-v3", "entity_type": "repo", "display_name": "traefik / traefik / v3", "parent_entity_id": "traefik", "root_system_id": "traefik", "category": "servers", "ecosystem": "github.com", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/traefik/traefik", "package_registry": "", "marketplace_url": "", "latest_version": "3.7.0-ea.3", "version_scheme": "semver-ish", "latest_release_at": "2026-03-26T11:10:20Z", "latest_release_url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3", "version_source_refs": [ "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.2", "https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9", "https://github.com/traefik/traefik/security/advisories/GHSA-8q2w-wr49-whqj", "https://github.com/traefik/traefik/security/advisories/GHSA-62c8-mh53-4cqv", "https://github.com/traefik/traefik/security/advisories/GHSA-hxr6-2p24-hf98", "https://github.com/traefik/traefik/security/advisories/GHSA-6p68-w45g-48j7", "https://github.com/traefik/traefik/security/advisories/GHSA-5423-jcjm-2gpv", "https://github.com/traefik/traefik/security/advisories/GHSA-vrch-868g-9jx5", "https://github.com/traefik/traefik/security/advisories/GHSA-gm3x-23wp-hc2c", "https://github.com/traefik/traefik/security/advisories/GHSA-cwjm-3f7h-9hwq", "https://github.com/traefik/traefik/security/advisories/GHSA-gv8r-9rw9-9697", "https://github.com/traefik/traefik/security/advisories/GHSA-fw45-f5q2-2p4x", "https://github.com/traefik/traefik/security/advisories/GHSA-4hjq-9h5c-252j", "https://github.com/traefik/traefik/security/advisories/GHSA-g3hg-j4jv-cwfr", "https://github.com/traefik/traefik/security/advisories/GHSA-89p3-4642-cr2w", "https://github.com/traefik/traefik/releases/tag/v2.11.42", "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3", "https://github.com/traefik/traefik/security/advisories/GHSA-qr99-7898-vr7c", "https://github.com/traefik/traefik/security/advisories/GHSA-67jx-r9pv-98rj" ], "version_sync_status": "green", "security_version_count": 63, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "GitHub Releases API", "https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9", "https://github.com/traefik/traefik/security/advisories/GHSA-8q2w-wr49-whqj", "https://github.com/traefik/traefik/security/advisories/GHSA-62c8-mh53-4cqv", "https://github.com/traefik/traefik/security/advisories/GHSA-hxr6-2p24-hf98", "https://github.com/traefik/traefik/security/advisories/GHSA-6p68-w45g-48j7", "https://github.com/traefik/traefik/security/advisories/GHSA-5423-jcjm-2gpv", "https://github.com/traefik/traefik/security/advisories/GHSA-vrch-868g-9jx5", "https://github.com/traefik/traefik/security/advisories/GHSA-gm3x-23wp-hc2c", "https://github.com/traefik/traefik/security/advisories/GHSA-cwjm-3f7h-9hwq", "https://github.com/traefik/traefik/security/advisories/GHSA-gv8r-9rw9-9697", "https://github.com/traefik/traefik/security/advisories/GHSA-fw45-f5q2-2p4x", "https://github.com/traefik/traefik/security/advisories/GHSA-4hjq-9h5c-252j", "https://github.com/traefik/traefik/security/advisories/GHSA-g3hg-j4jv-cwfr", "https://github.com/traefik/traefik/security/advisories/GHSA-89p3-4642-cr2w", "advisory-fixed-version", "https://github.com/traefik/traefik/security/advisories/GHSA-qr99-7898-vr7c", "https://github.com/traefik/traefik/security/advisories/GHSA-67jx-r9pv-98rj" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-20T15:46:26+00:00", "last_synced_at": "2026-03-20T15:46:26+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 20, "workflow_complete_advisory_count": 20, "version_mapped_advisory_count": 20, "first_advisory_at": "2024-07-09T19:34:07+00:00", "latest_advisory_at": "2026-03-29T15:49:22+00:00", "advisory_ids": [ "traefik--CVE-2024-39321", "traefik--CVE-2024-45410", "traefik--CVE-2025-32431", "traefik--CVE-2025-47952", "traefik--CVE-2025-66490", "traefik--CVE-2025-66491", "traefik--CVE-2026-22045", "traefik--CVE-2026-25949", "traefik--CVE-2026-26998", "traefik--CVE-2026-26999", "traefik--CVE-2026-29054", "traefik--CVE-2026-29777", "traefik--CVE-2026-32595", "traefik--CVE-2026-32695", "traefik--CVE-2026-33433", "traefik--GHSA-46wh-3698-f2cx", "traefik--GHSA-4hjq-9h5c-252j", "traefik--GHSA-5423-jcjm-2gpv", "traefik--GHSA-gv8r-9rw9-9697", "traefik--GHSA-hxr6-2p24-hf98" ], "source_refs": [] }, { "entity_id": "traefik", "entity_type": "system", "display_name": "Traefik", "parent_entity_id": null, "root_system_id": "traefik", "category": "servers", "ecosystem": "servers", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "3.7.0-ea.3", "version_scheme": "vendor", "latest_release_at": "2026-03-26T11:10:20Z", "latest_release_url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 71, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-20T15:46:41+00:00", "last_synced_at": "2026-03-20T15:46:41+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 48, "workflow_complete_advisory_count": 48, "version_mapped_advisory_count": 21, "first_advisory_at": "2024-07-09T19:34:07+00:00", "latest_advisory_at": "2026-03-29T15:49:22+00:00", "advisory_ids": [ "traefik--05879db0a0", "traefik--073109115e", "traefik--0c45d49e68", "traefik--0c5728e780", "traefik--19a385484f", "traefik--215c6d605a", "traefik--28a935b81b", "traefik--29439bed6b", "traefik--2cb326d185", "traefik--4185d7b075", "traefik--453fce835e", "traefik--4bdc904266", "traefik--53e0523390", "traefik--57ed245fc6", "traefik--5c0e05b2c9", "traefik--63f03e3b70", "traefik--7963c083d8", "traefik--7f6abd7d76", "traefik--8031d86f14", "traefik--81ff015a55", "traefik--8ed1821d0e", "traefik--932bc11f0f", "traefik--CVE-2024-39321", "traefik--CVE-2024-45410", "traefik--CVE-2025-32431", "traefik--CVE-2025-47952", "traefik--CVE-2025-66490", "traefik--CVE-2025-66491", "traefik--CVE-2026-22045", "traefik--CVE-2026-25949", "traefik--CVE-2026-26998", "traefik--CVE-2026-26999", "traefik--CVE-2026-29054", "traefik--CVE-2026-29777", "traefik--CVE-2026-32305", "traefik--CVE-2026-32595", "traefik--CVE-2026-32695", "traefik--CVE-2026-33433", "traefik--GHSA-46wh-3698-f2cx", "traefik--GHSA-4hjq-9h5c-252j", "traefik--GHSA-5423-jcjm-2gpv", "traefik--GHSA-gv8r-9rw9-9697", "traefik--GHSA-hxr6-2p24-hf98", "traefik--a2cbd1b1a8", "traefik--ad9aaf4006", "traefik--ba188f1bf7", "traefik--e14e4aace6", "traefik--edfa0dc761" ], "source_refs": [ { "name": "GitHub Traefik Advisories", "url": "https://github.com/traefik/traefik/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Traefik", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "undici--extension--undici", "entity_type": "extension", "display_name": "undici", "parent_entity_id": "undici", "root_system_id": "undici", "category": "frameworks", "ecosystem": "undici", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/undici", "marketplace_url": "", "latest_version": "8.0.0", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/undici", "version_source_refs": [ "https://www.npmjs.com/package/undici", "https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-8vpv-qv8q" ], "version_sync_status": "green", "security_version_count": 4, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-8vpv-qv8q" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-18T22:58:59+00:00", "last_synced_at": "2026-03-18T22:58:59+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 2, "workflow_complete_advisory_count": 2, "version_mapped_advisory_count": 2, "first_advisory_at": "2026-03-13T20:41:41+00:00", "latest_advisory_at": "2026-03-18T22:58:59+00:00", "advisory_ids": [ "undici--CVE-2026-1526", "undici--CVE-2026-2229" ], "source_refs": [] }, { "entity_id": "undici--project--undici", "entity_type": "project", "display_name": "undici", "parent_entity_id": "undici", "root_system_id": "undici", "category": "frameworks", "ecosystem": "undici", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/undici", "marketplace_url": "", "latest_version": "8.0.0", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/undici", "version_source_refs": [ "https://www.npmjs.com/package/undici", "https://github.com/nodejs/undici/security/advisories/GHSA-3cvr-822r-rqcc", "https://github.com/nodejs/undici/security/advisories/GHSA-f772-66g8-q5h3", "https://github.com/nodejs/undici/security/advisories/GHSA-r6ch-mqf9-qc9w", "https://github.com/nodejs/undici/security/advisories/GHSA-3787-6prv-h9w3", "https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-6q6p-2qxm", "https://github.com/nodejs/undici/security/advisories/GHSA-5r9g-qh6m-jxff", "https://github.com/nodejs/undici/security/advisories/GHSA-pgw7-wx7w-2w33", "https://github.com/nodejs/undici/security/advisories/GHSA-9f24-jqhm-jfcw", "https://github.com/nodejs/undici/security/advisories/GHSA-f269-vfmq-vjvj", "https://github.com/nodejs/undici/security/advisories/GHSA-3g92-w8c5-73pq", "https://github.com/nodejs/undici/security/advisories/GHSA-phc3-fgpg-7m6h" ], "version_sync_status": "green", "security_version_count": 21, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/nodejs/undici/security/advisories/GHSA-3cvr-822r-rqcc", "https://github.com/nodejs/undici/security/advisories/GHSA-f772-66g8-q5h3", "https://github.com/nodejs/undici/security/advisories/GHSA-r6ch-mqf9-qc9w", "https://github.com/nodejs/undici/security/advisories/GHSA-3787-6prv-h9w3", "https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-6q6p-2qxm", "https://github.com/nodejs/undici/security/advisories/GHSA-5r9g-qh6m-jxff", "https://github.com/nodejs/undici/security/advisories/GHSA-pgw7-wx7w-2w33", "https://github.com/nodejs/undici/security/advisories/GHSA-9f24-jqhm-jfcw", "https://github.com/nodejs/undici/security/advisories/GHSA-f269-vfmq-vjvj", "https://github.com/nodejs/undici/security/advisories/GHSA-3g92-w8c5-73pq", "https://github.com/nodejs/undici/security/advisories/GHSA-phc3-fgpg-7m6h" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-18T23:58:57+00:00", "last_synced_at": "2026-03-18T23:58:57+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 13, "workflow_complete_advisory_count": 13, "version_mapped_advisory_count": 13, "first_advisory_at": "2022-06-17T01:02:29+00:00", "latest_advisory_at": "2026-03-18T23:58:57+00:00", "advisory_ids": [ "undici--CVE-2022-31150", "undici--CVE-2022-32210", "undici--CVE-2022-35948", "undici--CVE-2022-35949", "undici--CVE-2023-23936", "undici--CVE-2023-24807", "undici--CVE-2024-24750", "undici--CVE-2024-24758", "undici--CVE-2024-38372", "undici--CVE-2026-1525", "undici--CVE-2026-1527", "undici--CVE-2026-1528", "undici--CVE-2026-2581" ], "source_refs": [] }, { "entity_id": "undici", "entity_type": "system", "display_name": "Undici", "parent_entity_id": null, "root_system_id": "undici", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "8.0.0", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/undici", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 25, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-03-18T23:58:57+00:00", "last_synced_at": "2026-03-18T23:58:57+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 16, "workflow_complete_advisory_count": 16, "version_mapped_advisory_count": 15, "first_advisory_at": "2022-06-17T01:02:29+00:00", "latest_advisory_at": "2026-03-18T23:58:57+00:00", "advisory_ids": [ "undici--CVE-2022-31150", "undici--CVE-2022-32210", "undici--CVE-2022-35948", "undici--CVE-2022-35949", "undici--CVE-2023-23936", "undici--CVE-2023-24807", "undici--CVE-2024-24750", "undici--CVE-2024-24758", "undici--CVE-2024-38372", "undici--CVE-2026-1525", "undici--CVE-2026-1526", "undici--CVE-2026-1527", "undici--CVE-2026-1528", "undici--CVE-2026-21636", "undici--CVE-2026-2229", "undici--CVE-2026-2581" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Undici", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD Undici", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "vite--extension--vite", "entity_type": "extension", "display_name": "vite", "parent_entity_id": "vite", "root_system_id": "vite", "category": "frameworks", "ecosystem": "vite", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/vite", "marketplace_url": "", "latest_version": "8.0.3", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/vite", "version_source_refs": [ "https://www.npmjs.com/package/vite", "https://github.com/vitejs/vite/security/advisories/GHSA-jqfw-vq24-v9c3" ], "version_sync_status": "green", "security_version_count": 8, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/vitejs/vite/security/advisories/GHSA-jqfw-vq24-v9c3" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T04:35:16+00:00", "last_synced_at": "2026-02-04T04:35:16+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2025-09-09T20:54:42+00:00", "latest_advisory_at": "2026-02-04T04:35:16+00:00", "advisory_ids": [ "vite--CVE-2025-58752" ], "source_refs": [] }, { "entity_id": "vite--module--vite", "entity_type": "module", "display_name": "vite", "parent_entity_id": "vite", "root_system_id": "vite", "category": "frameworks", "ecosystem": "vite", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/vite", "marketplace_url": "", "latest_version": "8.0.3", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/vite", "version_source_refs": [ "https://www.npmjs.com/package/vite", "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3" ], "version_sync_status": "green", "security_version_count": 12, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T04:04:22+00:00", "last_synced_at": "2026-02-04T04:04:22+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2024-09-17T19:28:01+00:00", "latest_advisory_at": "2026-02-04T04:04:22+00:00", "advisory_ids": [ "vite--CVE-2024-45812" ], "source_refs": [] }, { "entity_id": "vite--plugin--vite", "entity_type": "plugin", "display_name": "vite", "parent_entity_id": "vite", "root_system_id": "vite", "category": "frameworks", "ecosystem": "vite", "official": false, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/vite", "marketplace_url": "", "latest_version": "8.0.3", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/vite", "version_source_refs": [ "https://www.npmjs.com/package/vite", "https://github.com/vitejs/vite/security/advisories/GHSA-vg6x-rcgg-rjx6", "https://github.com/vitejs/vite/security/advisories/GHSA-xcj6-pq6g-qj4x", "https://github.com/vitejs/vite/security/advisories/GHSA-92r3-m2mg-pj97" ], "version_sync_status": "green", "security_version_count": 23, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/vitejs/vite/security/advisories/GHSA-vg6x-rcgg-rjx6", "https://github.com/vitejs/vite/security/advisories/GHSA-xcj6-pq6g-qj4x", "https://github.com/vitejs/vite/security/advisories/GHSA-92r3-m2mg-pj97" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T04:37:03+00:00", "last_synced_at": "2026-02-04T04:37:03+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 3, "workflow_complete_advisory_count": 3, "version_mapped_advisory_count": 3, "first_advisory_at": "2023-12-05T23:31:34+00:00", "latest_advisory_at": "2026-02-04T04:37:03+00:00", "advisory_ids": [ "vite--CVE-2023-49293", "vite--CVE-2025-24010", "vite--CVE-2025-31486" ], "source_refs": [] }, { "entity_id": "vite--project--vite", "entity_type": "project", "display_name": "vite", "parent_entity_id": "vite", "root_system_id": "vite", "category": "frameworks", "ecosystem": "vite", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/vite", "marketplace_url": "", "latest_version": "8.0.3", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/vite", "version_source_refs": [ "https://www.npmjs.com/package/vite", "https://nvd.nist.gov/vuln/detail/CVE-2022-35204", "https://github.com/vitejs/vite/security/advisories/GHSA-353f-5xf4-qw67", "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx", "https://github.com/vitejs/vite/security/advisories/GHSA-x574-m823-4x7w", "https://github.com/vitejs/vite/security/advisories/GHSA-4r4m-qw57-chr8", "https://github.com/vitejs/vite/security/advisories/GHSA-356w-63v5-8wf4", "https://github.com/vitejs/vite/security/advisories/GHSA-859w-5945-r5v3", "https://github.com/vitejs/vite/security/advisories/GHSA-g4jq-h2w9-997c", "https://github.com/vitejs/vite/security/advisories/GHSA-c24v-8rfc-w8vw", "https://github.com/vitejs/vite/security/advisories/GHSA-8jhw-289h-jh2g", "https://github.com/vitejs/vite/security/advisories/GHSA-93m4-6634-74q7" ], "version_sync_status": "green", "security_version_count": 107, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://nvd.nist.gov/vuln/detail/CVE-2022-35204", "https://github.com/vitejs/vite/security/advisories/GHSA-353f-5xf4-qw67", "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx", "https://github.com/vitejs/vite/security/advisories/GHSA-x574-m823-4x7w", "https://github.com/vitejs/vite/security/advisories/GHSA-4r4m-qw57-chr8", "https://github.com/vitejs/vite/security/advisories/GHSA-356w-63v5-8wf4", "https://github.com/vitejs/vite/security/advisories/GHSA-859w-5945-r5v3", "https://github.com/vitejs/vite/security/advisories/GHSA-g4jq-h2w9-997c", "https://github.com/vitejs/vite/security/advisories/GHSA-c24v-8rfc-w8vw", "https://github.com/vitejs/vite/security/advisories/GHSA-8jhw-289h-jh2g", "https://github.com/vitejs/vite/security/advisories/GHSA-93m4-6634-74q7" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T04:37:24+00:00", "last_synced_at": "2026-02-04T04:37:24+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 11, "workflow_complete_advisory_count": 11, "version_mapped_advisory_count": 11, "first_advisory_at": "2022-08-19T00:00:20+00:00", "latest_advisory_at": "2026-02-04T04:37:24+00:00", "advisory_ids": [ "vite--CVE-2022-35204", "vite--CVE-2023-34092", "vite--CVE-2024-23331", "vite--CVE-2024-31207", "vite--CVE-2024-45811", "vite--CVE-2025-30208", "vite--CVE-2025-31125", "vite--CVE-2025-32395", "vite--CVE-2025-46565", "vite--CVE-2025-58751", "vite--CVE-2025-62522" ], "source_refs": [] }, { "entity_id": "vite", "entity_type": "system", "display_name": "Vite", "parent_entity_id": null, "root_system_id": "vite", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "8.0.3", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/vite", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 150, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-04T04:37:24+00:00", "last_synced_at": "2026-02-04T04:37:24+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 42, "workflow_complete_advisory_count": 42, "version_mapped_advisory_count": 16, "first_advisory_at": "2022-08-19T00:00:20+00:00", "latest_advisory_at": "2026-02-04T04:37:24+00:00", "advisory_ids": [ "vite--0431a74cbb", "vite--21a135147f", "vite--3253012d26", "vite--337a6b65a2", "vite--40b8a1cdab", "vite--4bb40e7a4d", "vite--4f488961b3", "vite--6bc7a4e4df", "vite--81409e65ea", "vite--8df264d7be", "vite--8ff9dce727", "vite--90961ad518", "vite--94a2c7491d", "vite--CVE-2022-35204", "vite--CVE-2023-34092", "vite--CVE-2023-49293", "vite--CVE-2024-23331", "vite--CVE-2024-31207", "vite--CVE-2024-45811", "vite--CVE-2024-45812", "vite--CVE-2025-24010", "vite--CVE-2025-30208", "vite--CVE-2025-31125", "vite--CVE-2025-31486", "vite--CVE-2025-32395", "vite--CVE-2025-46565", "vite--CVE-2025-58751", "vite--CVE-2025-58752", "vite--CVE-2025-62522", "vite--a19c63b94a", "vite--a5d4d7e7b8", "vite--a8a73c8f9d", "vite--ac5076e48a", "vite--c076aa0c77", "vite--c181eacd2f", "vite--c7ed487a58", "vite--ce431f1b64", "vite--dd15f3bb5d", "vite--f14ce960b5", "vite--f4eeb2b362", "vite--f81e537cca", "vite--fbafab7f7a" ], "source_refs": [ { "name": "Vite Security", "url": "https://github.com/vitejs/vite/security/advisories", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Vite", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "vue--project--vue", "entity_type": "project", "display_name": "vue", "parent_entity_id": "vue", "root_system_id": "vue", "category": "frameworks", "ecosystem": "vue", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/vue", "marketplace_url": "", "latest_version": "3.5.31", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/vue", "version_source_refs": [ "https://www.npmjs.com/package/vue", "https://nvd.nist.gov/vuln/detail/CVE-2024-9506" ], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://nvd.nist.gov/vuln/detail/CVE-2024-9506" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2024-10-24T19:12:14+00:00", "last_synced_at": "2024-10-24T19:12:14+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2024-10-15T18:30:50+00:00", "latest_advisory_at": "2024-10-24T19:12:14+00:00", "advisory_ids": [ "vue--CVE-2024-9506" ], "source_refs": [] }, { "entity_id": "vue", "entity_type": "system", "display_name": "Vue", "parent_entity_id": null, "root_system_id": "vue", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "3.5.31", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/vue", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 2, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2024-10-24T19:12:14+00:00", "last_synced_at": "2024-10-24T19:12:14+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 15, "workflow_complete_advisory_count": 15, "version_mapped_advisory_count": 1, "first_advisory_at": "2024-10-15T18:30:50+00:00", "latest_advisory_at": "2024-10-24T19:12:14+00:00", "advisory_ids": [ "vue--1570e8326d", "vue--33e104491f", "vue--38ca26476d", "vue--45b610d81b", "vue--4ae8f41666", "vue--62b649ac4a", "vue--7dea132a68", "vue--8620f396c9", "vue--CVE-2024-9506", "vue--ad807381e3", "vue--bc08de2ce3", "vue--ca53856ac2", "vue--e1b1ddcdb9", "vue--ea962ad50f", "vue--fda8b59364" ], "source_refs": [ { "name": "Vue Security", "url": "https://github.com/vuejs/core/security", "kind": "html-links", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV Vue", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "webpack", "entity_type": "system", "display_name": "webpack", "parent_entity_id": null, "root_system_id": "webpack", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "", "version_source_refs": [], "version_sync_status": "source-gap", "security_version_count": 0, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-27T17:21:22+00:00", "last_synced_at": "2026-02-27T17:21:22+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 0, "first_advisory_at": "2026-02-26T02:16:21+00:00", "latest_advisory_at": "2026-02-27T17:21:22+00:00", "advisory_ids": [ "webpack--CVE-2026-27903" ], "source_refs": [ { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV webpack", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD webpack", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "werkzeug--project--werkzeug", "entity_type": "project", "display_name": "werkzeug", "parent_entity_id": "werkzeug", "root_system_id": "werkzeug", "category": "frameworks", "ecosystem": "werkzeug", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "https://www.npmjs.com/package/werkzeug", "marketplace_url": "", "latest_version": "0.0.15", "version_scheme": "semver-ish", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/werkzeug", "version_source_refs": [ "https://www.npmjs.com/package/werkzeug", "https://github.com/pallets/werkzeug/security/advisories/GHSA-29vq-49wr-vm6x" ], "version_sync_status": "green", "security_version_count": 22, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "npm latest", "https://github.com/pallets/werkzeug/security/advisories/GHSA-29vq-49wr-vm6x" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-23T23:43:27+00:00", "last_synced_at": "2026-02-23T23:43:27+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-02-19T20:32:45+00:00", "latest_advisory_at": "2026-02-23T23:43:27+00:00", "advisory_ids": [ "werkzeug--CVE-2026-27199" ], "source_refs": [] }, { "entity_id": "werkzeug", "entity_type": "system", "display_name": "Werkzeug", "parent_entity_id": null, "root_system_id": "werkzeug", "category": "frameworks", "ecosystem": "frameworks", "official": true, "status": "cataloged", "history_policy": "rolling-24m", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "0.0.15", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://www.npmjs.com/package/werkzeug", "version_source_refs": [], "version_sync_status": "green", "security_version_count": 22, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2026-02-23T23:43:27+00:00", "last_synced_at": "2026-02-23T23:43:27+00:00", "history_backfill_status": "seeded", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 1, "workflow_complete_advisory_count": 1, "version_mapped_advisory_count": 1, "first_advisory_at": "2026-02-19T20:32:45+00:00", "latest_advisory_at": "2026-02-23T23:43:27+00:00", "advisory_ids": [ "werkzeug--CVE-2026-27199" ], "source_refs": [ { "name": "OSV Werkzeug", "url": null, "kind": "osv-batch", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub Global Advisories", "url": null, "kind": "ghsa-global", "status": "retired", "bucket": "official_sources", "official": true } ] }, { "entity_id": "woocommerce--repo--woocommerce-woocommerce", "entity_type": "repo", "display_name": "woocommerce / woocommerce", "parent_entity_id": "woocommerce", "root_system_id": "woocommerce", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "https://github.com/woocommerce/woocommerce", "package_registry": "", "marketplace_url": "", "latest_version": "10.6.2", "version_scheme": "semver-ish", "latest_release_at": "2026-03-31T18:21:02Z", "latest_release_url": "https://github.com/woocommerce/woocommerce/releases/tag/10.6.2", "version_source_refs": [ "https://github.com/woocommerce/woocommerce/releases/tag/10.6.1", "https://patchstack.com/database/wordpress/plugin/wc-carta-docente/vulnerability/wordpress-ilghera-carta-docente-for-woocommerce-plugin-1-5-0-authenticated-administrator-path-traversal-to-arbitrary-file-deletion-via-cert-parameter-vulnerability", "https://developer.woocommerce.com/2026/03/02/store-api-vulnerability-patched-in-woocommerce-5-4/", "https://developer.woocommerce.com/2026/02/16/hpos-sync-on-read-to-be-disabled-by-default-in-woocommerce-10-7/", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-10-incorrect-authorization-to-unauthenticated-information-exposure-and-data-manipulation-vulnerability", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-limited-remote-code-execution-vulnerability", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-to-data-export-vulnerability", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-vulnerability", "https://patchstack.com/database/wordpress/plugin/woo-product-filter/vulnerability/wordpress-product-filter-for-woocommerce-by-wbw-plugin-3-1-2-missing-authorization-to-unauthenticated-filter-data-deletion-via-truncate-table-vulnerability", "https://patchstack.com/database/wordpress/plugin/woo-custom-product-addons-pro/vulnerability/wordpress-woocommerce-custom-product-addons-pro-plugin-5-4-1-unauthenticated-remote-code-execution-via-custom-pricing-formula-vulnerability", "https://patchstack.com/database/wordpress/plugin/woocommerce-payments/vulnerability/wordpress-woopayments-plugin-10-5-1-missing-authorization-to-unauthenticated-plugin-settings-update-via-save-upe-appearance-ajax-vulnerability", "https://github.com/woocommerce/woocommerce/releases/tag/10.6.2", "https://patchstack.com/database/wordpress/plugin/woc-order-alert/vulnerability/wordpress-order-notification-for-woocommerce-plugin-3-6-3-unauthenticated-woocommerce-rest-permission-bypass-vulnerability" ], "version_sync_status": "green", "security_version_count": 5, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "GitHub Releases API", "Patchstack Database", "Woo Developer Advisories" ], "catalog_source": "GitHub WooCommerce Advisories", "catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled", "auto_cataloged": true, "last_discovered_at": "", "last_synced_at": "", "history_backfill_status": "pending", "latest_sync_status": "pending", "official_source_covered": false, "advisory_count": 0, "workflow_complete_advisory_count": 0, "version_mapped_advisory_count": 0, "first_advisory_at": "", "latest_advisory_at": "", "advisory_ids": [], "source_refs": [ { "name": "GitHub WooCommerce Advisories", "url": "https://github.com/woocommerce/woocommerce/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true } ] }, { "entity_id": "woocommerce", "entity_type": "system", "display_name": "WooCommerce", "parent_entity_id": null, "root_system_id": "woocommerce", "category": "ecommerce", "ecosystem": "ecommerce", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "10.6.2", "version_scheme": "vendor", "latest_release_at": "2026-03-31T18:21:02Z", "latest_release_url": "https://github.com/woocommerce/woocommerce/releases/tag/10.6.2", "version_source_refs": [ "https://developer.woocommerce.com/2026/02/16/hpos-sync-on-read-to-be-disabled-by-default-in-woocommerce-10-7/", "https://patchstack.com/database/wordpress/plugin/wc-carta-docente/vulnerability/wordpress-ilghera-carta-docente-for-woocommerce-plugin-1-5-0-authenticated-administrator-path-traversal-to-arbitrary-file-deletion-via-cert-parameter-vulnerability", "https://developer.woocommerce.com/2026/03/02/store-api-vulnerability-patched-in-woocommerce-5-4/", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-10-incorrect-authorization-to-unauthenticated-information-exposure-and-data-manipulation-vulnerability", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-limited-remote-code-execution-vulnerability", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-to-data-export-vulnerability", "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-vulnerability", "https://patchstack.com/database/wordpress/plugin/woo-product-filter/vulnerability/wordpress-product-filter-for-woocommerce-by-wbw-plugin-3-1-2-missing-authorization-to-unauthenticated-filter-data-deletion-via-truncate-table-vulnerability", "https://patchstack.com/database/wordpress/plugin/woo-custom-product-addons-pro/vulnerability/wordpress-woocommerce-custom-product-addons-pro-plugin-5-4-1-unauthenticated-remote-code-execution-via-custom-pricing-formula-vulnerability", "https://patchstack.com/database/wordpress/plugin/woocommerce-payments/vulnerability/wordpress-woopayments-plugin-10-5-1-missing-authorization-to-unauthenticated-plugin-settings-update-via-save-upe-appearance-ajax-vulnerability", "https://patchstack.com/database/wordpress/plugin/woc-order-alert/vulnerability/wordpress-order-notification-for-woocommerce-plugin-3-6-3-unauthenticated-woocommerce-rest-permission-bypass-vulnerability" ], "version_sync_status": "green", "security_version_count": 5, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "Woo Developer Advisories", "Patchstack Database" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-20T01:37:25+00:00", "last_synced_at": "2025-04-20T01:37:25+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 111, "workflow_complete_advisory_count": 111, "version_mapped_advisory_count": 0, "first_advisory_at": "2014-07-02T20:55:06+00:00", "latest_advisory_at": "2025-04-20T01:37:25+00:00", "advisory_ids": [ "woocommerce--05da41121f", "woocommerce--06e151b334", "woocommerce--08ab0e40fd", "woocommerce--08ff88b89e", "woocommerce--1129617837", "woocommerce--18f94418c3", "woocommerce--1b2a89ca9c", "woocommerce--2646cca050", "woocommerce--2acb79d818", "woocommerce--30c7084831", "woocommerce--313be91ecc", "woocommerce--35d1bcc8fd", "woocommerce--38e031b62a", "woocommerce--3b3ee22bdd", "woocommerce--3d4415cd8c", "woocommerce--3f7bcf6460", "woocommerce--40fad2352c", "woocommerce--46dfa1debb", "woocommerce--4703641b3e", "woocommerce--4b8901521b", "woocommerce--4e5d64d078", "woocommerce--509829ee63", "woocommerce--5431e35cb9", "woocommerce--583e91c778", "woocommerce--5ea81bed02", "woocommerce--5ebeb363ab", "woocommerce--5f95d49feb", "woocommerce--608614d706", "woocommerce--61bcf00c63", "woocommerce--6398a77e67", "woocommerce--669aeb4ed9", "woocommerce--69fa3cd79b", "woocommerce--6a9eb36c09", "woocommerce--6c455c6050", "woocommerce--6f6549cea3", "woocommerce--6ff424270d", "woocommerce--7f9ac413c1", "woocommerce--8197f55ac4", "woocommerce--81f7400465", "woocommerce--82db1502da", "woocommerce--8aa1dccc64", "woocommerce--94b883541e", "woocommerce--9848665054", "woocommerce--9b9e3ff8e5", "woocommerce--9c50136dd9", "woocommerce--CVE-2014-4549", "woocommerce--CVE-2014-4558", "woocommerce--CVE-2014-6313", "woocommerce--CVE-2015-2069", "woocommerce--CVE-2015-2329", "woocommerce--CVE-2015-5065", "woocommerce--CVE-2016-10112", "woocommerce--CVE-2016-10922", "woocommerce--CVE-2016-10923", "woocommerce--CVE-2016-10935", "woocommerce--CVE-2017-17058", "woocommerce--CVE-2017-18356", "woocommerce--CVE-2017-18506", "woocommerce--CVE-2017-18592", "woocommerce--CVE-2018-11485", "woocommerce--CVE-2018-11486", "woocommerce--CVE-2018-11525", "woocommerce--CVE-2018-11579", "woocommerce--CVE-2018-20714", "woocommerce--CVE-2018-20782", "woocommerce--CVE-2018-20966", "woocommerce--CVE-2018-5316", "woocommerce--CVE-2018-8710", "woocommerce--CVE-2018-8711", "woocommerce--CVE-2019-1010124", "woocommerce--CVE-2019-11807", "woocommerce--CVE-2019-14774", "woocommerce--CVE-2019-14796", "woocommerce--CVE-2019-14948", "woocommerce--CVE-2019-14978", "woocommerce--CVE-2019-14979", "woocommerce--CVE-2019-15092", "woocommerce--CVE-2019-18668", "woocommerce--CVE-2019-18834", "woocommerce--CVE-2019-20891", "woocommerce--CVE-2019-5979", "woocommerce--CVE-2019-7441", "woocommerce--CVE-2019-9168", "woocommerce--CVE-2020-11727", "woocommerce--CVE-2020-8819", "woocommerce--a130ac93bb", "woocommerce--a72c466a05", "woocommerce--a89ba1be4d", "woocommerce--aa9bdbc2ce", "woocommerce--aabb0dbc7f", "woocommerce--ab923ae740", "woocommerce--ac4a14e633", "woocommerce--ac8969a095", "woocommerce--b0bcd8ad54", "woocommerce--b19dfd0a1c", "woocommerce--b213245e4b", "woocommerce--bc8055b458", "woocommerce--c4c5c5cb89", "woocommerce--d01b27ef60", "woocommerce--d3da259278", "woocommerce--d717626a6f", "woocommerce--dd8265593a", "woocommerce--e0fa01b204", "woocommerce--e2b8d0d0e4", "woocommerce--e8abb34bbb", "woocommerce--eb8448be50", "woocommerce--ec096f5867", "woocommerce--ef0c884c7a", "woocommerce--ef9e14861f", "woocommerce--f0e42669e3", "woocommerce--fe6541027e" ], "source_refs": [ { "name": "Woo Developer Advisories", "url": "https://developer.woocommerce.com/", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "GitHub WooCommerce Advisories", "url": "https://github.com/woocommerce/woocommerce/security/advisories", "kind": "html-links", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD WooCommerce", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "OSV WooCommerce", "url": null, "kind": "osv-batch", "status": "active", "bucket": "ecosystem_sources", "official": false }, { "name": "Patchstack Database", "url": "https://patchstack.com/database/", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false }, { "name": "Wordfence Vulnerability Database", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false } ] }, { "entity_id": "wordpress", "entity_type": "system", "display_name": "WordPress", "parent_entity_id": null, "root_system_id": "wordpress", "category": "cms", "ecosystem": "cms", "official": true, "status": "cataloged", "history_policy": "history-full", "repo_url": "", "package_registry": "", "marketplace_url": "", "latest_version": "51.1.53", "version_scheme": "vendor", "latest_release_at": "", "latest_release_url": "https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-38-authenticated-contributor-dom-based-stored-cross-site-scripting-via-multiple-widgets-vulnerability", "version_source_refs": [ "https://wpscan.com/blog/object-injection-vulnerability-fixed-in-seopress-7-9/", "https://patchstack.com/database/wordpress/plugin/ft-rockpress/vulnerability/wordpress-rockpress-plugin-1-0-17-missing-authorization-to-authenticated-subscriber-arbitrary-modification-via-ajax-actions-vulnerability", "https://patchstack.com/database/wordpress/plugin/instant-popup-builder/vulnerability/wordpress-instant-popup-builder-plugin-1-1-7-unauthenticated-arbitrary-shortcode-execution-via-token-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/cm-custom-reports/vulnerability/wordpress-cm-custom-reports-plugin-1-2-7-authenticated-administrator-stored-cross-site-scripting-via-plugin-labels-vulnerability", "https://patchstack.com/database/wordpress/plugin/wc-carta-docente/vulnerability/wordpress-ilghera-carta-docente-for-woocommerce-plugin-1-5-0-authenticated-administrator-path-traversal-to-arbitrary-file-deletion-via-cert-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/emailkit/vulnerability/wordpress-emailkit-plugin-1-6-3-authenticated-administrator-path-traversal-via-emailkit-editor-template-rest-api-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/simply-schedule-appointments/vulnerability/wordpress-appointment-booking-calendar-plugin-1-6-10-0-unauthenticated-sql-injection-via-fields-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/alt-manager/vulnerability/wordpress-image-alt-text-manager-plugin-1-8-2-authenticated-author-stored-cross-site-scripting-via-post-title-vulnerability", "https://patchstack.com/database/wordpress/plugin/add-custom-fields-to-media/vulnerability/wordpress-add-custom-fields-to-media-plugin-2-0-3-cross-site-request-forgery-to-custom-field-deletion-via-delete-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/info-cards/vulnerability/wordpress-info-cards-plugin-2-0-7-authenticated-contributor-stored-cross-site-scripting-via-block-attributes-vulnerability", "https://patchstack.com/database/wordpress/plugin/keep-backup-daily/vulnerability/wordpress-keep-backup-daily-plugin-2-1-1-authenticated-admin-limited-path-traversal-via-kbd-path-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/linksy-search-and-replace/vulnerability/wordpress-linksy-search-and-replace-plugin-1-0-4-missing-authorization-to-authenticated-subscriber-arbitrary-database-update-via-linksy-search-and-replace-item-details-vulnerability", "https://patchstack.com/database/wordpress/plugin/scoreboard-for-html5-game-lite/vulnerability/wordpress-scoreboard-for-html5-games-lite-plugin-1-2-authenticated-contributor-stored-cross-site-scripting-via-shortcode-attributes-vulnerability", "https://patchstack.com/database/wordpress/plugin/expire-users/vulnerability/wordpress-expire-users-plugin-1-2-2-authenticated-subscriber-privilege-escalation-to-administrator-via-save-extra-user-profile-fields-vulnerability", "https://patchstack.com/database/wordpress/theme/jaroti/vulnerability/wordpress-jaroti-theme-1-4-8-reflected-cross-site-scripting-xss-vulnerability", "https://patchstack.com/database/wordpress/plugin/optin/vulnerability/wordpress-wowoptin-next-gen-popup-maker-plugin-1-4-29-unauthenticated-server-side-request-forgery-via-link-parameter-in-rest-api-vulnerability", "https://patchstack.com/database/wordpress/theme/loobek/vulnerability/wordpress-loobek-theme-1-5-2-reflected-cross-site-scripting-xss-vulnerability", "https://patchstack.com/database/wordpress/theme/miti/vulnerability/wordpress-miti-theme-1-5-3-reflected-cross-site-scripting-xss-vulnerability", "https://patchstack.com/database/wordpress/plugin/motta-addons/vulnerability/wordpress-motta-addons-plugin-1-6-1-reflected-cross-site-scripting-xss-vulnerability", "https://patchstack.com/database/wordpress/plugin/faq-builder-ays/vulnerability/wordpress-faq-builder-ays-plugin-1-8-2-cross-site-scripting-xss-vulnerability", "https://patchstack.com/database/wordpress/plugin/wordpress-seo/vulnerability/wordpress-yoast-seo-plugin-27-1-1-authenticated-contributor-stored-cross-site-scripting-via-jsontext-block-attribute-vulnerability", "https://patchstack.com/database/wordpress/plugin/vagaro-booking-widget/vulnerability/wordpress-vagaro-booking-widget-plugin-0-3-unauthenticated-stored-cross-site-scripting-via-vagaro-code-vulnerability", "https://patchstack.com/database/wordpress/plugin/rexcrawler/vulnerability/wordpress-rexcrawler-plugin-1-0-15-reflected-cross-site-scripting-via-url-and-regex-parameters-vulnerability", "https://patchstack.com/database/wordpress/plugin/wpfaqblock/vulnerability/wordpress-wpfaqblock-faq-accordion-plugin-for-gutenberg-plugin-1-1-authenticated-contributor-stored-cross-site-scripting-via-class-shortcode-attribute-vulnerability", "https://patchstack.com/database/wordpress/plugin/gallery-for-ultimate-member/vulnerability/wordpress-video-photo-gallery-for-ultimate-member-plugin-1-1-1-reflected-cross-site-scripting-vulnerability", "https://patchstack.com/database/wordpress/plugin/alfie-the-productfeedtool-wp-plugin/vulnerability/wordpress-alfie-feed-plugin-plugin-1-2-1-cross-site-request-forgery-to-stored-cross-site-scripting-via-naam-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/comment-genius/vulnerability/wordpress-comment-genius-plugin-1-2-5-reflected-cross-site-scripting-via-server-php-self-vulnerability", "https://patchstack.com/database/wordpress/plugin/wp-webauthn/vulnerability/wordpress-wp-webauthn-plugin-1-3-4-unauthenticated-stored-cross-site-scripting-vulnerability", "https://patchstack.com/database/wordpress/plugin/arforms-form-builder/vulnerability/wordpress-arforms-plugin-1-7-2-unauthenticated-blind-arbitrary-shortcode-execution-vulnerability", "https://patchstack.com/database/wordpress/plugin/postaffiliatepro/vulnerability/wordpress-post-affiliate-pro-plugin-1-28-0-authenticated-administrator-server-side-request-forgery-via-post-affiliate-pro-url-field-vulnerability", "https://patchstack.com/database/wordpress/plugin/import-users-from-csv-with-meta/vulnerability/wordpress-import-and-export-users-and-customers-plugin-1-29-7-privilege-escalation-to-administrator-via-save-extra-user-profile-fields-vulnerability", "https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-49-unauthenticated-api-keys-disclosure-vulnerability", "https://patchstack.com/database/wordpress/plugin/ultimate-shortcodes-creator/vulnerability/wordpress-shortcodes-blocks-creator-ultimate-plugin-2-2-0-reflected-cross-site-scripting-via-page-vulnerability", "https://patchstack.com/database/wordpress/plugin/ultimate-shortcodes-creator/vulnerability/wordpress-shortcodes-blocks-creator-ultimate-plugin-2-2-0-reflected-cross-site-scripting-via-wpnonce-vulnerability", "https://patchstack.com/database/wordpress/plugin/wp-job-portal/vulnerability/wordpress-wp-job-portal-plugin-2-4-8-unauthenticated-sql-injection-via-radius-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/wp-graphql/vulnerability/wordpress-wpgraphql-plugin-2-9-1-broken-access-control-vulnerability", "https://patchstack.com/database/wordpress/plugin/woo-product-filter/vulnerability/wordpress-product-filter-for-woocommerce-by-wbw-plugin-3-1-2-missing-authorization-to-unauthenticated-filter-data-deletion-via-truncate-table-vulnerability", "https://patchstack.com/database/wordpress/plugin/shapepress-dsgvo/vulnerability/wordpress-wp-dsgvo-tools-gdpr-plugin-3-1-38-missing-authorization-to-unauthenticated-account-destruction-of-non-admin-users-vulnerability", "https://patchstack.com/database/wordpress/plugin/jetformbuilder/vulnerability/wordpress-jetformbuilder-plugin-3-5-6-2-unauthenticated-arbitrary-file-read-via-media-field-vulnerability", "https://patchstack.com/database/wordpress/plugin/sina-extension-for-elementor/vulnerability/wordpress-sina-extension-for-elementor-plugin-3-7-0-authenticated-contributor-stored-cross-site-scripting-via-fancy-text-widget-and-countdown-widget-vulnerability", "https://patchstack.com/database/wordpress/plugin/jet-engine/vulnerability/wordpress-jetengine-plugin-3-8-6-1-unauthenticated-sql-injection-via-listing-grid-filtered-query-parameter-vulnerability", "https://wordpress.org/news/2025/06/dropping-security-updates-for-wordpress-versions-4-1-through-4-6/", "https://patchstack.com/database/wordpress/plugin/smart-slider-3/vulnerability/wordpress-smart-slider-3-plugin-3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability", "https://patchstack.com/database/wordpress/plugin/contest-gallery/vulnerability/wordpress-contest-gallery-plugin-28-1-5-unauthenticated-privilege-escalation-admin-account-takeover-via-registration-confirmation-email-to-id-type-confusion-vulnerability", "https://patchstack.com/database/wordpress/plugin/bwl-advanced-faq-manager-lite/vulnerability/wordpress-bwl-advanced-faq-manager-lite-plugin-1-1-1-authenticated-contributor-stored-cross-site-scripting-via-sbox-id-shortcode-attribute-vulnerability", "https://patchstack.com/database/wordpress/plugin/pagelayer/vulnerability/wordpress-pagelayer-plugin-2-0-7-improper-neutralization-of-crlf-sequences-to-unauthenticated-email-header-injection-via-email-vulnerability", "https://patchstack.com/database/wordpress/plugin/quick-adsense-reloaded/vulnerability/wordpress-quads-ads-manager-for-google-adsense-plugin-2-0-98-1-authenticated-contributor-stored-cross-site-scripting-via-multiple-ad-metadata-parameters-vulnerability", "https://patchstack.com/database/wordpress/plugin/pepro-ultimate-invoice/vulnerability/wordpress-peprodev-ultimate-invoice-plugin-2-2-6-unauthenticated-invoice-archive-download-vulnerability", "https://patchstack.com/database/wordpress/plugin/simple-download-counter/vulnerability/wordpress-simple-download-counter-plugin-2-3-authenticated-contributor-stored-cross-site-scripting-via-text-shortcode-attribute-vulnerability", "https://patchstack.com/database/wordpress/plugin/dsgvo-leaflet-map/vulnerability/wordpress-dsgvo-snippet-for-leaflet-map-and-its-extensions-plugin-3-1-authenticated-contributor-stored-cross-site-scripting-via-unset-attribute-vulnerability", "https://patchstack.com/database/wordpress/plugin/ameliabooking/vulnerability/wordpress-amelia-booking-pro-plugin-9-1-2-authenticated-customer-insecure-direct-object-reference-to-arbitrary-user-password-change-vulnerability", "https://patchstack.com/database/wordpress/plugin/conditional-menus/vulnerability/wordpress-conditional-menus-plugin-1-2-6-cross-site-request-forgery-to-menu-options-update-vulnerability", "https://patchstack.com/database/wordpress/plugin/twentig/vulnerability/wordpress-twentig-plugin-1-9-7-authenticated-contributor-stored-cross-site-scripting-via-featuredimagesizewidth-vulnerability", "https://patchstack.com/database/wordpress/plugin/learning-management-system/vulnerability/wordpress-masteriyo-lms-plugin-2-1-6-missing-authorization-to-authenticated-student-privilege-escalation-to-administrator-vulnerability", "https://patchstack.com/database/wordpress/plugin/wp-job-portal/vulnerability/wordpress-wp-job-portal-plugin-2-4-9-authenticated-subscriber-arbitrary-file-deletion-via-resume-custom-file-field-vulnerability", "https://patchstack.com/database/wordpress/plugin/sureforms/vulnerability/wordpress-sureforms-plugin-2-5-2-unauthenticated-payment-amount-validation-bypass-via-form-id-vulnerability", "https://patchstack.com/database/wordpress/plugin/trx_addons/vulnerability/wordpress-themerex-addons-plugin-2-38-5-unauthenticated-arbitrary-file-upload-vulnerability", "https://patchstack.com/database/wordpress/plugin/js-support-ticket/vulnerability/wordpress-js-help-desk-ai-powered-support-ticketing-system-plugin-3-0-4-unauthenticated-sql-injection-via-multiformid-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/truebooker-appointment-booking/vulnerability/wordpress-truebooker-appointment-booking-and-scheduler-plugin-plugin-1-1-4-sensitive-information-exposure-via-views-files-vulnerability", "https://patchstack.com/database/wordpress/plugin/ibtana-visual-editor/vulnerability/wordpress-ibtana-wordpress-website-builder-plugin-1-2-5-7-authenticated-contributor-stored-cross-site-scripting-via-shortcode-vulnerability", "https://patchstack.com/database/wordpress/plugin/debugger-troubleshooter/vulnerability/wordpress-debugger-troubleshooter-plugin-1-3-2-unauthenticated-privilege-escalation-to-administrator-via-cookie-manipulation-vulnerability", "https://patchstack.com/database/wordpress/plugin/contact-form-by-supsystic/vulnerability/wordpress-contact-form-by-supsystic-plugin-1-7-36-unauthenticated-server-side-template-injection-via-prefill-functionality-vulnerability", "https://patchstack.com/database/wordpress/plugin/shared-files/vulnerability/wordpress-shared-files-plugin-1-7-58-contributor-arbitrary-file-download-vulnerability", "https://patchstack.com/database/wordpress/plugin/everest-forms-pro/vulnerability/wordpress-everest-forms-pro-plugin-1-9-12-unauthenticated-remote-code-execution-via-calculation-field-vulnerability", "https://patchstack.com/database/wordpress/plugin/fluent-booking/vulnerability/wordpress-fluent-booking-plugin-2-0-01-unauthenticated-stored-cross-site-scripting-via-multiple-parameters-vulnerability", "https://patchstack.com/database/wordpress/plugin/gravitysmtp/vulnerability/wordpress-gravity-smtp-plugin-2-1-4-unauthenticated-sensitive-information-exposure-via-rest-api-vulnerability", "https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-38-authenticated-contributor-dom-based-stored-cross-site-scripting-via-multiple-widgets-vulnerability", "https://patchstack.com/database/wordpress/plugin/performance-monitor/vulnerability/wordpress-performance-monitor-plugin-1-0-6-unauthenticated-blind-ssrf-vulnerability", "https://patchstack.com/database/wordpress/plugin/contact-form-entries/vulnerability/wordpress-database-for-contact-form-7-wpforms-elementor-forms-plugin-1-4-9-missing-authorization-to-authenticated-contributor-sensitive-information-exposure-via-shortcode-vulnerability", "https://patchstack.com/database/wordpress/plugin/auto-post-scheduler/vulnerability/wordpress-auto-post-scheduler-plugin-1-84-cross-site-request-forgery-to-stored-cross-site-scripting-via-aps-options-page-vulnerability", "https://patchstack.com/database/wordpress/plugin/ameliabooking/vulnerability/wordpress-amelia-plugin-2-1-2-authenticated-manager-sql-injection-via-sort-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/minify-html-markup/vulnerability/wordpress-minify-html-plugin-2-1-12-cross-site-request-forgery-to-plugin-settings-update-vulnerability", "https://patchstack.com/database/wordpress/plugin/kubio/vulnerability/wordpress-kubio-ai-page-builder-plugin-2-7-0-cross-site-scripting-xss-vulnerability", "https://patchstack.com/database/wordpress/plugin/loco-translate/vulnerability/wordpress-loco-translate-plugin-2-8-2-reflected-cross-site-scripting-via-update-href-parameter-vulnerability", "https://patchstack.com/database/wordpress/plugin/w3-total-cache/vulnerability/wordpress-w3-total-cache-plugin-2-9-3-unauthenticated-security-token-exposure-via-user-agent-header-vulnerability", "https://patchstack.com/database/wordpress/plugin/woc-order-alert/vulnerability/wordpress-order-notification-for-woocommerce-plugin-3-6-3-unauthenticated-woocommerce-rest-permission-bypass-vulnerability", "https://patchstack.com/database/wordpress/plugin/profile-builder/vulnerability/wordpress-user-profile-builder-beautiful-user-registration-forms-user-profiles-user-role-editor-plugin-3-15-5-insecure-direct-object-reference-to-authenticated-subscriber-arbitrary-post-author-reassignment-via-avatar-field-vulnerability" ], "version_sync_status": "green", "security_version_count": 55, "last_version_synced_at": "2026-04-02T09:18:45+00:00", "latest_version_evidence": [ "WPScan Vulnerability Database", "Patchstack Database", "WordPress Security News RSS" ], "catalog_source": "", "catalog_reason": "", "auto_cataloged": false, "last_discovered_at": "2025-04-09T00:30:58+00:00", "last_synced_at": "2025-04-09T00:30:58+00:00", "history_backfill_status": "complete", "latest_sync_status": "green", "official_source_covered": true, "advisory_count": 140, "workflow_complete_advisory_count": 140, "version_mapped_advisory_count": 0, "first_advisory_at": "2004-12-31T05:00:00+00:00", "latest_advisory_at": "2025-04-09T00:30:58+00:00", "advisory_ids": [ "wordpress--06006e9fb7", "wordpress--06a219901c", "wordpress--10d0d8f3f9", "wordpress--1129617837", "wordpress--12cc024a36", "wordpress--12fca2abea", "wordpress--13ce5128b4", "wordpress--148b831760", "wordpress--14cf81010e", "wordpress--159a635b11", "wordpress--17030a8718", "wordpress--1c6aa83433", "wordpress--213ff5c60e", "wordpress--23d14ed85a", "wordpress--2cd6936b0a", "wordpress--2e850b3e28", "wordpress--2fe5e39d3a", "wordpress--3094ee5dd1", "wordpress--30bd187991", "wordpress--33d0089d9b", "wordpress--37e9df8b25", "wordpress--38e031b62a", "wordpress--3f7222ce61", "wordpress--490100c57e", "wordpress--4dc1ee03ad", "wordpress--57d5f9df5e", "wordpress--58792b4ae0", "wordpress--59276ee314", "wordpress--59d89f1230", "wordpress--5b7e6857ed", "wordpress--5dd8f12e11", "wordpress--5e0f0aa282", "wordpress--5e2c6a493e", "wordpress--5f95d49feb", "wordpress--60c101bf41", "wordpress--63066ed17e", "wordpress--633cea0b87", "wordpress--65236a70e8", "wordpress--6850d32ee1", "wordpress--69a8f91df1", "wordpress--69bed74e7a", "wordpress--6a726d41d8", "wordpress--6d631adfc0", "wordpress--6f46717425", "wordpress--737216664c", "wordpress--76d8cacd47", "wordpress--79882b1d53", "wordpress--7a096bdecd", "wordpress--7a0d2f5c04", "wordpress--80760b9e99", "wordpress--8654fd6af7", "wordpress--88079feb95", "wordpress--8a3a3a86d7", "wordpress--8aac20fdae", "wordpress--8be181bdf7", "wordpress--8f1d763e2e", "wordpress--90ac8d52d0", "wordpress--93ef1b52ba", "wordpress--9a8ddc580f", "wordpress--9afa4252ce", "wordpress--9b87475497", "wordpress--9cce67b3aa", "wordpress--CVE-2004-1559", "wordpress--CVE-2004-1584", "wordpress--CVE-2005-1102", "wordpress--CVE-2005-1687", "wordpress--CVE-2005-1688", "wordpress--CVE-2005-1810", "wordpress--CVE-2005-1921", "wordpress--CVE-2005-2107", "wordpress--CVE-2005-2108", "wordpress--CVE-2005-2109", "wordpress--CVE-2005-2110", "wordpress--CVE-2005-2612", "wordpress--CVE-2005-3330", "wordpress--CVE-2005-4463", "wordpress--CVE-2006-0733", "wordpress--CVE-2006-0985", "wordpress--CVE-2006-0986", "wordpress--CVE-2006-1012", "wordpress--CVE-2006-1263", "wordpress--CVE-2006-1796", "wordpress--CVE-2006-2667", "wordpress--CVE-2006-2702", "wordpress--CVE-2006-3389", "wordpress--CVE-2006-3390", "wordpress--CVE-2006-4028", "wordpress--CVE-2006-4208", "wordpress--CVE-2006-4743", "wordpress--CVE-2006-5705", "wordpress--CVE-2006-6016", "wordpress--CVE-2006-6017", "wordpress--CVE-2006-6808", "wordpress--CVE-2006-6863", "wordpress--CVE-2007-0106", "wordpress--CVE-2007-0107", "wordpress--CVE-2007-0109", "wordpress--CVE-2007-0233", "wordpress--CVE-2007-0262", "wordpress--CVE-2007-0539", "wordpress--CVE-2007-0540", "wordpress--CVE-2007-0541", "wordpress--CVE-2007-1049", "wordpress--CVE-2007-1230", "wordpress--CVE-2007-1244", "wordpress--CVE-2007-1277", "wordpress--CVE-2007-1409", "wordpress--CVE-2007-1599", "wordpress--CVE-2007-1622", "wordpress--CVE-2007-1732", "wordpress--CVE-2007-1893", "wordpress--CVE-2007-1894", "wordpress--a4f0e68ab5", "wordpress--af099a61a6", "wordpress--af95f34447", "wordpress--b467539b2c", "wordpress--b481717d30", "wordpress--b92a24e31a", "wordpress--bbd4d9a5ed", "wordpress--bc834bfe64", "wordpress--c23a850ec3", "wordpress--c346c10a12", "wordpress--c3e95dab52", "wordpress--c8dbf74c29", "wordpress--cac928e94b", "wordpress--d24a559b69", "wordpress--d4a95ae26d", "wordpress--da71cecbfb", "wordpress--db166494f5", "wordpress--dbc90eee65", "wordpress--dc4426e2f6", "wordpress--e61c231e8b", "wordpress--e6d2a6b634", "wordpress--eda217cbfb", "wordpress--eddfccd91d", "wordpress--ee42b86359", "wordpress--ef12da29f9", "wordpress--fea9c161bb", "wordpress--feb9fe6fdd", "wordpress--ffa886d3ac" ], "source_refs": [ { "name": "WordPress Security News RSS", "url": "https://wordpress.org/news/category/security/feed/", "kind": "rss-feed", "status": "active", "bucket": "official_sources", "official": true }, { "name": "NVD WordPress", "url": null, "kind": "nvd-search", "status": "retired", "bucket": "official_sources", "official": true }, { "name": "Wordfence Vulnerability Database", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false }, { "name": "Patchstack Database", "url": "https://patchstack.com/database/", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false }, { "name": "WPScan Vulnerability Database", "url": "https://wpscan.com/blog/", "kind": "html-links", "status": "active", "bucket": "ecosystem_sources", "official": false }, { "name": "PortSwigger Research", "url": "https://portswigger.net/research", "kind": "html-links", "status": "active", "bucket": "research_sources", "official": false } ] } ]