hao/websafe-kb
1
0
派生 0
代码 工单 合并请求 1 工作流 软件包 项目 发布 百科 活动
文件
ee25f55719db1dc905a75a31845807d8f07b9ca7
websafe-kb/08-threat-intel/generated/dashboard/entities.json

9356 行
323 KiB
JSON
原始文件 Blame 文件历史

[
{
"entity_id": "adminer",
"entity_type": "system",
"display_name": "Adminer",
"parent_entity_id": null,
"root_system_id": "adminer",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-28T00:18:44+00:00",
"last_synced_at": "2026-02-28T00:18:44+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2026-02-09T21:15:50+00:00",
"latest_advisory_at": "2026-02-28T00:18:44+00:00",
"advisory_ids": [
"adminer--CVE-2026-25878",
"adminer--CVE-2026-25892"
],
"source_refs": [
{
"name": "OSV Adminer",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Adminer",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "adobe-commerce",
"entity_type": "system",
"display_name": "Adobe Commerce",
"parent_entity_id": null,
"root_system_id": "adobe-commerce",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-10-23T14:51:16+00:00",
"last_synced_at": "2025-10-23T14:51:16+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 81,
"workflow_complete_advisory_count": 81,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2021-09-01T15:15:09+00:00",
"latest_advisory_at": "2025-10-23T14:51:16+00:00",
"advisory_ids": [
"adobe-commerce--047932676d",
"adobe-commerce--0a62931b31",
"adobe-commerce--0eb3765231",
"adobe-commerce--1040fafca2",
"adobe-commerce--1255668bf0",
"adobe-commerce--12ae93f161",
"adobe-commerce--3f204ca99f",
"adobe-commerce--4db71027f6",
"adobe-commerce--5451447fe7",
"adobe-commerce--54dc24517c",
"adobe-commerce--5cb7420cf3",
"adobe-commerce--8c1e29399c",
"adobe-commerce--8ecb2a63a5",
"adobe-commerce--933ad16ad5",
"adobe-commerce--934b38c7e3",
"adobe-commerce--979640da01",
"adobe-commerce--CVE-2021-36035",
"adobe-commerce--CVE-2021-39864",
"adobe-commerce--CVE-2022-24086",
"adobe-commerce--CVE-2022-24093",
"adobe-commerce--CVE-2022-34253",
"adobe-commerce--CVE-2022-34254",
"adobe-commerce--CVE-2022-34255",
"adobe-commerce--CVE-2022-34256",
"adobe-commerce--CVE-2022-34257",
"adobe-commerce--CVE-2022-34258",
"adobe-commerce--CVE-2022-34259",
"adobe-commerce--CVE-2022-35689",
"adobe-commerce--CVE-2022-35692",
"adobe-commerce--CVE-2022-35698",
"adobe-commerce--CVE-2022-42344",
"adobe-commerce--CVE-2023-22247",
"adobe-commerce--CVE-2023-22248",
"adobe-commerce--CVE-2023-22249",
"adobe-commerce--CVE-2023-22250",
"adobe-commerce--CVE-2023-22251",
"adobe-commerce--CVE-2023-26366",
"adobe-commerce--CVE-2023-26367",
"adobe-commerce--CVE-2023-29287",
"adobe-commerce--CVE-2023-29288",
"adobe-commerce--CVE-2023-29289",
"adobe-commerce--CVE-2023-29290",
"adobe-commerce--CVE-2023-29291",
"adobe-commerce--CVE-2023-29292",
"adobe-commerce--CVE-2023-29293",
"adobe-commerce--CVE-2023-29294",
"adobe-commerce--CVE-2023-29295",
"adobe-commerce--CVE-2023-29296",
"adobe-commerce--CVE-2023-29297",
"adobe-commerce--CVE-2023-38207",
"adobe-commerce--CVE-2023-38208",
"adobe-commerce--CVE-2023-38209",
"adobe-commerce--CVE-2023-38218",
"adobe-commerce--CVE-2023-38219",
"adobe-commerce--CVE-2023-38220",
"adobe-commerce--CVE-2023-38221",
"adobe-commerce--CVE-2023-38249",
"adobe-commerce--CVE-2023-38250",
"adobe-commerce--CVE-2023-38251",
"adobe-commerce--CVE-2024-20716",
"adobe-commerce--CVE-2024-20717",
"adobe-commerce--CVE-2024-20718",
"adobe-commerce--CVE-2024-20719",
"adobe-commerce--CVE-2024-20720",
"adobe-commerce--CVE-2024-20758",
"adobe-commerce--CVE-2024-20759",
"adobe-commerce--a0a29ab7eb",
"adobe-commerce--a5f12e77b4",
"adobe-commerce--a7b623e0d8",
"adobe-commerce--ac73b00a05",
"adobe-commerce--c1c61771df",
"adobe-commerce--ce8484a7ed",
"adobe-commerce--d3476d6b14",
"adobe-commerce--d4e4aff8b8",
"adobe-commerce--d688572a39",
"adobe-commerce--d88dbef013",
"adobe-commerce--da91b15885",
"adobe-commerce--ef1f4e7ed5",
"adobe-commerce--f2ffd83268",
"adobe-commerce--f35cbfee30",
"adobe-commerce--fc2e2dc6d1"
],
"source_refs": [
{
"name": "Adobe Security Bulletins",
"url": "https://helpx.adobe.com/security/products/magento.html",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "Adobe Magento Security Index",
"url": "https://helpx.adobe.com/security/products/magento.html",
"kind": "vendor-index",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Adobe Commerce",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GHSA Adobe Commerce",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
},
{
"name": "Sansec Research",
"url": "https://sansec.io/research",
"kind": "vendor-index",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "angular--package--angular-core",
"entity_type": "package",
"display_name": "angular / core",
"parent_entity_id": "angular",
"root_system_id": "angular",
"category": "frameworks",
"ecosystem": "@angular",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/@angular/core",
"marketplace_url": "",
"latest_version": "21.2.7",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-17T01:31:35.828211Z",
"latest_release_url": "https://www.npmjs.com/package/@angular/core",
"version_source_refs": [
"https://www.npmjs.com/package/@angular/core",
"https://github.com/angular/angular/security/advisories/GHSA-prjf-86w9-mfqv",
"https://github.com/angular/angular/security/advisories/GHSA-g93w-mfhg-p222"
],
"version_sync_status": "green",
"security_version_count": 18,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/angular/angular/security/advisories/GHSA-prjf-86w9-mfqv",
"https://github.com/angular/angular/security/advisories/GHSA-g93w-mfhg-p222",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-17T01:31:35+00:00",
"last_synced_at": "2026-03-17T01:31:35+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2026-02-27T18:33:16+00:00",
"latest_advisory_at": "2026-03-17T01:31:35+00:00",
"advisory_ids": [
"angular--CVE-2026-27970",
"angular--CVE-2026-32635"
],
"source_refs": []
},
{
"entity_id": "angular",
"entity_type": "system",
"display_name": "Angular",
"parent_entity_id": null,
"root_system_id": "angular",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "21.2.7",
"version_scheme": "vendor",
"latest_release_at": "2026-03-17T01:31:35.828211Z",
"latest_release_url": "https://www.npmjs.com/package/@angular/core",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 18,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-17T01:31:35+00:00",
"last_synced_at": "2026-03-17T01:31:35+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2026-02-27T18:33:16+00:00",
"latest_advisory_at": "2026-03-17T01:31:35+00:00",
"advisory_ids": [
"angular--CVE-2026-27970",
"angular--CVE-2026-32635"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Angular",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "apache-httpd",
"entity_type": "system",
"display_name": "Apache HTTP Server",
"parent_entity_id": null,
"root_system_id": "apache-httpd",
"category": "servers",
"ecosystem": "servers",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.4.x",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/",
"version_source_refs": [
"https://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/",
"https://httpd.apache.org/security/vulnerabilities_22.html"
],
"version_sync_status": "green",
"security_version_count": 1,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Apache HTTPD Security"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-05-22T00:00:00+00:00",
"last_synced_at": "2025-05-22T00:00:00+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 135,
"workflow_complete_advisory_count": 135,
"version_mapped_advisory_count": 0,
"first_advisory_at": "1999-06-03T04:00:00+00:00",
"latest_advisory_at": "2025-05-22T00:00:00+00:00",
"advisory_ids": [
"apache-httpd--02cba8895c",
"apache-httpd--05cc1afdb1",
"apache-httpd--07805b501b",
"apache-httpd--0a6be3d9f9",
"apache-httpd--0bc105963e",
"apache-httpd--0ca4c19a23",
"apache-httpd--0dbcc731e3",
"apache-httpd--0e5b8af55a",
"apache-httpd--101f2d16a4",
"apache-httpd--1110a7f1d2",
"apache-httpd--172cdd59be",
"apache-httpd--1afb0f2b13",
"apache-httpd--1c11edba84",
"apache-httpd--1e9218e776",
"apache-httpd--20376e1d55",
"apache-httpd--203c36ee66",
"apache-httpd--219b6d2e94",
"apache-httpd--22307e5b33",
"apache-httpd--22e8d8544b",
"apache-httpd--23cd71d5dd",
"apache-httpd--276abef65c",
"apache-httpd--2ba0a72733",
"apache-httpd--2bc69387c4",
"apache-httpd--2bf906b1f1",
"apache-httpd--2d0d84c490",
"apache-httpd--2d92c01d3d",
"apache-httpd--2f5a1a9d6e",
"apache-httpd--331bc084fd",
"apache-httpd--34efd686fd",
"apache-httpd--39b0a97f1b",
"apache-httpd--3abbe322bc",
"apache-httpd--414d53727b",
"apache-httpd--4c276fa297",
"apache-httpd--4f2f2006f0",
"apache-httpd--53ed5e694b",
"apache-httpd--54f4c83f62",
"apache-httpd--597e01ff2b",
"apache-httpd--62f6b74275",
"apache-httpd--63991a76ba",
"apache-httpd--66951029b9",
"apache-httpd--67f45a8c73",
"apache-httpd--7235782431",
"apache-httpd--72c286c42f",
"apache-httpd--72d0a9488a",
"apache-httpd--743aad06f7",
"apache-httpd--77dc43b9bd",
"apache-httpd--7ebb8cbaf7",
"apache-httpd--8021fd91fe",
"apache-httpd--865fc55d60",
"apache-httpd--89048ff274",
"apache-httpd--8c1c4a9f69",
"apache-httpd--8cb5b0c11c",
"apache-httpd--933f3c3296",
"apache-httpd--9351ed6cb8",
"apache-httpd--9374eed004",
"apache-httpd--9b89d11a37",
"apache-httpd--9c906c368b",
"apache-httpd--CVE-1999-1412",
"apache-httpd--CVE-2000-0505",
"apache-httpd--CVE-2000-1168",
"apache-httpd--CVE-2001-1556",
"apache-httpd--CVE-2002-0240",
"apache-httpd--CVE-2002-1157",
"apache-httpd--CVE-2002-1793",
"apache-httpd--CVE-2002-2007",
"apache-httpd--CVE-2003-0249",
"apache-httpd--CVE-2003-1307",
"apache-httpd--CVE-2003-1418",
"apache-httpd--CVE-2004-0113",
"apache-httpd--CVE-2004-0646",
"apache-httpd--CVE-2004-2115",
"apache-httpd--CVE-2004-2343",
"apache-httpd--CVE-2005-2088",
"apache-httpd--CVE-2005-3630",
"apache-httpd--CVE-2005-4814",
"apache-httpd--CVE-2006-2330",
"apache-httpd--CVE-2006-3918",
"apache-httpd--CVE-2006-4004",
"apache-httpd--CVE-2006-4191",
"apache-httpd--CVE-2006-4558",
"apache-httpd--CVE-2006-4625",
"apache-httpd--CVE-2006-4636",
"apache-httpd--CVE-2006-5263",
"apache-httpd--CVE-2006-5733",
"apache-httpd--CVE-2006-5894",
"apache-httpd--CVE-2006-6047",
"apache-httpd--CVE-2006-6390",
"apache-httpd--CVE-2006-6445",
"apache-httpd--CVE-2006-6613",
"apache-httpd--CVE-2006-6869",
"apache-httpd--CVE-2006-7098",
"apache-httpd--CVE-2007-0086",
"apache-httpd--CVE-2007-0098",
"apache-httpd--CVE-2007-0173",
"apache-httpd--CVE-2007-0419",
"apache-httpd--CVE-2007-0450",
"apache-httpd--CVE-2007-0637",
"apache-httpd--CVE-2007-1524",
"apache-httpd--CVE-2007-1577",
"apache-httpd--CVE-2007-1633",
"apache-httpd--CVE-2007-1720",
"apache-httpd--CVE-2007-1741",
"apache-httpd--CVE-2007-1742",
"apache-httpd--CVE-2007-1743",
"apache-httpd--CVE-2007-1801",
"apache-httpd--CVE-2007-1842",
"apache-httpd--CVE-2007-1860",
"apache-httpd--CVE-2019-0211",
"apache-httpd--CVE-2021-40438",
"apache-httpd--CVE-2021-41773",
"apache-httpd--CVE-2021-42013",
"apache-httpd--CVE-2024-38475",
"apache-httpd--a17785142a",
"apache-httpd--a45c30ecd9",
"apache-httpd--a621acb133",
"apache-httpd--a8a1854523",
"apache-httpd--aacfaa6a80",
"apache-httpd--aca919348b",
"apache-httpd--b61c783667",
"apache-httpd--c63da36498",
"apache-httpd--c6691454bc",
"apache-httpd--d0e22d65d1",
"apache-httpd--d64723cb44",
"apache-httpd--daa9023ed5",
"apache-httpd--dd0bd113b7",
"apache-httpd--de25fcbe49",
"apache-httpd--e18cad1aed",
"apache-httpd--e3be78f3ce",
"apache-httpd--e4fc049559",
"apache-httpd--eb473e3585",
"apache-httpd--f0745e0763",
"apache-httpd--f7a4b946cb",
"apache-httpd--f8fa380112",
"apache-httpd--fb4f0f6f89",
"apache-httpd--fe666b8dc0"
],
"source_refs": [
{
"name": "Apache HTTPD Security",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "CISA KEV Apache HTTPD",
"url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json",
"kind": "kev-json",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Apache HTTP Server",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "apache-tomcat",
"entity_type": "system",
"display_name": "Apache Tomcat",
"parent_entity_id": null,
"root_system_id": "apache-tomcat",
"category": "servers",
"ecosystem": "servers",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "11.0-doc",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://tomcat.apache.org/tomcat-11.0-doc/index.html",
"version_source_refs": [
"https://tomcat.apache.org/tomcat-11.0-doc/index.html",
"https://tomcat.apache.org/tomcat-10.0-doc/security-howto.html",
"https://tomcat.apache.org/security-10.html"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Apache Tomcat Security"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-22T00:00:00+00:00",
"last_synced_at": "2025-04-22T00:00:00+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 136,
"workflow_complete_advisory_count": 136,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2000-10-20T04:00:00+00:00",
"latest_advisory_at": "2025-04-22T00:00:00+00:00",
"advisory_ids": [
"apache-tomcat--011725d3b7",
"apache-tomcat--049b7d0382",
"apache-tomcat--0a3c261703",
"apache-tomcat--0ca9da9c59",
"apache-tomcat--118d55a36a",
"apache-tomcat--13118e2458",
"apache-tomcat--149d716532",
"apache-tomcat--1ca9fd2888",
"apache-tomcat--1f1e953630",
"apache-tomcat--207b10584e",
"apache-tomcat--242cf7a166",
"apache-tomcat--2ffc2aa787",
"apache-tomcat--32ce70ac24",
"apache-tomcat--33b187389a",
"apache-tomcat--3467b45391",
"apache-tomcat--35abb36510",
"apache-tomcat--3fc96befd0",
"apache-tomcat--41118a6375",
"apache-tomcat--4d22e4456b",
"apache-tomcat--524fcf3503",
"apache-tomcat--55e780c0ef",
"apache-tomcat--57d32a8906",
"apache-tomcat--583e0f80f0",
"apache-tomcat--5bcb504893",
"apache-tomcat--5de2d17648",
"apache-tomcat--5e02bf0896",
"apache-tomcat--5e7ef9af14",
"apache-tomcat--62347916c4",
"apache-tomcat--656b24de26",
"apache-tomcat--66500f6f9d",
"apache-tomcat--69f233a427",
"apache-tomcat--6cb0b97c81",
"apache-tomcat--7362e5d6ec",
"apache-tomcat--743c78dd96",
"apache-tomcat--745679753c",
"apache-tomcat--7714a24368",
"apache-tomcat--7d8dd36663",
"apache-tomcat--85a3b9b4c9",
"apache-tomcat--86b167c195",
"apache-tomcat--8cf8505808",
"apache-tomcat--8f448afa4f",
"apache-tomcat--91d886494d",
"apache-tomcat--99779e97b3",
"apache-tomcat--9d2a8987e8",
"apache-tomcat--CVE-2000-0759",
"apache-tomcat--CVE-2000-0760",
"apache-tomcat--CVE-2000-1210",
"apache-tomcat--CVE-2001-0590",
"apache-tomcat--CVE-2001-0829",
"apache-tomcat--CVE-2002-0493",
"apache-tomcat--CVE-2002-0682",
"apache-tomcat--CVE-2002-0935",
"apache-tomcat--CVE-2002-1394",
"apache-tomcat--CVE-2002-1567",
"apache-tomcat--CVE-2002-1895",
"apache-tomcat--CVE-2002-2006",
"apache-tomcat--CVE-2002-2007",
"apache-tomcat--CVE-2002-2008",
"apache-tomcat--CVE-2002-2009",
"apache-tomcat--CVE-2002-2272",
"apache-tomcat--CVE-2005-0808",
"apache-tomcat--CVE-2005-1753",
"apache-tomcat--CVE-2005-1754",
"apache-tomcat--CVE-2005-3164",
"apache-tomcat--CVE-2005-3510",
"apache-tomcat--CVE-2005-4703",
"apache-tomcat--CVE-2005-4836",
"apache-tomcat--CVE-2006-3835",
"apache-tomcat--CVE-2006-7195",
"apache-tomcat--CVE-2006-7196",
"apache-tomcat--CVE-2006-7197",
"apache-tomcat--CVE-2007-0450",
"apache-tomcat--CVE-2007-0774",
"apache-tomcat--CVE-2007-1358",
"apache-tomcat--CVE-2007-1491",
"apache-tomcat--CVE-2007-1858",
"apache-tomcat--CVE-2007-1860",
"apache-tomcat--CVE-2007-2449",
"apache-tomcat--CVE-2007-2450",
"apache-tomcat--CVE-2007-3382",
"apache-tomcat--CVE-2007-3383",
"apache-tomcat--CVE-2007-3384",
"apache-tomcat--CVE-2007-3385",
"apache-tomcat--CVE-2007-3386",
"apache-tomcat--CVE-2007-4724",
"apache-tomcat--CVE-2007-5333",
"apache-tomcat--CVE-2007-5342",
"apache-tomcat--CVE-2007-5461",
"apache-tomcat--CVE-2007-6286",
"apache-tomcat--CVE-2008-0002",
"apache-tomcat--CVE-2008-0128",
"apache-tomcat--CVE-2008-0457",
"apache-tomcat--CVE-2008-1232",
"apache-tomcat--CVE-2008-1947",
"apache-tomcat--CVE-2016-8735",
"apache-tomcat--CVE-2017-12615",
"apache-tomcat--CVE-2017-12617",
"apache-tomcat--CVE-2020-1938",
"apache-tomcat--CVE-2021-1498",
"apache-tomcat--CVE-2025-24813",
"apache-tomcat--a2590dc47b",
"apache-tomcat--ac3714eb57",
"apache-tomcat--aea19824c2",
"apache-tomcat--af3c91be5c",
"apache-tomcat--b23c5e35c9",
"apache-tomcat--b55bb1b121",
"apache-tomcat--b744a50549",
"apache-tomcat--b7ac0eae42",
"apache-tomcat--ba168e654b",
"apache-tomcat--bc806658b3",
"apache-tomcat--bdde1865a6",
"apache-tomcat--c10a63610c",
"apache-tomcat--c24871aac5",
"apache-tomcat--c470f39b6f",
"apache-tomcat--c8a2e47ea5",
"apache-tomcat--cc1565901e",
"apache-tomcat--ce6ff70ffe",
"apache-tomcat--cf335ad174",
"apache-tomcat--d33b4cbf62",
"apache-tomcat--d3ce0dca4e",
"apache-tomcat--d9121f9c30",
"apache-tomcat--d9eef50097",
"apache-tomcat--dc60148766",
"apache-tomcat--e0fd2f8d0a",
"apache-tomcat--e112505b22",
"apache-tomcat--e36bb1c6d7",
"apache-tomcat--e4c4769574",
"apache-tomcat--e5e80c0a91",
"apache-tomcat--e9bbe07c29",
"apache-tomcat--eaa9f7ab66",
"apache-tomcat--ec10641321",
"apache-tomcat--f182e5bf64",
"apache-tomcat--f38adeb312",
"apache-tomcat--f64ec916fb",
"apache-tomcat--fc53c949b0",
"apache-tomcat--ff9ba8aa3b"
],
"source_refs": [
{
"name": "Apache Tomcat Security",
"url": "https://tomcat.apache.org/security-10.html",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "CISA KEV Tomcat",
"url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json",
"kind": "kev-json",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Tomcat",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "aspnet-core",
"entity_type": "system",
"display_name": "ASP.NET Core",
"parent_entity_id": null,
"root_system_id": "aspnet-core",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-11T13:53:20+00:00",
"last_synced_at": "2026-03-11T13:53:20+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 3,
"workflow_complete_advisory_count": 3,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2020-08-17T19:15:21+00:00",
"latest_advisory_at": "2026-03-11T13:53:20+00:00",
"advisory_ids": [
"aspnet-core--CVE-2020-1045",
"aspnet-core--CVE-2020-1597",
"aspnet-core--CVE-2026-26130"
],
"source_refs": [
{
"name": "OSV ASP.NET Core",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD ASP.NET Core",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "astro--module--astro",
"entity_type": "module",
"display_name": "astro",
"parent_entity_id": "astro",
"root_system_id": "astro",
"category": "frameworks",
"ecosystem": "astro",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/astro",
"marketplace_url": "",
"latest_version": "6.1.3",
"version_scheme": "semver-ish",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"latest_release_url": "https://www.npmjs.com/package/astro",
"version_source_refs": [
"https://www.npmjs.com/package/astro",
"https://github.com/withastro/astro/security/advisories/GHSA-wrwg-2hg8-v723",
"https://github.com/withastro/astro/security/advisories/GHSA-m85w-3h95-hcf9"
],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/withastro/astro/security/advisories/GHSA-wrwg-2hg8-v723",
"https://github.com/withastro/astro/security/advisories/GHSA-m85w-3h95-hcf9",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-11-27T08:16:37+00:00",
"last_synced_at": "2025-11-27T08:16:37+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2024-10-14T20:02:21+00:00",
"latest_advisory_at": "2025-11-27T08:16:37+00:00",
"advisory_ids": [
"astro--CVE-2024-47885",
"astro--CVE-2025-64764"
],
"source_refs": []
},
{
"entity_id": "astro--project--astro",
"entity_type": "project",
"display_name": "astro",
"parent_entity_id": "astro",
"root_system_id": "astro",
"category": "frameworks",
"ecosystem": "astro",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/astro",
"marketplace_url": "",
"latest_version": "6.1.3",
"version_scheme": "semver-ish",
"latest_release_at": "2025-11-27T08:22:36.525875Z",
"latest_release_url": "https://www.npmjs.com/package/astro",
"version_source_refs": [
"https://www.npmjs.com/package/astro",
"https://github.com/withastro/astro/security/advisories/GHSA-c4pw-33h3-35xw",
"https://github.com/withastro/astro/security/advisories/GHSA-49w6-73cw-chjr",
"https://github.com/withastro/astro/security/advisories/GHSA-xf8x-j4p2-f749",
"https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88",
"https://github.com/withastro/astro/security/advisories/GHSA-ggxq-hp9w-j794",
"https://github.com/withastro/astro/security/advisories/GHSA-fvmw-cj7j-j39q",
"https://github.com/withastro/astro/security/advisories/GHSA-hr2q-hp5q-x767",
"https://github.com/withastro/astro/security/advisories/GHSA-cq8c-xv66-36gw",
"https://github.com/withastro/astro/security/advisories/GHSA-w2vj-39qv-7vh7",
"https://github.com/withastro/astro/security/advisories/GHSA-qcpr-679q-rhm2",
"https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f"
],
"version_sync_status": "green",
"security_version_count": 28,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/withastro/astro/security/advisories/GHSA-c4pw-33h3-35xw",
"https://github.com/withastro/astro/security/advisories/GHSA-49w6-73cw-chjr",
"https://github.com/withastro/astro/security/advisories/GHSA-xf8x-j4p2-f749",
"https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88",
"https://github.com/withastro/astro/security/advisories/GHSA-ggxq-hp9w-j794",
"https://github.com/withastro/astro/security/advisories/GHSA-fvmw-cj7j-j39q",
"https://github.com/withastro/astro/security/advisories/GHSA-hr2q-hp5q-x767",
"https://github.com/withastro/astro/security/advisories/GHSA-cq8c-xv66-36gw",
"https://github.com/withastro/astro/security/advisories/GHSA-w2vj-39qv-7vh7",
"https://github.com/withastro/astro/security/advisories/GHSA-qcpr-679q-rhm2",
"advisory-fixed-version",
"https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T03:01:27+00:00",
"last_synced_at": "2026-02-04T03:01:27+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 13,
"workflow_complete_advisory_count": 13,
"version_mapped_advisory_count": 13,
"first_advisory_at": "2024-12-18T15:02:37+00:00",
"latest_advisory_at": "2026-03-26T19:01:26+00:00",
"advisory_ids": [
"astro--CVE-2024-56140",
"astro--CVE-2024-56159",
"astro--CVE-2025-54793",
"astro--CVE-2025-55303",
"astro--CVE-2025-59837",
"astro--CVE-2025-61925",
"astro--CVE-2025-64525",
"astro--CVE-2025-64745",
"astro--CVE-2025-64757",
"astro--CVE-2025-64765",
"astro--CVE-2025-65019",
"astro--CVE-2025-66202",
"astro--CVE-2026-33769"
],
"source_refs": []
},
{
"entity_id": "astro",
"entity_type": "system",
"display_name": "Astro",
"parent_entity_id": null,
"root_system_id": "astro",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "6.1.3",
"version_scheme": "vendor",
"latest_release_at": "2025-11-20T14:43:59.624508Z",
"latest_release_url": "https://www.npmjs.com/package/astro",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 32,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T03:01:27+00:00",
"last_synced_at": "2026-02-04T03:01:27+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 15,
"workflow_complete_advisory_count": 15,
"version_mapped_advisory_count": 15,
"first_advisory_at": "2024-10-14T20:02:21+00:00",
"latest_advisory_at": "2026-03-26T19:01:26+00:00",
"advisory_ids": [
"astro--CVE-2024-47885",
"astro--CVE-2024-56140",
"astro--CVE-2024-56159",
"astro--CVE-2025-54793",
"astro--CVE-2025-55303",
"astro--CVE-2025-59837",
"astro--CVE-2025-61925",
"astro--CVE-2025-64525",
"astro--CVE-2025-64745",
"astro--CVE-2025-64757",
"astro--CVE-2025-64764",
"astro--CVE-2025-64765",
"astro--CVE-2025-65019",
"astro--CVE-2025-66202",
"astro--CVE-2026-33769"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Astro",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "caddy--extension--github-com-caddyserver-caddy-v2",
"entity_type": "extension",
"display_name": "caddyserver / caddy / v2",
"parent_entity_id": "caddy",
"root_system_id": "caddy",
"category": "servers",
"ecosystem": "github.com",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/caddyserver/caddy",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.11.2",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-06T02:43:43Z",
"latest_release_url": "https://github.com/caddyserver/caddy/releases/tag/v2.11.2",
"version_source_refs": [
"https://github.com/caddyserver/caddy/releases/tag/v2.11.2",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-5r3v-vc8m-m96g",
"https://github.com/caddyserver/caddy"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-5r3v-vc8m-m96g",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-27T19:55:10+00:00",
"last_synced_at": "2026-02-27T19:55:10+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-02-24T20:39:08+00:00",
"latest_advisory_at": "2026-02-27T19:55:10+00:00",
"advisory_ids": [
"caddy--CVE-2026-27590"
],
"source_refs": []
},
{
"entity_id": "caddy--repo--github-com-caddyserver-caddy-v2",
"entity_type": "repo",
"display_name": "caddyserver / caddy / v2",
"parent_entity_id": "caddy",
"root_system_id": "caddy",
"category": "servers",
"ecosystem": "github.com",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/caddyserver/caddy",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.11.2",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-06T02:43:43Z",
"latest_release_url": "https://github.com/caddyserver/caddy/releases/tag/v2.11.2",
"version_source_refs": [
"https://github.com/caddyserver/caddy/releases/tag/v2.11.2",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-4xrr-hq4w-6vf4",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-m2w3-8f23-hxxf",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-7r4p-vjf4-gxv4"
],
"version_sync_status": "green",
"security_version_count": 5,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-4xrr-hq4w-6vf4",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-m2w3-8f23-hxxf",
"https://github.com/caddyserver/caddy/security/advisories/GHSA-7r4p-vjf4-gxv4",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-27T19:54:36+00:00",
"last_synced_at": "2026-02-27T19:54:36+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 7,
"workflow_complete_advisory_count": 7,
"version_mapped_advisory_count": 7,
"first_advisory_at": "2026-02-24T20:16:55+00:00",
"latest_advisory_at": "2026-03-23T04:52:47+00:00",
"advisory_ids": [
"caddy--CVE-2026-27585",
"caddy--CVE-2026-27586",
"caddy--CVE-2026-27587",
"caddy--CVE-2026-27588",
"caddy--CVE-2026-27589",
"caddy--CVE-2026-30851",
"caddy--CVE-2026-30852"
],
"source_refs": []
},
{
"entity_id": "caddy",
"entity_type": "system",
"display_name": "Caddy",
"parent_entity_id": null,
"root_system_id": "caddy",
"category": "servers",
"ecosystem": "servers",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.11.2",
"version_scheme": "vendor",
"latest_release_at": "2026-03-06T02:43:43Z",
"latest_release_url": "https://github.com/caddyserver/caddy/releases/tag/v2.11.2",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 7,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-27T19:55:10+00:00",
"last_synced_at": "2026-02-27T19:55:10+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 29,
"workflow_complete_advisory_count": 29,
"version_mapped_advisory_count": 8,
"first_advisory_at": "2026-02-24T20:16:55+00:00",
"latest_advisory_at": "2026-03-23T04:52:47+00:00",
"advisory_ids": [
"caddy--0158a8ddd8",
"caddy--0921003cc6",
"caddy--146569d56a",
"caddy--3b182d7701",
"caddy--44cbfe52c8",
"caddy--54eb0db436",
"caddy--6fb600a3f4",
"caddy--745ad1485a",
"caddy--752be55ec0",
"caddy--7c57bb87cf",
"caddy--85a3ff1f30",
"caddy--883104fe6c",
"caddy--921b808417",
"caddy--CVE-2026-27585",
"caddy--CVE-2026-27586",
"caddy--CVE-2026-27587",
"caddy--CVE-2026-27588",
"caddy--CVE-2026-27589",
"caddy--CVE-2026-27590",
"caddy--CVE-2026-30851",
"caddy--CVE-2026-30852",
"caddy--ade36bbb20",
"caddy--c52981f5e2",
"caddy--cf9582f72a",
"caddy--e598b86910",
"caddy--e89796c7cf",
"caddy--f0734ced73",
"caddy--f5135e4d5d",
"caddy--fedac463f1"
],
"source_refs": [
{
"name": "GitHub Caddy Advisories",
"url": "https://github.com/caddyserver/caddy/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Caddy",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "directus--repo--directus-directus",
"entity_type": "repo",
"display_name": "directus / directus",
"parent_entity_id": "directus",
"root_system_id": "directus",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/directus/directus",
"package_registry": "",
"marketplace_url": "",
"latest_version": "11.17.1",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-30T16:37:32Z",
"latest_release_url": "https://github.com/directus/directus/releases/tag/v11.17.1",
"version_source_refs": [
"https://github.com/directus/directus/releases/tag/v11.16.1",
"https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc",
"https://github.com/directus/directus/releases/tag/v11.17.0",
"https://github.com/directus/directus/releases/tag/v11.17.1"
],
"version_sync_status": "green",
"security_version_count": 1,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"Directus GitHub Advisories"
],
"catalog_source": "Directus GitHub Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "Directus GitHub Advisories",
"url": "https://github.com/directus/directus/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "directus",
"entity_type": "system",
"display_name": "Directus",
"parent_entity_id": null,
"root_system_id": "directus",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "11.17.1",
"version_scheme": "vendor",
"latest_release_at": "2026-03-30T16:37:32Z",
"latest_release_url": "https://github.com/directus/directus/releases/tag/v11.17.1",
"version_source_refs": [
"https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc"
],
"version_sync_status": "green",
"security_version_count": 1,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Directus GitHub Advisories"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 29,
"workflow_complete_advisory_count": 29,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"directus--05a97ef95a",
"directus--0f0b39c9f0",
"directus--27bdf5ad98",
"directus--2af6171363",
"directus--371ca874bf",
"directus--42698ca19c",
"directus--4894f4700e",
"directus--6171b57605",
"directus--683f41088d",
"directus--699c51e2fd",
"directus--6bb5a641ff",
"directus--6e0381fffb",
"directus--780d166a7c",
"directus--838e2a1aa3",
"directus--8545270cc0",
"directus--8a6ee374c5",
"directus--928c5c25d6",
"directus--9ec35d1559",
"directus--ae275563c7",
"directus--ae534d9502",
"directus--c792942c56",
"directus--c95f7731b4",
"directus--cc08335ec9",
"directus--ce991ada6e",
"directus--dbeb181232",
"directus--ef120db8c2",
"directus--f0befb3e4d",
"directus--f2d76edbde",
"directus--f9abf30989"
],
"source_refs": [
{
"name": "Directus GitHub Advisories",
"url": "https://github.com/directus/directus/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Directus",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "discourse",
"entity_type": "system",
"display_name": "Discourse",
"parent_entity_id": null,
"root_system_id": "discourse",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2502-05-2023-143713-1.zip",
"version_scheme": "vendor",
"latest_release_at": "Wed, 05 Feb 2025 14:26:56 +0000",
"latest_release_url": "https://meta.discourse.org/t/3-4-0-beta4-redesigned-emojis-exporting-user-data-flagging-illegal-content-and-more/349299",
"version_source_refs": [
"https://meta.discourse.org/t/3-4-0-beta4-redesigned-emojis-exporting-user-data-flagging-illegal-content-and-more/349299",
"https://meta.discourse.org/t/statement-regarding-openssl-vulnerabilities-2022-11-01/244230",
"https://meta.discourse.org/t/release-v2025-12-0-discourse-rewind-new-review-queue-and-ui-to-create-tags-chat-channel-customisation-and-live-pr-statuses/392314",
"https://meta.discourse.org/t/discourse-and-the-log4j-vulnerability/212609",
"https://meta.discourse.org/t/3-3-4-security-and-maintenance-release/349301",
"https://meta.discourse.org/t/3-4-0-major-release/349303",
"https://meta.discourse.org/t/3-4-0-beta3-check-for-updates-on-what-s-new-page-filter-by-user-in-the-review-queue-threading-in-chat-dms-and-group-chats-and-more/343237",
"https://meta.discourse.org/t/3-4-1-bug-fix-and-ux-release/353247",
"https://meta.discourse.org/t/3-4-2-security-and-bug-fix-release/358152",
"https://meta.discourse.org/t/3-4-3-bug-fix-and-ux-release/362895",
"https://meta.discourse.org/t/3-4-4-bug-fix-and-ux-release/367301",
"https://meta.discourse.org/t/3-4-5-security-fixes-release/369347",
"https://meta.discourse.org/t/3-4-6-security-fix-release/370631",
"https://meta.discourse.org/t/3-4-7-security-and-maintenance-release/375747",
"https://meta.discourse.org/t/january-2026-releases/393903"
],
"version_sync_status": "green",
"security_version_count": 82,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Discourse Release Notes RSS",
"Discourse Security RSS"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-01-28T17:35:34+00:00",
"last_synced_at": "2026-01-28T17:35:34+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 31,
"workflow_complete_advisory_count": 31,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2024-12-19T16:53:54+00:00",
"latest_advisory_at": "2026-03-31T14:35:49+00:00",
"advisory_ids": [
"discourse--0a6de28d35",
"discourse--111e9b52a2",
"discourse--124fce0a46",
"discourse--20c3aec988",
"discourse--321c09b9ad",
"discourse--3b96456013",
"discourse--4222d879a1",
"discourse--451d4d9871",
"discourse--4dbfe76896",
"discourse--5d3cafdece",
"discourse--5dce90675e",
"discourse--615bee56ae",
"discourse--6216e2732b",
"discourse--68e2bb93e1",
"discourse--703d073816",
"discourse--734b2c6337",
"discourse--76d1008283",
"discourse--79ee74932d",
"discourse--7dafb7d908",
"discourse--88ede35504",
"discourse--8c344d4912",
"discourse--9052caf22d",
"discourse--9812e0316d",
"discourse--b0b7e41525",
"discourse--b1f0515c49",
"discourse--b5351f62de",
"discourse--be91796fd3",
"discourse--c407380775",
"discourse--c9760a2b16",
"discourse--dc3c665a74",
"discourse--feb2fecd8e"
],
"source_refs": [
{
"name": "Discourse Meta Security",
"url": "https://meta.discourse.org/c/bug/security/40",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "Discourse Release Notes RSS",
"url": "https://meta.discourse.org/tag/release-notes.rss",
"kind": "rss-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "Discourse Security RSS",
"url": "https://meta.discourse.org/tag/security.rss",
"kind": "rss-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Discourse Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Discourse",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "django--project--django",
"entity_type": "project",
"display_name": "django",
"parent_entity_id": "django",
"root_system_id": "django",
"category": "frameworks",
"ecosystem": "django",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/django",
"marketplace_url": "",
"latest_version": "1.0.0",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/django",
"version_source_refs": [
"https://www.npmjs.com/package/django",
"https://nvd.nist.gov/vuln/detail/CVE-2019-11358"
],
"version_sync_status": "green",
"security_version_count": 160,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://nvd.nist.gov/vuln/detail/CVE-2019-11358"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T21:56:20+00:00",
"last_synced_at": "2026-03-13T21:56:20+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 5,
"workflow_complete_advisory_count": 5,
"version_mapped_advisory_count": 5,
"first_advisory_at": "2019-04-26T16:29:11+00:00",
"latest_advisory_at": "2026-03-13T21:56:20+00:00",
"advisory_ids": [
"django--CVE-2019-11358",
"django--CVE-2025-14550",
"django--CVE-2026-1285",
"django--CVE-2026-25673",
"django--CVE-2026-25674"
],
"source_refs": []
},
{
"entity_id": "django",
"entity_type": "system",
"display_name": "Django",
"parent_entity_id": null,
"root_system_id": "django",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "1.0.0",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/django",
"version_source_refs": [
"https://www.djangoproject.com/weblog/2026/mar/03/security-releases/",
"https://docs.djangoproject.com/en/1.8/releases/security/",
"https://docs.djangoproject.com/en/1.10/releases/security/",
"https://docs.djangoproject.com/en/1.11/releases/security/",
"https://docs.djangoproject.com/en/2.0/releases/security/",
"https://docs.djangoproject.com/en/2.1/releases/security/",
"https://docs.djangoproject.com/en/2.2/releases/security/",
"https://docs.djangoproject.com/en/3.0/releases/security/",
"https://docs.djangoproject.com/en/3.1/releases/security/",
"https://docs.djangoproject.com/en/3.2/releases/security/",
"https://docs.djangoproject.com/en/4.0/releases/security/",
"https://docs.djangoproject.com/en/4.1/releases/security/",
"https://docs.djangoproject.com/en/4.2/releases/security/",
"https://www.djangoproject.com/weblog/2026/feb/03/security-releases/",
"https://docs.djangoproject.com/en/5.0/releases/security/",
"https://docs.djangoproject.com/en/5.1/releases/security/",
"https://docs.djangoproject.com/en/5.2/releases/security/",
"https://docs.djangoproject.com/en/6.0/releases/security/"
],
"version_sync_status": "green",
"security_version_count": 160,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Django Security Weblog",
"Django Security Releases Archive"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T21:56:20+00:00",
"last_synced_at": "2026-03-13T21:56:20+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 82,
"workflow_complete_advisory_count": 82,
"version_mapped_advisory_count": 5,
"first_advisory_at": "2019-04-26T16:29:11+00:00",
"latest_advisory_at": "2026-03-13T21:56:20+00:00",
"advisory_ids": [
"django--039dc7ddc9",
"django--04b01f915c",
"django--09baedefbe",
"django--0aab906a01",
"django--0b0d3e8528",
"django--0d2f5bfda9",
"django--0de38e6fb7",
"django--0e66e85b69",
"django--119d0d44f0",
"django--12d8627bfa",
"django--1596250124",
"django--163aa85f65",
"django--1b9318835e",
"django--24b638c263",
"django--254015d606",
"django--29d47a1fa6",
"django--2a2a9aae5c",
"django--309f1c9e59",
"django--3215595b39",
"django--3d449deb1a",
"django--4081c9ffc7",
"django--40fd3207dc",
"django--42826bad6f",
"django--4664cc7401",
"django--48994827de",
"django--4c2cb798dd",
"django--51863f2eee",
"django--5251fd783b",
"django--54c04190fc",
"django--5799bb4ab0",
"django--59cca01c55",
"django--5c72de7281",
"django--6550a47df6",
"django--6ae5586701",
"django--6db958e7e6",
"django--70feb242af",
"django--71dee0d572",
"django--758119a235",
"django--76e1c5f91b",
"django--7a24d6ab99",
"django--7fd9d0710a",
"django--809f77ff6c",
"django--86345b7646",
"django--89b37a409b",
"django--8d2e24a3e2",
"django--8deb186b5c",
"django--8f1d5b2184",
"django--928c980a74",
"django--9b63010325",
"django--9eea409102",
"django--CVE-2019-11358",
"django--CVE-2025-14550",
"django--CVE-2026-1285",
"django--CVE-2026-25673",
"django--CVE-2026-25674",
"django--a654414489",
"django--a74cec3cef",
"django--a879747124",
"django--ab84c56040",
"django--abc897f0c7",
"django--ad28ca10f9",
"django--ae8246f865",
"django--aec284a220",
"django--b1898bd10a",
"django--ba34c0875e",
"django--be47316ecb",
"django--c0e395334c",
"django--c1c8aebaa5",
"django--ca18cde235",
"django--cc7d4242ff",
"django--ceac3aac2d",
"django--d10de5d475",
"django--d4d142eb6a",
"django--ddee5ea549",
"django--e051892857",
"django--e2ea656f3a",
"django--e6a6ebb203",
"django--ed78bd7fe9",
"django--f1e794c313",
"django--f668a81433",
"django--f81fc1c2ed",
"django--fcf34c2bb9"
],
"source_refs": [
{
"name": "Django Security RSS",
"url": "https://www.djangoproject.com/weblog/feeds/tags/security/",
"kind": "rss-feed",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "Django Security Weblog",
"url": "https://www.djangoproject.com/weblog/",
"kind": "vendor-index",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "Django Security Releases Archive",
"url": "https://docs.djangoproject.com/en/dev/releases/security/",
"kind": "vendor-index",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Django",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "drupal",
"entity_type": "system",
"display_name": "Drupal",
"parent_entity_id": null,
"root_system_id": "drupal",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "11.2.8",
"version_scheme": "vendor",
"latest_release_at": "Wed, 12 Nov 2025 20:16:22 +0000",
"latest_release_url": "https://www.drupal.org/sa-core-2025-008",
"version_source_refs": [
"https://www.drupal.org/sa-core-2025-008",
"https://www.drupal.org/sa-core-2024-008",
"https://www.drupal.org/sa-core-2023-004",
"https://www.drupal.org/sa-core-2023-005",
"https://www.drupal.org/sa-core-2024-001",
"https://www.drupal.org/sa-core-2023-006",
"https://www.drupal.org/sa-core-2024-003"
],
"version_sync_status": "green",
"security_version_count": 74,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Drupal Security Advisories RSS"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-11-12T20:16:22+00:00",
"last_synced_at": "2025-11-12T20:16:22+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 70,
"workflow_complete_advisory_count": 70,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2002-12-31T05:00:00+00:00",
"latest_advisory_at": "2025-11-12T20:16:22+00:00",
"advisory_ids": [
"drupal--156bde9702",
"drupal--170612fa5f",
"drupal--1ab9013d16",
"drupal--23ec7fa241",
"drupal--284d6aff2f",
"drupal--3144ddd947",
"drupal--454e57e9ec",
"drupal--47ee170dd0",
"drupal--4a0d8893d5",
"drupal--65bf5646d9",
"drupal--6da7fc8e2e",
"drupal--9d2d9c684a",
"drupal--CVE-2002-1806",
"drupal--CVE-2005-0682",
"drupal--CVE-2005-1871",
"drupal--CVE-2005-1921",
"drupal--CVE-2005-2106",
"drupal--CVE-2005-2498",
"drupal--CVE-2005-3973",
"drupal--CVE-2005-3974",
"drupal--CVE-2005-3975",
"drupal--CVE-2006-0070",
"drupal--CVE-2006-1225",
"drupal--CVE-2006-1226",
"drupal--CVE-2006-1227",
"drupal--CVE-2006-1228",
"drupal--CVE-2006-2260",
"drupal--CVE-2006-2742",
"drupal--CVE-2006-2743",
"drupal--CVE-2006-2831",
"drupal--CVE-2006-2832",
"drupal--CVE-2006-2833",
"drupal--CVE-2006-3473",
"drupal--CVE-2006-3570",
"drupal--CVE-2006-4002",
"drupal--CVE-2006-4107",
"drupal--CVE-2006-4108",
"drupal--CVE-2006-4109",
"drupal--CVE-2006-4120",
"drupal--CVE-2006-4355",
"drupal--CVE-2006-4356",
"drupal--CVE-2006-4360",
"drupal--CVE-2006-4646",
"drupal--CVE-2006-4717",
"drupal--CVE-2006-4821",
"drupal--CVE-2006-4947",
"drupal--CVE-2006-4949",
"drupal--CVE-2006-5475",
"drupal--CVE-2006-5476",
"drupal--CVE-2006-5477",
"drupal--CVE-2006-5608",
"drupal--CVE-2006-6386",
"drupal--CVE-2006-6528",
"drupal--CVE-2006-6529",
"drupal--CVE-2006-6530",
"drupal--CVE-2006-6531",
"drupal--CVE-2006-6646",
"drupal--CVE-2006-6647",
"drupal--CVE-2007-0124",
"drupal--CVE-2007-0136",
"drupal--CVE-2007-0505",
"drupal--CVE-2007-0506",
"drupal--a141e2f71d",
"drupal--affa7a9ea5",
"drupal--b57027329e",
"drupal--bf3b4df605",
"drupal--de8979ff41",
"drupal--dffda84bb1",
"drupal--e0da564201",
"drupal--e8587ffc80"
],
"source_refs": [
{
"name": "Drupal Security Advisories RSS",
"url": "https://www.drupal.org/security/rss.xml",
"kind": "rss-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Drupal",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Drupal",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "echo--repo--github-com-labstack-echo-v4",
"entity_type": "repo",
"display_name": "labstack / echo / v4",
"parent_entity_id": "echo",
"root_system_id": "echo",
"category": "frameworks",
"ecosystem": "github.com",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/labstack/echo",
"package_registry": "",
"marketplace_url": "",
"latest_version": "5.1.0",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-31T20:56:54Z",
"latest_release_url": "https://github.com/labstack/echo/releases/tag/v5.1.0",
"version_source_refs": [
"https://github.com/labstack/echo/releases/tag/v5.0.4",
"https://github.com/labstack/echo/pull/1718",
"https://github.com/labstack/echo/issues/2259",
"https://github.com/labstack/echo/releases/tag/v5.1.0"
],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"https://github.com/labstack/echo/pull/1718",
"https://github.com/labstack/echo/issues/2259",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2024-05-20T16:03:47+00:00",
"last_synced_at": "2024-05-20T16:03:47+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2021-04-14T20:04:52+00:00",
"latest_advisory_at": "2024-05-20T16:03:47+00:00",
"advisory_ids": [
"echo--CVE-2020-36565",
"echo--CVE-2022-40083"
],
"source_refs": []
},
{
"entity_id": "echo",
"entity_type": "system",
"display_name": "Echo",
"parent_entity_id": null,
"root_system_id": "echo",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "5.1.0",
"version_scheme": "vendor",
"latest_release_at": "2026-03-31T20:56:54Z",
"latest_release_url": "https://github.com/labstack/echo/releases/tag/v5.1.0",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2024-05-20T16:03:47+00:00",
"last_synced_at": "2024-05-20T16:03:47+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2021-04-14T20:04:52+00:00",
"latest_advisory_at": "2024-05-20T16:03:47+00:00",
"advisory_ids": [
"echo--CVE-2020-36565",
"echo--CVE-2022-40083"
],
"source_refs": [
{
"name": "OSV Echo",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "esbuild--project--esbuild",
"entity_type": "project",
"display_name": "esbuild",
"parent_entity_id": "esbuild",
"root_system_id": "esbuild",
"category": "frameworks",
"ecosystem": "esbuild",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/esbuild",
"marketplace_url": "",
"latest_version": "0.27.5",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/esbuild",
"version_source_refs": [
"https://www.npmjs.com/package/esbuild",
"https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T02:50:58+00:00",
"last_synced_at": "2026-02-04T02:50:58+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2025-02-10T17:48:07+00:00",
"latest_advisory_at": "2026-02-04T02:50:58+00:00",
"advisory_ids": [
"esbuild--GHSA-67mh-4wv8-2f99"
],
"source_refs": []
},
{
"entity_id": "esbuild",
"entity_type": "system",
"display_name": "esbuild",
"parent_entity_id": null,
"root_system_id": "esbuild",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "0.27.5",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/esbuild",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T02:50:58+00:00",
"last_synced_at": "2026-02-04T02:50:58+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2025-02-10T17:48:07+00:00",
"latest_advisory_at": "2026-02-04T02:50:58+00:00",
"advisory_ids": [
"esbuild--GHSA-67mh-4wv8-2f99"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV esbuild",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD esbuild",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "express",
"entity_type": "system",
"display_name": "Express",
"parent_entity_id": null,
"root_system_id": "express",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-17T19:40:55+00:00",
"last_synced_at": "2026-03-17T19:40:55+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2025-12-12T08:15:48+00:00",
"latest_advisory_at": "2026-03-17T19:40:55+00:00",
"advisory_ids": [
"express--CVE-2025-67731"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Express",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Express.js",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "fastify--project--fastify",
"entity_type": "project",
"display_name": "fastify",
"parent_entity_id": "fastify",
"root_system_id": "fastify",
"category": "frameworks",
"ecosystem": "fastify",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/fastify",
"marketplace_url": "",
"latest_version": "5.8.4",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/fastify",
"version_source_refs": [
"https://www.npmjs.com/package/fastify",
"https://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9",
"https://github.com/fastify/fastify/security/advisories/GHSA-444r-cwp2-x5xf"
],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9",
"https://github.com/fastify/fastify/security/advisories/GHSA-444r-cwp2-x5xf"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-16T03:05:26+00:00",
"last_synced_at": "2026-03-16T03:05:26+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2026-03-05T21:29:54+00:00",
"latest_advisory_at": "2026-03-25T19:48:38+00:00",
"advisory_ids": [
"fastify--CVE-2026-3419",
"fastify--CVE-2026-3635"
],
"source_refs": []
},
{
"entity_id": "fastify",
"entity_type": "system",
"display_name": "Fastify",
"parent_entity_id": null,
"root_system_id": "fastify",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "5.8.4",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/fastify",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-16T03:05:26+00:00",
"last_synced_at": "2026-03-16T03:05:26+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2026-03-05T21:29:54+00:00",
"latest_advisory_at": "2026-03-25T19:48:38+00:00",
"advisory_ids": [
"fastify--CVE-2026-3419",
"fastify--CVE-2026-3635"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Fastify",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "flask--project--flask",
"entity_type": "project",
"display_name": "flask",
"parent_entity_id": "flask",
"root_system_id": "flask",
"category": "frameworks",
"ecosystem": "flask",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/flask",
"marketplace_url": "",
"latest_version": "0.2.10",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/flask",
"version_source_refs": [
"https://www.npmjs.com/package/flask",
"https://github.com/pallets/flask/security/advisories/GHSA-68rp-wp8r-4726"
],
"version_sync_status": "green",
"security_version_count": 22,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/pallets/flask/security/advisories/GHSA-68rp-wp8r-4726"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-23T23:43:45+00:00",
"last_synced_at": "2026-02-23T23:43:45+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-02-19T20:45:41+00:00",
"latest_advisory_at": "2026-02-23T23:43:45+00:00",
"advisory_ids": [
"flask--CVE-2026-27205"
],
"source_refs": []
},
{
"entity_id": "flask",
"entity_type": "system",
"display_name": "Flask",
"parent_entity_id": null,
"root_system_id": "flask",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "0.2.10",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/flask",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 22,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-23T23:43:45+00:00",
"last_synced_at": "2026-02-23T23:43:45+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-02-19T20:45:41+00:00",
"latest_advisory_at": "2026-02-23T23:43:45+00:00",
"advisory_ids": [
"flask--CVE-2026-27205"
],
"source_refs": [
{
"name": "OSV Flask",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "ghost--repo--tryghost-ghost",
"entity_type": "repo",
"display_name": "TryGhost / Ghost",
"parent_entity_id": "ghost",
"root_system_id": "ghost",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/TryGhost/Ghost",
"package_registry": "",
"marketplace_url": "",
"latest_version": "6.25.1",
"version_scheme": "semver-ish",
"latest_release_at": "2026-04-01T15:46:09Z",
"latest_release_url": "https://github.com/TryGhost/Ghost/releases/tag/v6.25.1",
"version_source_refs": [
"https://github.com/TryGhost/Ghost/releases/tag/v6.22.1",
"https://github.com/login?return_to=%2FTryGhost%2FGhost",
"https://github.com/TryGhost/Ghost/releases/tag/v6.23.0",
"https://github.com/TryGhost/Ghost/releases/tag/v6.24.0",
"https://github.com/TryGhost/Ghost/releases/tag/v6.25.1"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"Ghost GitHub Advisories"
],
"catalog_source": "Ghost GitHub Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "Ghost GitHub Advisories",
"url": "https://github.com/TryGhost/Ghost/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "ghost",
"entity_type": "system",
"display_name": "Ghost",
"parent_entity_id": null,
"root_system_id": "ghost",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "6.25.1",
"version_scheme": "vendor",
"latest_release_at": "2026-04-01T15:46:09Z",
"latest_release_url": "https://github.com/TryGhost/Ghost/releases/tag/v6.25.1",
"version_source_refs": [
"https://github.com/login?return_to=%2FTryGhost%2FGhost"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Ghost GitHub Advisories"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 23,
"workflow_complete_advisory_count": 23,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"ghost--050f486105",
"ghost--090e8094eb",
"ghost--15b63fe17a",
"ghost--166d40d22d",
"ghost--214e65d27a",
"ghost--2bb19dc8b5",
"ghost--2d257c1a3f",
"ghost--348baca052",
"ghost--4790f1f5b1",
"ghost--5b6cbdd8d3",
"ghost--5ffdf9f6ca",
"ghost--67a651def4",
"ghost--6909d346cf",
"ghost--6bd46da019",
"ghost--7170c8a4d5",
"ghost--827aa34bee",
"ghost--be7bb8cffa",
"ghost--d477cae14c",
"ghost--d4f7933eda",
"ghost--d7636173ec",
"ghost--ea643e53ee",
"ghost--ede727cb7f",
"ghost--f9a0df2a1e"
],
"source_refs": [
{
"name": "Ghost GitHub Advisories",
"url": "https://github.com/TryGhost/Ghost/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Ghost",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Ghost",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "gin--repo--github-com-gin-gonic-gin",
"entity_type": "repo",
"display_name": "gin-gonic / gin",
"parent_entity_id": "gin",
"root_system_id": "gin",
"category": "frameworks",
"ecosystem": "github.com",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/gin-gonic/gin",
"package_registry": "",
"marketplace_url": "",
"latest_version": "1.12.0",
"version_scheme": "semver-ish",
"latest_release_at": "2026-02-28T10:12:25Z",
"latest_release_url": "https://github.com/gin-gonic/gin/releases/tag/v1.12.0",
"version_source_refs": [
"https://github.com/gin-gonic/gin/releases/tag/v1.12.0",
"https://nvd.nist.gov/vuln/detail/CVE-2020-28483"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"https://nvd.nist.gov/vuln/detail/CVE-2020-28483",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-14T10:41:18+00:00",
"last_synced_at": "2026-03-14T10:41:18+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2021-06-23T17:53:21+00:00",
"latest_advisory_at": "2026-03-14T10:41:18+00:00",
"advisory_ids": [
"gin--CVE-2020-28483"
],
"source_refs": []
},
{
"entity_id": "gin",
"entity_type": "system",
"display_name": "Gin",
"parent_entity_id": null,
"root_system_id": "gin",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "1.12.0",
"version_scheme": "vendor",
"latest_release_at": "2026-02-28T10:12:25Z",
"latest_release_url": "https://github.com/gin-gonic/gin/releases/tag/v1.12.0",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-14T10:41:18+00:00",
"last_synced_at": "2026-03-14T10:41:18+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2021-06-23T17:53:21+00:00",
"latest_advisory_at": "2026-03-14T10:41:18+00:00",
"advisory_ids": [
"gin--CVE-2020-28483"
],
"source_refs": [
{
"name": "OSV Gin",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "gitea",
"entity_type": "system",
"display_name": "Gitea",
"parent_entity_id": null,
"root_system_id": "gitea",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 13,
"workflow_complete_advisory_count": 13,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"gitea--1c8e9c362e",
"gitea--208153c00f",
"gitea--3c92da972b",
"gitea--4f40ff00d2",
"gitea--60d8bd1b2f",
"gitea--60ffa874a0",
"gitea--68986f8ea3",
"gitea--75ca48cec8",
"gitea--92f58ba270",
"gitea--ac40e44172",
"gitea--bd619d11bf",
"gitea--cb211a66e3",
"gitea--f6062fad75"
],
"source_refs": [
{
"name": "GitHub Gitea Advisories",
"url": "https://github.com/go-gitea/gitea/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Gitea",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "gitlab-ce",
"entity_type": "system",
"display_name": "GitLab CE",
"parent_entity_id": null,
"root_system_id": "gitlab-ce",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2026-4363---incorrect-authorization-issue-in-authorization-caching-impacts-gitlab-ee",
"version_scheme": "vendor",
"latest_release_at": "2026-03-25T00:00:00+00:00",
"latest_release_url": "https://about.gitlab.com/security-releases.xml",
"version_source_refs": [
"https://about.gitlab.com/security-releases.xml"
],
"version_sync_status": "green",
"security_version_count": 627,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitLab Security Releases Atom"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-25T00:00:00+00:00",
"last_synced_at": "2026-03-25T00:00:00+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 56,
"workflow_complete_advisory_count": 56,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2026-03-25T00:00:00+00:00",
"latest_advisory_at": "2026-03-25T00:00:00+00:00",
"advisory_ids": [
"gitlab-ce--0304f4760b",
"gitlab-ce--09c34791d2",
"gitlab-ce--0af1e61b92",
"gitlab-ce--0c6eba5267",
"gitlab-ce--1596d3a555",
"gitlab-ce--263f6d0d37",
"gitlab-ce--26a255a05f",
"gitlab-ce--2813fa5a96",
"gitlab-ce--2affcfa2c1",
"gitlab-ce--2c0d894121",
"gitlab-ce--2f585ea84e",
"gitlab-ce--3286c13a3b",
"gitlab-ce--3a81287450",
"gitlab-ce--3e8351831b",
"gitlab-ce--46bda62e73",
"gitlab-ce--49077868ec",
"gitlab-ce--4944e96c58",
"gitlab-ce--4bf93f5f82",
"gitlab-ce--5295a425fa",
"gitlab-ce--5dc1056579",
"gitlab-ce--60c0e12ae9",
"gitlab-ce--651cad237f",
"gitlab-ce--675f843b73",
"gitlab-ce--6b4c8f1491",
"gitlab-ce--7399a6db08",
"gitlab-ce--7935ca3692",
"gitlab-ce--7be697e21e",
"gitlab-ce--8290264c31",
"gitlab-ce--8434efb057",
"gitlab-ce--938df6b05f",
"gitlab-ce--9a09c62131",
"gitlab-ce--9c714fe216",
"gitlab-ce--9cc0f1cf89",
"gitlab-ce--9e485b609c",
"gitlab-ce--9f02fc37d2",
"gitlab-ce--a2b1c1f8bc",
"gitlab-ce--acd249a8fd",
"gitlab-ce--af56dacb39",
"gitlab-ce--b38206af65",
"gitlab-ce--b3a99c43e9",
"gitlab-ce--b5e1e8f332",
"gitlab-ce--be97071d14",
"gitlab-ce--bf146427d8",
"gitlab-ce--c4b5b43585",
"gitlab-ce--c6afa3fc85",
"gitlab-ce--c91032430a",
"gitlab-ce--c9ed3b92bd",
"gitlab-ce--cd7b46219e",
"gitlab-ce--d3bfede960",
"gitlab-ce--ea5bd69217",
"gitlab-ce--ea62e1c23e",
"gitlab-ce--f77fded226",
"gitlab-ce--fb4ec4238e",
"gitlab-ce--fb926ce823",
"gitlab-ce--fe1c39648d",
"gitlab-ce--feaa64d0ea"
],
"source_refs": [
{
"name": "GitLab Security Releases",
"url": "https://about.gitlab.com/releases/categories/releases/",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GitLab Security Releases Atom",
"url": "https://about.gitlab.com/security-releases.xml",
"kind": "atom-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD GitLab",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GitLab Advisory Database",
"url": "https://gitlab.com/gitlab-org/advisories-community",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "grafana",
"entity_type": "system",
"display_name": "Grafana",
"parent_entity_id": null,
"root_system_id": "grafana",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 60,
"workflow_complete_advisory_count": 60,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"grafana--00af5c25c8",
"grafana--05333b1b24",
"grafana--07068e25de",
"grafana--07a1903a4a",
"grafana--0a82462ef5",
"grafana--0adf50e220",
"grafana--0ba1a53238",
"grafana--0dc00bc1c4",
"grafana--1c5a7a374c",
"grafana--1e316bc62d",
"grafana--1f9b921de5",
"grafana--2fc7be1880",
"grafana--31f9e20b0a",
"grafana--35cbc61add",
"grafana--38775f57b8",
"grafana--3877b6ebbd",
"grafana--38fd016989",
"grafana--3e7e038fb3",
"grafana--3f85728ff6",
"grafana--42bb12d78a",
"grafana--43778eba4b",
"grafana--44a81d8784",
"grafana--47bb8ea4ec",
"grafana--4b41b14571",
"grafana--5662799fe6",
"grafana--5e5eaf68bd",
"grafana--5eadda9a27",
"grafana--685b619e53",
"grafana--6f629de8b4",
"grafana--7733292087",
"grafana--787e1601f8",
"grafana--825c89829c",
"grafana--8341ec0b41",
"grafana--8733a3a65c",
"grafana--87a03f63e7",
"grafana--87f7fa025f",
"grafana--89b3873541",
"grafana--8de0670959",
"grafana--9429cff3a9",
"grafana--a2b3a6c9cf",
"grafana--a7dee3b9f8",
"grafana--a98badf36a",
"grafana--ab94143974",
"grafana--b0606ae76d",
"grafana--b3b307644b",
"grafana--bbad25094b",
"grafana--be01c475a8",
"grafana--be3c074b13",
"grafana--c10d34e67d",
"grafana--c57800f5cf",
"grafana--e0d45449da",
"grafana--e1c626f550",
"grafana--e5a8e937e7",
"grafana--e86602e5d7",
"grafana--ec1f5b0bed",
"grafana--ecf8d1ec85",
"grafana--ee7000e772",
"grafana--efacf0b5bd",
"grafana--f6331c13ee",
"grafana--fb7c780853"
],
"source_refs": [
{
"name": "Grafana Security Advisories",
"url": "https://grafana.com/security/security-advisories/",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "CISA KEV Grafana",
"url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json",
"kind": "kev-json",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "hapi--package--hapi-hapi",
"entity_type": "package",
"display_name": "hapi / hapi",
"parent_entity_id": "hapi",
"root_system_id": "hapi",
"category": "frameworks",
"ecosystem": "@hapi",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/@hapi/hapi",
"marketplace_url": "",
"latest_version": "21.4.8",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/@hapi/hapi",
"version_source_refs": [
"https://www.npmjs.com/package/@hapi/hapi",
"https://www.npmjs.com/advisories/1482"
],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://www.npmjs.com/advisories/1482"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2020-09-03T15:48:43+00:00",
"last_synced_at": "2020-09-03T15:48:43+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2020-08-31T19:00:56+00:00",
"latest_advisory_at": "2020-09-03T15:48:43+00:00",
"advisory_ids": [
"hapi--GHSA-23vw-mhv5-grv5"
],
"source_refs": []
},
{
"entity_id": "hapi",
"entity_type": "system",
"display_name": "Hapi",
"parent_entity_id": null,
"root_system_id": "hapi",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "21.4.8",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/@hapi/hapi",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2020-09-03T15:48:43+00:00",
"last_synced_at": "2020-09-03T15:48:43+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2020-08-31T19:00:56+00:00",
"latest_advisory_at": "2020-09-03T15:48:43+00:00",
"advisory_ids": [
"hapi--GHSA-23vw-mhv5-grv5"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Hapi",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "haproxy",
"entity_type": "system",
"display_name": "HAProxy",
"parent_entity_id": null,
"root_system_id": "haproxy",
"category": "servers",
"ecosystem": "servers",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.0",
"version_scheme": "vendor",
"latest_release_at": "Mon, 16 Mar 2026 08:00:00 +0000",
"latest_release_url": "https://www.haproxy.com/blog/announcing-haproxy-fusion-2-0",
"version_source_refs": [
"https://www.haproxy.com/blog/announcing-haproxy-fusion-2-0",
"https://www.haproxy.com/blog/announcing-haproxy-unified-gateway-1-0"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"HAProxy Blog Feed"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-16T08:00:00+00:00",
"last_synced_at": "2026-03-16T08:00:00+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 7,
"workflow_complete_advisory_count": 7,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2026-02-19T09:00:00+00:00",
"latest_advisory_at": "2026-03-24T00:00:00+00:00",
"advisory_ids": [
"haproxy--0b253e2576",
"haproxy--10754c864c",
"haproxy--3164dd5e31",
"haproxy--9149e77a37",
"haproxy--c60ee42162",
"haproxy--ecfe8a1346",
"haproxy--f1c3251635"
],
"source_refs": [
{
"name": "HAProxy Security Advisories",
"url": "https://www.haproxy.org/security/",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "HAProxy Blog Feed",
"url": "https://www.haproxy.com/feed/",
"kind": "rss-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD HAProxy",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "jenkins",
"entity_type": "system",
"display_name": "Jenkins",
"parent_entity_id": null,
"root_system_id": "jenkins",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 60,
"workflow_complete_advisory_count": 60,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"jenkins--03dd61ed6c",
"jenkins--06fb3ff46d",
"jenkins--08ceec4df7",
"jenkins--09052b3eae",
"jenkins--0a32a3c571",
"jenkins--113fd8c968",
"jenkins--133a539448",
"jenkins--1bc045cd97",
"jenkins--1c7585b982",
"jenkins--1ffcdeba8a",
"jenkins--21f9320895",
"jenkins--2cddf1d9b3",
"jenkins--3005588667",
"jenkins--34d0560049",
"jenkins--38db1fb5cd",
"jenkins--411af8e507",
"jenkins--42e52daf9c",
"jenkins--470e058a98",
"jenkins--48b8a77bf5",
"jenkins--4c843e4744",
"jenkins--4e0b132d14",
"jenkins--4fa1149604",
"jenkins--53044482c6",
"jenkins--5b1b79c24c",
"jenkins--5f65aa9b6a",
"jenkins--5f74193a87",
"jenkins--637532efa3",
"jenkins--6a782085fb",
"jenkins--7060df2f52",
"jenkins--727934295c",
"jenkins--7a7b0f9b6a",
"jenkins--7cc232821e",
"jenkins--7d8d1bc956",
"jenkins--81b102650c",
"jenkins--81b41ce555",
"jenkins--82b8e9027a",
"jenkins--84ba926453",
"jenkins--85dff1bae2",
"jenkins--8da7175fc9",
"jenkins--90a372bd22",
"jenkins--9753fb4e37",
"jenkins--a2dea9e6b5",
"jenkins--adc4c2202c",
"jenkins--b087de8424",
"jenkins--b26ccec7cb",
"jenkins--b82c5cb629",
"jenkins--bf4f7de3b2",
"jenkins--bfb52e90f7",
"jenkins--c044eaedaf",
"jenkins--ca6b8b3a11",
"jenkins--ca6f165400",
"jenkins--d026244993",
"jenkins--d2c5f61bf5",
"jenkins--d77aaec914",
"jenkins--dd853984ba",
"jenkins--e6dae6e89f",
"jenkins--e8b9105178",
"jenkins--ebfee752bb",
"jenkins--eefc478f8f",
"jenkins--f8f32744e4"
],
"source_refs": [
{
"name": "Jenkins Security Advisories",
"url": "https://www.jenkins.io/security/advisories/",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "Jenkins Security Advisories RSS",
"url": "https://www.jenkins.io/security/advisories/rss.xml",
"kind": "rss-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Jenkins",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "joomla",
"entity_type": "system",
"display_name": "Joomla",
"parent_entity_id": null,
"root_system_id": "joomla",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "1027-20260301-core-acl-hardening-in-com-ajax.html",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://developer.joomla.org/security-centre/1027-20260301-core-acl-hardening-in-com-ajax.html",
"version_source_refs": [
"https://developer.joomla.org/security-centre/1017-20260102-core-xss-vector-in-the-pagebreak-plugin.html",
"https://developer.joomla.org/security-centre/963-20250401-framework-sql-injection-vulnerability-in-quotenamestr-method-of-database-package.html",
"https://developer.joomla.org/security-centre/1010-20250901-core-inadequate-content-filtering-within-the-checkattribute-filter-code.html",
"https://developer.joomla.org/security-centre/1011-20250902-core-user-enumeration-in-passkey-authentication-method.html",
"https://developer.joomla.org/security-centre/1016-20260101-core-inadequate-content-filtering-for-data-urls.html",
"https://developer.joomla.org/security-centre/1027-20260301-core-acl-hardening-in-com-ajax.html"
],
"version_sync_status": "green",
"security_version_count": 1,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Joomla Security Centre"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-03T01:03:51+00:00",
"last_synced_at": "2025-04-03T01:03:51+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 100,
"workflow_complete_advisory_count": 100,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2005-11-23T00:03:00+00:00",
"latest_advisory_at": "2025-04-03T01:03:51+00:00",
"advisory_ids": [
"joomla--04eb646043",
"joomla--23d7a390f9",
"joomla--24ba7c55d7",
"joomla--2d45de3cec",
"joomla--335ce67f07",
"joomla--3c51a803ee",
"joomla--45b7bd62a3",
"joomla--475479eb0e",
"joomla--4a08dc024f",
"joomla--4dbeb2067a",
"joomla--4f00956a06",
"joomla--5222192148",
"joomla--525f769852",
"joomla--5b52fd6b65",
"joomla--5ecd0fbd53",
"joomla--5f81299b1e",
"joomla--60ee98bd5c",
"joomla--714431d210",
"joomla--724c381bfc",
"joomla--770ffa7fab",
"joomla--7f0797a2fb",
"joomla--806c79cd04",
"joomla--8493fba7d4",
"joomla--86d4ee7f29",
"joomla--8c73f0e5c7",
"joomla--997a583937",
"joomla--CVE-2005-3771",
"joomla--CVE-2005-3772",
"joomla--CVE-2005-3773",
"joomla--CVE-2005-4650",
"joomla--CVE-2006-0114",
"joomla--CVE-2006-0303",
"joomla--CVE-2006-1027",
"joomla--CVE-2006-1028",
"joomla--CVE-2006-1029",
"joomla--CVE-2006-1030",
"joomla--CVE-2006-1047",
"joomla--CVE-2006-1048",
"joomla--CVE-2006-1049",
"joomla--CVE-2006-1956",
"joomla--CVE-2006-1957",
"joomla--CVE-2006-2815",
"joomla--CVE-2006-2960",
"joomla--CVE-2006-3480",
"joomla--CVE-2006-3481",
"joomla--CVE-2006-3530",
"joomla--CVE-2006-3750",
"joomla--CVE-2006-3773",
"joomla--CVE-2006-3774",
"joomla--CVE-2006-3969",
"joomla--CVE-2006-3970",
"joomla--CVE-2006-3990",
"joomla--CVE-2006-3995",
"joomla--CVE-2006-4074",
"joomla--CVE-2006-4129",
"joomla--CVE-2006-4130",
"joomla--CVE-2006-4229",
"joomla--CVE-2006-4242",
"joomla--CVE-2006-4263",
"joomla--CVE-2006-4269",
"joomla--CVE-2006-4282",
"joomla--CVE-2006-4320",
"joomla--CVE-2006-4348",
"joomla--CVE-2006-4378",
"joomla--CVE-2006-4466",
"joomla--CVE-2006-4468",
"joomla--CVE-2006-4469",
"joomla--CVE-2006-4470",
"joomla--CVE-2006-4471",
"joomla--CVE-2006-4472",
"joomla--CVE-2006-4473",
"joomla--CVE-2006-4474",
"joomla--CVE-2006-4475",
"joomla--CVE-2006-4476",
"joomla--CVE-2006-4553",
"joomla--CVE-2006-4556",
"joomla--a7a023bff5",
"joomla--ab83ad83ad",
"joomla--aca979b01a",
"joomla--b4fb591845",
"joomla--b9999d3e1c",
"joomla--b9f5b26f40",
"joomla--bd778c8ddf",
"joomla--bea8d1b18a",
"joomla--c4621ba95d",
"joomla--c5469b6a4f",
"joomla--cc9ce9f25c",
"joomla--ceecce7e07",
"joomla--d83e385f9b",
"joomla--da2be3cb70",
"joomla--dad8415251",
"joomla--e4b38bd298",
"joomla--e6adae1ee9",
"joomla--e85c02f461",
"joomla--e930a1e9a6",
"joomla--eeba0fbc99",
"joomla--f105b1e370",
"joomla--f73cd5b959",
"joomla--fb3f9be78d",
"joomla--fe529bef2c"
],
"source_refs": [
{
"name": "Joomla Security Centre",
"url": "https://developer.joomla.org/security-centre.html",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Joomla",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Joomla",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "kibana",
"entity_type": "system",
"display_name": "Kibana",
"parent_entity_id": null,
"root_system_id": "kibana",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-19T16:59:58+00:00",
"last_synced_at": "2026-03-19T16:59:58+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 47,
"workflow_complete_advisory_count": 47,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2026-03-19T16:51:08+00:00",
"latest_advisory_at": "2026-03-19T16:59:58+00:00",
"advisory_ids": [
"kibana--012933e759",
"kibana--02f2023a8a",
"kibana--082700f544",
"kibana--0e828e6029",
"kibana--0fcd01159e",
"kibana--157f40093e",
"kibana--158d81dda2",
"kibana--17ec732cae",
"kibana--276c9fdc58",
"kibana--2c7ad92c1a",
"kibana--2d44c7ddc9",
"kibana--3309f8d4f8",
"kibana--332161e412",
"kibana--398fb07209",
"kibana--3f4199182c",
"kibana--484aff4130",
"kibana--4bfdbe9da9",
"kibana--4d0ef3a07b",
"kibana--4ff6f55b20",
"kibana--52faac291e",
"kibana--5d7157b40e",
"kibana--5e1dcece83",
"kibana--6427363bd4",
"kibana--6de16e8ced",
"kibana--70e8ff1612",
"kibana--7952feb737",
"kibana--7cb177b65a",
"kibana--7d6bc3fcfb",
"kibana--7e7bcc67f0",
"kibana--844efe5dac",
"kibana--89cdc4b053",
"kibana--939fa43e76",
"kibana--94812c4238",
"kibana--9c240031a6",
"kibana--9fc909f906",
"kibana--c9e439e476",
"kibana--c9f808dd38",
"kibana--ca14c406d9",
"kibana--cad1e6e82a",
"kibana--cb1cf167b3",
"kibana--e768c02e69",
"kibana--e7cc09ecb5",
"kibana--e932368e80",
"kibana--ec9f892aba",
"kibana--edc2461512",
"kibana--f21d1fb9d1",
"kibana--f4817a0201"
],
"source_refs": [
{
"name": "Elastic Product Security",
"url": "https://www.elastic.co/product-security",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "Elastic Security Announcements RSS",
"url": "https://discuss.elastic.co/c/announcements/security-announcements/31.rss",
"kind": "rss-feed",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Kibana",
"url": null,
"kind": "nvd-search",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "Elastic Security Announcements",
"url": "https://discuss.elastic.co/c/announcements/security-announcements/31",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "koa--project--koa",
"entity_type": "project",
"display_name": "koa",
"parent_entity_id": "koa",
"root_system_id": "koa",
"category": "frameworks",
"ecosystem": "koa",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/koa",
"marketplace_url": "",
"latest_version": "3.2.0",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/koa",
"version_source_refs": [
"https://www.npmjs.com/package/koa",
"https://github.com/koajs/koa/security/advisories/GHSA-7gcc-r8m5-44qm"
],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/koajs/koa/security/advisories/GHSA-7gcc-r8m5-44qm"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-26T23:36:36+00:00",
"last_synced_at": "2026-02-26T23:36:36+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-02-26T22:42:57+00:00",
"latest_advisory_at": "2026-02-26T23:36:36+00:00",
"advisory_ids": [
"koa--CVE-2026-27959"
],
"source_refs": []
},
{
"entity_id": "koa",
"entity_type": "system",
"display_name": "Koa",
"parent_entity_id": null,
"root_system_id": "koa",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.2.0",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/koa",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-26T23:36:36+00:00",
"last_synced_at": "2026-02-26T23:36:36+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-02-26T22:42:57+00:00",
"latest_advisory_at": "2026-02-26T23:36:36+00:00",
"advisory_ids": [
"koa--CVE-2026-27959"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Koa",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "laravel--package--laravel-framework",
"entity_type": "package",
"display_name": "laravel / framework",
"parent_entity_id": "laravel",
"root_system_id": "laravel",
"category": "frameworks",
"ecosystem": "laravel",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/laravel/framework",
"package_registry": "https://packagist.org/packages/laravel/framework",
"marketplace_url": "",
"latest_version": "13.3.0",
"version_scheme": "semver-ish",
"latest_release_at": "2026-04-01T15:39:53+00:00",
"latest_release_url": "https://packagist.org/packages/laravel/framework",
"version_source_refs": [
"https://packagist.org/packages/laravel/framework",
"https://github.com/laravel/framework/security/advisories/GHSA-66hf-2p6w-jqfw"
],
"version_sync_status": "green",
"security_version_count": 103,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Packagist p2",
"https://github.com/laravel/framework/security/advisories/GHSA-66hf-2p6w-jqfw"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T22:15:34+00:00",
"last_synced_at": "2026-03-13T22:15:34+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2021-01-19T19:36:51+00:00",
"latest_advisory_at": "2026-03-13T22:15:34+00:00",
"advisory_ids": [
"laravel--CVE-2021-21263",
"laravel--CVE-2021-43808"
],
"source_refs": []
},
{
"entity_id": "laravel",
"entity_type": "system",
"display_name": "Laravel",
"parent_entity_id": null,
"root_system_id": "laravel",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "13.3.0",
"version_scheme": "vendor",
"latest_release_at": "2026-04-01T15:39:53+00:00",
"latest_release_url": "https://packagist.org/packages/laravel/framework",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 103,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T22:15:34+00:00",
"last_synced_at": "2026-03-13T22:15:34+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2021-01-19T19:36:51+00:00",
"latest_advisory_at": "2026-03-13T22:15:34+00:00",
"advisory_ids": [
"laravel--CVE-2021-21263",
"laravel--CVE-2021-43808"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Laravel",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "magento-open-source--repo--magento-magento2",
"entity_type": "repo",
"display_name": "magento / magento2",
"parent_entity_id": "magento-open-source",
"root_system_id": "magento-open-source",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/magento/magento2",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.4.9-beta1",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-10T14:04:22Z",
"latest_release_url": "https://github.com/magento/magento2/releases/tag/2.4.9-beta1",
"version_source_refs": [
"https://github.com/magento/magento2/releases/tag/2.4.9-beta1",
"https://sansec.io/research/vendors-defeat-magento-security-patch-simple-check",
"https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerability",
"https://sansec.io/research/magento-apsb25-08",
"https://sansec.io/research/visbot-malware-on-6691-stores-analysis"
],
"version_sync_status": "green",
"security_version_count": 3,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"Sansec Research"
],
"catalog_source": "Magento GitHub Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "Magento GitHub Advisories",
"url": "https://github.com/magento/magento2/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "magento-open-source",
"entity_type": "system",
"display_name": "Magento Open Source",
"parent_entity_id": null,
"root_system_id": "magento-open-source",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.4.9-beta1",
"version_scheme": "vendor",
"latest_release_at": "2026-03-10T14:04:22Z",
"latest_release_url": "https://github.com/magento/magento2/releases/tag/2.4.9-beta1",
"version_source_refs": [
"https://sansec.io/research/visbot-malware-on-6691-stores-analysis",
"https://sansec.io/research/vendors-defeat-magento-security-patch-simple-check",
"https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerability",
"https://sansec.io/research/magento-apsb25-08"
],
"version_sync_status": "green",
"security_version_count": 3,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Sansec Research"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-20T01:37:25+00:00",
"last_synced_at": "2025-04-20T01:37:25+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 89,
"workflow_complete_advisory_count": 89,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2009-02-25T16:30:00+00:00",
"latest_advisory_at": "2025-04-20T01:37:25+00:00",
"advisory_ids": [
"magento-open-source--04900a2ec3",
"magento-open-source--12a55f0b15",
"magento-open-source--1311d8bbf5",
"magento-open-source--2466016ebd",
"magento-open-source--272078bc6b",
"magento-open-source--27b9c8ed81",
"magento-open-source--29939ee22e",
"magento-open-source--2d2aac0d18",
"magento-open-source--3d51189790",
"magento-open-source--3fb6056982",
"magento-open-source--439d8e183b",
"magento-open-source--4566edaa3e",
"magento-open-source--48afb07030",
"magento-open-source--4bd674a1cf",
"magento-open-source--4f949e4e63",
"magento-open-source--526ef73ddc",
"magento-open-source--543aaa92bf",
"magento-open-source--57350e411c",
"magento-open-source--5939c3e146",
"magento-open-source--652e12fa78",
"magento-open-source--69b54a8ff1",
"magento-open-source--6c8fcba66c",
"magento-open-source--74ed1a826e",
"magento-open-source--80b4f7c3fb",
"magento-open-source--85342933d9",
"magento-open-source--8ea98ef70b",
"magento-open-source--94e564a2f8",
"magento-open-source--97d69c894f",
"magento-open-source--9b4e19c3a1",
"magento-open-source--CVE-2009-0541",
"magento-open-source--CVE-2011-5240",
"magento-open-source--CVE-2012-3243",
"magento-open-source--CVE-2014-8770",
"magento-open-source--CVE-2014-9758",
"magento-open-source--CVE-2015-1397",
"magento-open-source--CVE-2015-1398",
"magento-open-source--CVE-2015-1399",
"magento-open-source--CVE-2015-2067",
"magento-open-source--CVE-2015-2068",
"magento-open-source--CVE-2015-3457",
"magento-open-source--CVE-2015-3458",
"magento-open-source--CVE-2015-8707",
"magento-open-source--CVE-2016-10704",
"magento-open-source--CVE-2016-2212",
"magento-open-source--CVE-2016-4010",
"magento-open-source--CVE-2016-6485",
"magento-open-source--CVE-2017-13761",
"magento-open-source--CVE-2018-5301",
"magento-open-source--CVE-2019-7139",
"magento-open-source--CVE-2019-7849",
"magento-open-source--CVE-2019-7851",
"magento-open-source--CVE-2019-7852",
"magento-open-source--CVE-2019-7853",
"magento-open-source--CVE-2019-7854",
"magento-open-source--CVE-2019-7855",
"magento-open-source--CVE-2019-7857",
"magento-open-source--CVE-2019-7858",
"magento-open-source--CVE-2019-7859",
"magento-open-source--CVE-2019-7860",
"magento-open-source--CVE-2019-7861",
"magento-open-source--CVE-2019-7862",
"magento-open-source--CVE-2019-7863",
"magento-open-source--CVE-2019-7864",
"magento-open-source--CVE-2019-7865",
"magento-open-source--CVE-2019-7866",
"magento-open-source--CVE-2019-7867",
"magento-open-source--CVE-2019-7868",
"magento-open-source--CVE-2019-7869",
"magento-open-source--CVE-2019-7871",
"magento-open-source--CVE-2019-7872",
"magento-open-source--CVE-2019-7873",
"magento-open-source--CVE-2019-7874",
"magento-open-source--CVE-2019-7875",
"magento-open-source--CVE-2019-7876",
"magento-open-source--CVE-2019-7877",
"magento-open-source--CVE-2019-7880",
"magento-open-source--CVE-2019-7881",
"magento-open-source--CVE-2019-7882",
"magento-open-source--CVE-2019-7885",
"magento-open-source--a4535e6afb",
"magento-open-source--a64786432a",
"magento-open-source--a6c3143101",
"magento-open-source--a6fcbeebc9",
"magento-open-source--b10ea6e032",
"magento-open-source--b2f601bd6e",
"magento-open-source--ba53bb232c",
"magento-open-source--baaf1324e7",
"magento-open-source--c462082dbb",
"magento-open-source--ca8d3dbb05"
],
"source_refs": [
{
"name": "Magento GitHub Advisories",
"url": "https://github.com/magento/magento2/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Magento Open Source",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Magento",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "Sansec Research",
"url": "https://sansec.io/research",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "mattermost--plugin--mattermost-plugins",
"entity_type": "plugin",
"display_name": "Mattermost Plugins",
"parent_entity_id": "mattermost",
"root_system_id": "mattermost",
"category": "platforms",
"ecosystem": "Mattermost Plugins",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/Mattermost Plugins",
"marketplace_url": "",
"latest_version": "26.2.1",
"version_scheme": "semver-ish",
"latest_release_at": "2023-10-03",
"latest_release_url": "https://securityupdates.mattermost.com/security_updates.json",
"version_source_refs": [
"https://securityupdates.mattermost.com/security_updates.json"
],
"version_sync_status": "green",
"security_version_count": 759,
"last_version_synced_at": "2026-04-02T09:18:42+00:00",
"latest_version_evidence": [
"Mattermost Security Updates JSON",
"https://securityupdates.mattermost.com/security_updates.json",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-10T00:00:00+00:00",
"last_synced_at": "2026-03-10T00:00:00+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 5,
"workflow_complete_advisory_count": 5,
"version_mapped_advisory_count": 5,
"first_advisory_at": "2026-02-24T00:00:00+00:00",
"latest_advisory_at": "2026-03-10T00:00:00+00:00",
"advisory_ids": [
"mattermost--MMSA-2026-00584",
"mattermost--MMSA-2026-00589",
"mattermost--MMSA-2026-00610",
"mattermost--MMSA-2026-00611",
"mattermost--MMSA-2026-00621"
],
"source_refs": []
},
{
"entity_id": "mattermost--project--issue-platform",
"entity_type": "project",
"display_name": "Issue Platform",
"parent_entity_id": "mattermost",
"root_system_id": "mattermost",
"category": "platforms",
"ecosystem": "Issue Platform",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/Issue Platform",
"marketplace_url": "",
"latest_version": "26.2.1",
"version_scheme": "semver-ish",
"latest_release_at": "2023-10-03",
"latest_release_url": "https://securityupdates.mattermost.com/security_updates.json",
"version_source_refs": [
"https://securityupdates.mattermost.com/security_updates.json"
],
"version_sync_status": "green",
"security_version_count": 756,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"Mattermost Security Updates JSON",
"https://securityupdates.mattermost.com/security_updates.json",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"mattermost--Issue Identifier"
],
"source_refs": []
},
{
"entity_id": "mattermost--project--mattermost-server",
"entity_type": "project",
"display_name": "Mattermost Server",
"parent_entity_id": "mattermost",
"root_system_id": "mattermost",
"category": "platforms",
"ecosystem": "Mattermost Server",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/Mattermost Server",
"marketplace_url": "",
"latest_version": "26.2.1",
"version_scheme": "semver-ish",
"latest_release_at": "2023-10-03",
"latest_release_url": "https://securityupdates.mattermost.com/security_updates.json",
"version_source_refs": [
"https://securityupdates.mattermost.com/security_updates.json"
],
"version_sync_status": "green",
"security_version_count": 764,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"Mattermost Security Updates JSON",
"advisory-fixed-version",
"https://securityupdates.mattermost.com/security_updates.json"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-16T00:00:00+00:00",
"last_synced_at": "2026-03-16T00:00:00+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 13,
"workflow_complete_advisory_count": 13,
"version_mapped_advisory_count": 13,
"first_advisory_at": "2026-02-23T00:00:00+00:00",
"latest_advisory_at": "2026-03-16T00:00:00+00:00",
"advisory_ids": [
"mattermost--MMSA-2025-00562",
"mattermost--MMSA-2025-00566",
"mattermost--MMSA-2026-00574",
"mattermost--MMSA-2026-00578",
"mattermost--MMSA-2026-00590",
"mattermost--MMSA-2026-00593",
"mattermost--MMSA-2026-00594",
"mattermost--MMSA-2026-00595",
"mattermost--MMSA-2026-00598",
"mattermost--MMSA-2026-00599",
"mattermost--MMSA-2026-00603",
"mattermost--MMSA-2026-00624",
"mattermost--MMSA-2026-00625"
],
"source_refs": []
},
{
"entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
"entity_type": "repo",
"display_name": "mattermost / mattermost-server",
"parent_entity_id": "mattermost",
"root_system_id": "mattermost",
"category": "platforms",
"ecosystem": "github.com",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/mattermost/mattermost-server",
"package_registry": "",
"marketplace_url": "",
"latest_version": "11.4.3",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-16T08:26:52Z",
"latest_release_url": "https://github.com/mattermost/mattermost/releases/tag/v11.4.3",
"version_source_refs": [
"https://github.com/mattermost/mattermost/releases/tag/v11.4.3",
"https://nvd.nist.gov/vuln/detail/CVE-2026-22545",
"https://securityupdates.mattermost.com/security_updates.json",
"https://nvd.nist.gov/vuln/detail/CVE-2026-21386",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2463",
"https://nvd.nist.gov/vuln/detail/CVE-2026-24692",
"https://nvd.nist.gov/vuln/detail/CVE-2026-4265",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2458",
"https://nvd.nist.gov/vuln/detail/CVE-2026-26246",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2457",
"https://nvd.nist.gov/vuln/detail/CVE-2026-25780",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2578",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2455",
"https://nvd.nist.gov/vuln/detail/CVE-2026-24458",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"https://nvd.nist.gov/vuln/detail/CVE-2025-14350",
"https://nvd.nist.gov/vuln/detail/CVE-2025-13821",
"https://nvd.nist.gov/vuln/detail/CVE-2026-0999",
"https://nvd.nist.gov/vuln/detail/CVE-2025-14573"
],
"version_sync_status": "green",
"security_version_count": 843,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"https://nvd.nist.gov/vuln/detail/CVE-2026-22545",
"Mattermost Security Updates JSON",
"https://nvd.nist.gov/vuln/detail/CVE-2026-21386",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2463",
"https://nvd.nist.gov/vuln/detail/CVE-2026-24692",
"https://nvd.nist.gov/vuln/detail/CVE-2026-4265",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2458",
"https://nvd.nist.gov/vuln/detail/CVE-2026-26246",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2457",
"https://nvd.nist.gov/vuln/detail/CVE-2026-25780",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2578",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2455",
"https://nvd.nist.gov/vuln/detail/CVE-2026-24458",
"https://nvd.nist.gov/vuln/detail/CVE-2026-2456",
"https://nvd.nist.gov/vuln/detail/CVE-2026-25783",
"https://nvd.nist.gov/vuln/detail/CVE-2025-14350",
"https://nvd.nist.gov/vuln/detail/CVE-2025-13821",
"https://nvd.nist.gov/vuln/detail/CVE-2026-0999",
"https://nvd.nist.gov/vuln/detail/CVE-2025-14573"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-19T19:31:20+00:00",
"last_synced_at": "2026-03-19T19:31:20+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 21,
"workflow_complete_advisory_count": 21,
"version_mapped_advisory_count": 21,
"first_advisory_at": "2026-02-16T12:30:24+00:00",
"latest_advisory_at": "2026-04-01T17:35:38+00:00",
"advisory_ids": [
"mattermost--CVE-2025-13821",
"mattermost--CVE-2025-14350",
"mattermost--CVE-2025-14573",
"mattermost--CVE-2026-0999",
"mattermost--CVE-2026-21386",
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26233",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-27656",
"mattermost--CVE-2026-3113",
"mattermost--CVE-2026-4265"
],
"source_refs": []
},
{
"entity_id": "mattermost",
"entity_type": "system",
"display_name": "Mattermost",
"parent_entity_id": null,
"root_system_id": "mattermost",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "26.2.1",
"version_scheme": "vendor",
"latest_release_at": "2023-10-03",
"latest_release_url": "https://securityupdates.mattermost.com/security_updates.json",
"version_source_refs": [
"https://securityupdates.mattermost.com/security_updates.json"
],
"version_sync_status": "green",
"security_version_count": 3122,
"last_version_synced_at": "2026-04-02T09:18:38+00:00",
"latest_version_evidence": [
"Mattermost Security Updates JSON"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-19T19:31:20+00:00",
"last_synced_at": "2026-03-19T19:31:20+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 40,
"workflow_complete_advisory_count": 40,
"version_mapped_advisory_count": 40,
"first_advisory_at": "2026-02-16T12:30:24+00:00",
"latest_advisory_at": "2026-04-01T17:35:38+00:00",
"advisory_ids": [
"mattermost--CVE-2025-13821",
"mattermost--CVE-2025-14350",
"mattermost--CVE-2025-14573",
"mattermost--CVE-2026-0999",
"mattermost--CVE-2026-21386",
"mattermost--CVE-2026-22545",
"mattermost--CVE-2026-24458",
"mattermost--CVE-2026-2455",
"mattermost--CVE-2026-2456",
"mattermost--CVE-2026-2457",
"mattermost--CVE-2026-2458",
"mattermost--CVE-2026-2463",
"mattermost--CVE-2026-24692",
"mattermost--CVE-2026-2578",
"mattermost--CVE-2026-25780",
"mattermost--CVE-2026-25783",
"mattermost--CVE-2026-26233",
"mattermost--CVE-2026-26246",
"mattermost--CVE-2026-27656",
"mattermost--CVE-2026-3113",
"mattermost--CVE-2026-4265",
"mattermost--Issue Identifier",
"mattermost--MMSA-2025-00562",
"mattermost--MMSA-2025-00566",
"mattermost--MMSA-2026-00574",
"mattermost--MMSA-2026-00578",
"mattermost--MMSA-2026-00584",
"mattermost--MMSA-2026-00589",
"mattermost--MMSA-2026-00590",
"mattermost--MMSA-2026-00593",
"mattermost--MMSA-2026-00594",
"mattermost--MMSA-2026-00595",
"mattermost--MMSA-2026-00598",
"mattermost--MMSA-2026-00599",
"mattermost--MMSA-2026-00603",
"mattermost--MMSA-2026-00610",
"mattermost--MMSA-2026-00611",
"mattermost--MMSA-2026-00621",
"mattermost--MMSA-2026-00624",
"mattermost--MMSA-2026-00625"
],
"source_refs": [
{
"name": "Mattermost Security Updates",
"url": "https://mattermost.com/security-updates/",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Mattermost",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "Mattermost Security Updates JSON",
"url": "https://securityupdates.mattermost.com/security_updates.json",
"kind": "json-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Mattermost",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "mediawiki",
"entity_type": "system",
"display_name": "MediaWiki",
"parent_entity_id": null,
"root_system_id": "mediawiki",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "28-10-2025",
"version_scheme": "vendor",
"latest_release_at": "Tue, 07 Oct 2025 15:18:36 +0000",
"latest_release_url": "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/7WBTCHTWB2ZBLPFDKZS3HPBL5F2CMDU2/",
"version_source_refs": [
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/7WBTCHTWB2ZBLPFDKZS3HPBL5F2CMDU2/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/TVI3VMUX3LEK554OKQSOZOET7HCVRZFZ/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/YRWHNMUHAUQZ547FQCVP7LAZTBN5SSVD/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/3EXWLDDHRGVDQACOHP3Y4ZE5H6BHBJPJ/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/JURTP3O5CLKAIWGVGELFKP7VCDWVQBBJ/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/PFTE5RHUERS6KTUGGRZO7XXV5THNJ77E/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/CIXFJVC57OFRBCCEIDRLZCLFGMYGEYTT/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/TT45WDZ7MDTXXBEFLBMLAJI532O2PN2U/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/FFD4KWZMOVZQJF4PIIVUTCEHDJLMNZEB/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/6I6GV6OP27OB7CZS2JUQ5IC6XFXRHLNQ/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/",
"https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/6VW6OGVSC7LO3QUMBEZOPQFYYOFDJ452/"
],
"version_sync_status": "green",
"security_version_count": 280,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"MediaWiki Announce RSS"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-01-09T17:54:29+00:00",
"last_synced_at": "2026-01-09T17:54:29+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 73,
"workflow_complete_advisory_count": 73,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2004-12-31T05:00:00+00:00",
"latest_advisory_at": "2026-04-01T13:09:42+00:00",
"advisory_ids": [
"mediawiki--05670a18f6",
"mediawiki--0cd3c8cc6d",
"mediawiki--0fe51dab1c",
"mediawiki--13680966cb",
"mediawiki--1da990d870",
"mediawiki--263a51dc17",
"mediawiki--2b8b31c4ea",
"mediawiki--318c62346b",
"mediawiki--31d957bc6b",
"mediawiki--38ad6c5da5",
"mediawiki--468e6bcac6",
"mediawiki--469c5db88b",
"mediawiki--46bf0dec8b",
"mediawiki--4bb7b4f173",
"mediawiki--57ad4abb33",
"mediawiki--5ae1c442a8",
"mediawiki--6dfc7c9310",
"mediawiki--746b221830",
"mediawiki--77f2193adf",
"mediawiki--7a3e57910a",
"mediawiki--7f293ae8df",
"mediawiki--8264120aae",
"mediawiki--82708fa15f",
"mediawiki--9520c4eb80",
"mediawiki--9531fc3afb",
"mediawiki--CVE-2004-1405",
"mediawiki--CVE-2004-2152",
"mediawiki--CVE-2004-2185",
"mediawiki--CVE-2004-2186",
"mediawiki--CVE-2004-2187",
"mediawiki--CVE-2005-0534",
"mediawiki--CVE-2005-0535",
"mediawiki--CVE-2005-0536",
"mediawiki--CVE-2005-1245",
"mediawiki--CVE-2005-1888",
"mediawiki--CVE-2005-2215",
"mediawiki--CVE-2005-2396",
"mediawiki--CVE-2005-3165",
"mediawiki--CVE-2005-3166",
"mediawiki--CVE-2005-3167",
"mediawiki--CVE-2005-4031",
"mediawiki--CVE-2005-4501",
"mediawiki--CVE-2006-0322",
"mediawiki--CVE-2006-1498",
"mediawiki--CVE-2006-2611",
"mediawiki--CVE-2006-2895",
"mediawiki--CVE-2007-0177",
"mediawiki--CVE-2007-0788",
"mediawiki--CVE-2007-0894",
"mediawiki--CVE-2007-1054",
"mediawiki--CVE-2007-1055",
"mediawiki--CVE-2007-4828",
"mediawiki--CVE-2007-4883",
"mediawiki--CVE-2008-0460",
"mediawiki--CVE-2008-1318",
"mediawiki--CVE-2008-4408",
"mediawiki--CVE-2008-5249",
"mediawiki--CVE-2008-5250",
"mediawiki--CVE-2008-5252",
"mediawiki--CVE-2008-5687",
"mediawiki--CVE-2008-5688",
"mediawiki--CVE-2009-0737",
"mediawiki--CVE-2009-4589",
"mediawiki--CVE-2010-1189",
"mediawiki--CVE-2010-1190",
"mediawiki--a7589e254a",
"mediawiki--aca545ecfd",
"mediawiki--c36eeb5d22",
"mediawiki--d779f6ce31",
"mediawiki--e7b4a9ed1c",
"mediawiki--e900dc8656",
"mediawiki--eb8c65d48d",
"mediawiki--f2f6ab880e"
],
"source_refs": [
{
"name": "MediaWiki Security Releases",
"url": "https://www.mediawiki.org/wiki/Security",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "MediaWiki Announce RSS",
"url": "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/feed/",
"kind": "rss-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD MediaWiki",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV MediaWiki",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "medusa",
"entity_type": "system",
"display_name": "Medusa",
"parent_entity_id": null,
"root_system_id": "medusa",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 15,
"workflow_complete_advisory_count": 15,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"medusa--16e8e57a44",
"medusa--25e199859a",
"medusa--3585e9e0a9",
"medusa--45a3c9a64c",
"medusa--4a9f3a2775",
"medusa--511da765e2",
"medusa--5607e5a2fb",
"medusa--5ac46b1e92",
"medusa--8a6a5535d5",
"medusa--a0859be24d",
"medusa--b3c14dab60",
"medusa--b94a42f31a",
"medusa--bc03637189",
"medusa--e59164be8e",
"medusa--fef9f011be"
],
"source_refs": [
{
"name": "GitHub Medusa Advisories",
"url": "https://github.com/medusajs/medusa/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Medusa",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "moodle",
"entity_type": "system",
"display_name": "Moodle",
"parent_entity_id": null,
"root_system_id": "moodle",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-09T00:30:58+00:00",
"last_synced_at": "2025-04-09T00:30:58+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 40,
"workflow_complete_advisory_count": 40,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2004-04-30T04:00:00+00:00",
"latest_advisory_at": "2025-04-09T00:30:58+00:00",
"advisory_ids": [
"moodle--CVE-2004-0725",
"moodle--CVE-2004-1424",
"moodle--CVE-2004-1425",
"moodle--CVE-2004-1711",
"moodle--CVE-2004-1978",
"moodle--CVE-2004-2232",
"moodle--CVE-2004-2233",
"moodle--CVE-2004-2234",
"moodle--CVE-2004-2235",
"moodle--CVE-2004-2236",
"moodle--CVE-2004-2237",
"moodle--CVE-2005-2247",
"moodle--CVE-2005-3648",
"moodle--CVE-2005-3649",
"moodle--CVE-2006-0146",
"moodle--CVE-2006-0147",
"moodle--CVE-2006-3951",
"moodle--CVE-2006-4784",
"moodle--CVE-2006-4785",
"moodle--CVE-2006-4786",
"moodle--CVE-2006-4935",
"moodle--CVE-2006-4936",
"moodle--CVE-2006-4937",
"moodle--CVE-2006-4938",
"moodle--CVE-2006-4939",
"moodle--CVE-2006-4940",
"moodle--CVE-2006-4941",
"moodle--CVE-2006-4942",
"moodle--CVE-2006-4943",
"moodle--CVE-2006-5219",
"moodle--CVE-2006-6625",
"moodle--CVE-2006-6626",
"moodle--CVE-2006-7048",
"moodle--CVE-2007-1429",
"moodle--CVE-2007-1647",
"moodle--CVE-2007-3555",
"moodle--CVE-2007-6538",
"moodle--CVE-2008-0123",
"moodle--CVE-2008-1502",
"moodle--CVE-2008-3325"
],
"source_refs": [
{
"name": "Moodle Security News",
"url": "https://moodle.org/security/",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Moodle",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Moodle",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "nestjs",
"entity_type": "system",
"display_name": "NestJS",
"parent_entity_id": null,
"root_system_id": "nestjs",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-02T20:30:10+00:00",
"last_synced_at": "2026-03-02T20:30:10+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2025-12-29T16:15:44+00:00",
"latest_advisory_at": "2026-03-02T20:30:10+00:00",
"advisory_ids": [
"nestjs--CVE-2025-69211",
"nestjs--CVE-2026-2293"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV NestJS",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD NestJS",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "nextjs--project--next",
"entity_type": "project",
"display_name": "next",
"parent_entity_id": "nextjs",
"root_system_id": "nextjs",
"category": "frameworks",
"ecosystem": "next",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/next",
"marketplace_url": "",
"latest_version": "16.2.2",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/next",
"version_source_refs": [
"https://www.npmjs.com/package/next",
"https://github.com/vercel/next.js",
"https://github.com/zeit/next.js/security/advisories/GHSA-fq77-7p7r-83rj",
"https://github.com/vercel/next.js/security/advisories/GHSA-vxf5-wxwp-m7g9",
"https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx",
"https://nvd.nist.gov/vuln/detail/CVE-2023-46298",
"https://github.com/vercel/next.js/security/advisories/GHSA-qpjv-v59x-3qc4",
"https://github.com/vercel/next.js/security/advisories/GHSA-xv57-4mr9-wg8v",
"https://github.com/vercel/next.js/security/advisories/GHSA-4342-x723-ch2f",
"https://nvd.nist.gov/vuln/detail/CVE-2017-16877",
"https://nvd.nist.gov/vuln/detail/CVE-2018-6184",
"https://nvd.nist.gov/vuln/detail/CVE-2018-18282",
"https://github.com/vercel/next.js/security/advisories/GHSA-x56p-c8cg-q435",
"https://github.com/vercel/next.js/security/advisories/GHSA-ggv3-7p47-pfv8",
"https://github.com/vercel/next.js/security/advisories/GHSA-7gfc-8cq8-jh5f"
],
"version_sync_status": "green",
"security_version_count": 181,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/vercel/next.js",
"https://github.com/zeit/next.js/security/advisories/GHSA-fq77-7p7r-83rj",
"https://github.com/vercel/next.js/security/advisories/GHSA-vxf5-wxwp-m7g9",
"https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx",
"https://nvd.nist.gov/vuln/detail/CVE-2023-46298",
"https://github.com/vercel/next.js/security/advisories/GHSA-qpjv-v59x-3qc4",
"https://github.com/vercel/next.js/security/advisories/GHSA-xv57-4mr9-wg8v",
"https://github.com/vercel/next.js/security/advisories/GHSA-4342-x723-ch2f",
"https://nvd.nist.gov/vuln/detail/CVE-2017-16877",
"https://nvd.nist.gov/vuln/detail/CVE-2018-6184",
"https://nvd.nist.gov/vuln/detail/CVE-2018-18282",
"https://github.com/vercel/next.js/security/advisories/GHSA-x56p-c8cg-q435",
"https://github.com/vercel/next.js/security/advisories/GHSA-ggv3-7p47-pfv8",
"https://github.com/vercel/next.js/security/advisories/GHSA-7gfc-8cq8-jh5f"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-19T18:48:06+00:00",
"last_synced_at": "2026-03-19T18:48:06+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 41,
"workflow_complete_advisory_count": 41,
"version_mapped_advisory_count": 41,
"first_advisory_at": "2017-12-05T02:04:14+00:00",
"latest_advisory_at": "2026-04-01T17:31:03+00:00",
"advisory_ids": [
"nextjs--CVE-2017-16877",
"nextjs--CVE-2018-18282",
"nextjs--CVE-2018-6184",
"nextjs--CVE-2020-15242",
"nextjs--CVE-2020-5284",
"nextjs--CVE-2021-37699",
"nextjs--CVE-2021-39178",
"nextjs--CVE-2021-43803",
"nextjs--CVE-2022-21721",
"nextjs--CVE-2022-23646",
"nextjs--CVE-2022-36046",
"nextjs--CVE-2023-46298",
"nextjs--CVE-2024-34350",
"nextjs--CVE-2024-34351",
"nextjs--CVE-2024-39693",
"nextjs--CVE-2024-46982",
"nextjs--CVE-2024-47831",
"nextjs--CVE-2024-51479",
"nextjs--CVE-2024-56332",
"nextjs--CVE-2025-29927",
"nextjs--CVE-2025-30218",
"nextjs--CVE-2025-32421",
"nextjs--CVE-2025-48068",
"nextjs--CVE-2025-49005",
"nextjs--CVE-2025-49826",
"nextjs--CVE-2025-55173",
"nextjs--CVE-2025-57752",
"nextjs--CVE-2025-57822",
"nextjs--CVE-2025-59471",
"nextjs--CVE-2025-59472",
"nextjs--CVE-2026-27977",
"nextjs--CVE-2026-27978",
"nextjs--CVE-2026-27979",
"nextjs--CVE-2026-27980",
"nextjs--CVE-2026-29057",
"nextjs--GHSA-5j59-xgg2-r9c4",
"nextjs--GHSA-5vj8-3v2h-h38v",
"nextjs--GHSA-9qr9-h5gf-34mp",
"nextjs--GHSA-h25m-26qc-wcjf",
"nextjs--GHSA-mwv6-3258-q52c",
"nextjs--GHSA-w37m-7fhw-fmv9"
],
"source_refs": []
},
{
"entity_id": "nextjs",
"entity_type": "system",
"display_name": "Next.js",
"parent_entity_id": null,
"root_system_id": "nextjs",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "16.2.2",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/next",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 181,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-19T18:48:06+00:00",
"last_synced_at": "2026-03-19T18:48:06+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 66,
"workflow_complete_advisory_count": 66,
"version_mapped_advisory_count": 41,
"first_advisory_at": "2017-12-05T02:04:14+00:00",
"latest_advisory_at": "2026-04-01T17:31:03+00:00",
"advisory_ids": [
"nextjs--0bc50e56d4",
"nextjs--0dc6888d4d",
"nextjs--141ab877e6",
"nextjs--1dc77c2e8c",
"nextjs--2273921172",
"nextjs--2f7ce5f22d",
"nextjs--30749468ad",
"nextjs--33433e3c48",
"nextjs--49efa644c2",
"nextjs--4a184c2b42",
"nextjs--4f1317042a",
"nextjs--89882b7557",
"nextjs--8e12818ec0",
"nextjs--CVE-2017-16877",
"nextjs--CVE-2018-18282",
"nextjs--CVE-2018-6184",
"nextjs--CVE-2020-15242",
"nextjs--CVE-2020-5284",
"nextjs--CVE-2021-37699",
"nextjs--CVE-2021-39178",
"nextjs--CVE-2021-43803",
"nextjs--CVE-2022-21721",
"nextjs--CVE-2022-23646",
"nextjs--CVE-2022-36046",
"nextjs--CVE-2023-46298",
"nextjs--CVE-2024-34350",
"nextjs--CVE-2024-34351",
"nextjs--CVE-2024-39693",
"nextjs--CVE-2024-46982",
"nextjs--CVE-2024-47831",
"nextjs--CVE-2024-51479",
"nextjs--CVE-2024-56332",
"nextjs--CVE-2025-29927",
"nextjs--CVE-2025-30218",
"nextjs--CVE-2025-32421",
"nextjs--CVE-2025-48068",
"nextjs--CVE-2025-49005",
"nextjs--CVE-2025-49826",
"nextjs--CVE-2025-55173",
"nextjs--CVE-2025-57752",
"nextjs--CVE-2025-57822",
"nextjs--CVE-2025-59471",
"nextjs--CVE-2025-59472",
"nextjs--CVE-2026-27977",
"nextjs--CVE-2026-27978",
"nextjs--CVE-2026-27979",
"nextjs--CVE-2026-27980",
"nextjs--CVE-2026-29057",
"nextjs--GHSA-5j59-xgg2-r9c4",
"nextjs--GHSA-5vj8-3v2h-h38v",
"nextjs--GHSA-9qr9-h5gf-34mp",
"nextjs--GHSA-h25m-26qc-wcjf",
"nextjs--GHSA-mwv6-3258-q52c",
"nextjs--GHSA-w37m-7fhw-fmv9",
"nextjs--a2c7259ddc",
"nextjs--ae380e9321",
"nextjs--b6cd982531",
"nextjs--b7cd10199e",
"nextjs--ba8c047631",
"nextjs--c22545df7f",
"nextjs--c28e8c0dbc",
"nextjs--ca9b9a6983",
"nextjs--e50a174f6a",
"nextjs--f3892d9cb1",
"nextjs--f553550ff7",
"nextjs--f99bc2ccb0"
],
"source_refs": [
{
"name": "GitHub Next.js Advisories",
"url": "https://github.com/vercel/next.js/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Next.js",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "nginx",
"entity_type": "system",
"display_name": "Nginx",
"parent_entity_id": null,
"root_system_id": "nginx",
"category": "servers",
"ecosystem": "servers",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-08-12T17:24:44+00:00",
"last_synced_at": "2025-08-12T17:24:44+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 110,
"workflow_complete_advisory_count": 110,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2009-09-15T22:30:00+00:00",
"latest_advisory_at": "2025-08-12T17:24:44+00:00",
"advisory_ids": [
"nginx--0569e618e2",
"nginx--1cb54d668d",
"nginx--217331376c",
"nginx--24c7ae5def",
"nginx--28e23502f7",
"nginx--29fb978af2",
"nginx--2a4e47ce04",
"nginx--2fe2a861d1",
"nginx--30236b2c9d",
"nginx--336e602ecb",
"nginx--368044500b",
"nginx--40800318f2",
"nginx--4738d89a16",
"nginx--4c58a724ee",
"nginx--4c76bccaad",
"nginx--5085b8b99b",
"nginx--61abb2ec77",
"nginx--62c2fc321b",
"nginx--68931ef7db",
"nginx--68ece90d2c",
"nginx--6c245ac287",
"nginx--6f2294c12b",
"nginx--732499f0b5",
"nginx--7bddb39d26",
"nginx--804016cf59",
"nginx--83b80e3519",
"nginx--84226f6252",
"nginx--851e8b9969",
"nginx--8bb031ebe6",
"nginx--8d64c2c7e1",
"nginx--8d7938fe7f",
"nginx--9209e9e91e",
"nginx--979bf408c2",
"nginx--9de19228db",
"nginx--CVE-2009-2629",
"nginx--CVE-2009-3896",
"nginx--CVE-2009-3898",
"nginx--CVE-2009-4487",
"nginx--CVE-2010-2263",
"nginx--CVE-2010-2266",
"nginx--CVE-2011-4315",
"nginx--CVE-2011-4963",
"nginx--CVE-2012-1180",
"nginx--CVE-2012-2089",
"nginx--CVE-2012-3380",
"nginx--CVE-2013-0337",
"nginx--CVE-2013-2028",
"nginx--CVE-2013-2070",
"nginx--CVE-2013-4547",
"nginx--CVE-2014-0088",
"nginx--CVE-2014-0133",
"nginx--CVE-2014-3556",
"nginx--CVE-2014-3616",
"nginx--CVE-2016-0742",
"nginx--CVE-2016-0746",
"nginx--CVE-2016-0747",
"nginx--CVE-2016-1247",
"nginx--CVE-2016-4450",
"nginx--CVE-2017-7529",
"nginx--CVE-2017-8301",
"nginx--CVE-2018-1000653",
"nginx--CVE-2018-11046",
"nginx--CVE-2018-11747",
"nginx--CVE-2018-12029",
"nginx--CVE-2018-1299",
"nginx--CVE-2018-16843",
"nginx--CVE-2018-16844",
"nginx--CVE-2018-16845",
"nginx--CVE-2018-8059",
"nginx--CVE-2019-11837",
"nginx--CVE-2019-11838",
"nginx--CVE-2019-11839",
"nginx--CVE-2019-12206",
"nginx--CVE-2019-12207",
"nginx--CVE-2019-12208",
"nginx--CVE-2019-12938",
"nginx--CVE-2019-13067",
"nginx--CVE-2019-13617",
"nginx--CVE-2019-13980",
"nginx--CVE-2019-15517",
"nginx--CVE-2019-18371",
"nginx--CVE-2019-7401",
"nginx--CVE-2019-9161",
"nginx--CVE-2019-9945",
"nginx--a0b816a7d3",
"nginx--ace282d050",
"nginx--bb184634ce",
"nginx--be6ea396fd",
"nginx--c5cd1bbbef",
"nginx--c607778484",
"nginx--c622afc84e",
"nginx--c827e4bfa3",
"nginx--c93f3b000f",
"nginx--cdbcb1c927",
"nginx--ceb85c4841",
"nginx--d1a9b18422",
"nginx--d306e098c7",
"nginx--d85922ee1e",
"nginx--e0a442e45e",
"nginx--e7a0540903",
"nginx--ed112ebde1",
"nginx--ee6036785b",
"nginx--f62c0e16b5",
"nginx--f86689b061",
"nginx--f8846aa3f0",
"nginx--f9b761c25d",
"nginx--f9faf8fadb",
"nginx--fb39810518",
"nginx--fd94394912",
"nginx--fe30b91a56"
],
"source_refs": [
{
"name": "NGINX Security Advisories",
"url": "https://nginx.org/en/security_advisories.html",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD NGINX",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "CISA KEV NGINX",
"url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json",
"kind": "kev-json",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "nodejs",
"entity_type": "system",
"display_name": "Node.js",
"parent_entity_id": null,
"root_system_id": "nodejs",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-01-21T00:00:00+00:00",
"last_synced_at": "2025-01-21T00:00:00+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 8,
"workflow_complete_advisory_count": 8,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2022-01-18T00:00:00+00:00",
"latest_advisory_at": "2025-01-21T00:00:00+00:00",
"advisory_ids": [
"nodejs--6734913818",
"nodejs--71860b6d34",
"nodejs--80e3e57e30",
"nodejs--CVE-2021-21315",
"nodejs--CVE-2024-55591",
"nodejs--c4dcafe482",
"nodejs--eafd98a5b3",
"nodejs--f802d25ee1"
],
"source_refs": [
{
"name": "Node.js Security Releases",
"url": "https://nodejs.org/en/blog/vulnerability",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "CISA KEV Node.js",
"url": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json",
"kind": "kev-json",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "nuxt--project--nuxt",
"entity_type": "project",
"display_name": "nuxt",
"parent_entity_id": "nuxt",
"root_system_id": "nuxt",
"category": "frameworks",
"ecosystem": "nuxt",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/nuxt",
"marketplace_url": "",
"latest_version": "4.4.2",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/nuxt",
"version_source_refs": [
"https://www.npmjs.com/package/nuxt",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-vf6r-87q4-2vjf",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-jvhm-gjrh-3h93",
"https://nvd.nist.gov/vuln/detail/CVE-2023-3224",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-v784-fjjh-f8r4",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-p6jq-8vc4-79f6"
],
"version_sync_status": "green",
"security_version_count": 11,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-vf6r-87q4-2vjf",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-jvhm-gjrh-3h93",
"https://nvd.nist.gov/vuln/detail/CVE-2023-3224",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-v784-fjjh-f8r4",
"https://github.com/nuxt/nuxt/security/advisories/GHSA-p6jq-8vc4-79f6"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-09-18T13:04:21+00:00",
"last_synced_at": "2025-09-18T13:04:21+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 5,
"workflow_complete_advisory_count": 5,
"version_mapped_advisory_count": 5,
"first_advisory_at": "2023-06-13T18:30:40+00:00",
"latest_advisory_at": "2025-09-18T13:04:21+00:00",
"advisory_ids": [
"nuxt--CVE-2023-3224",
"nuxt--CVE-2024-34343",
"nuxt--CVE-2024-34344",
"nuxt--CVE-2025-27415",
"nuxt--CVE-2025-59414"
],
"source_refs": []
},
{
"entity_id": "nuxt",
"entity_type": "system",
"display_name": "Nuxt",
"parent_entity_id": null,
"root_system_id": "nuxt",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "4.4.2",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/nuxt",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 11,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-09-18T13:04:21+00:00",
"last_synced_at": "2025-09-18T13:04:21+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 28,
"workflow_complete_advisory_count": 28,
"version_mapped_advisory_count": 5,
"first_advisory_at": "2023-06-13T18:30:40+00:00",
"latest_advisory_at": "2025-09-18T13:04:21+00:00",
"advisory_ids": [
"nuxt--00074e880d",
"nuxt--0978cdeee4",
"nuxt--11f3bee749",
"nuxt--163526e31e",
"nuxt--1b5070a28c",
"nuxt--2c7e32295b",
"nuxt--350e7269f5",
"nuxt--38d59d7143",
"nuxt--3c00028522",
"nuxt--437f36c605",
"nuxt--4c88683fcf",
"nuxt--54a7a92ef0",
"nuxt--67601b87ec",
"nuxt--971cf9be95",
"nuxt--CVE-2023-3224",
"nuxt--CVE-2024-34343",
"nuxt--CVE-2024-34344",
"nuxt--CVE-2025-27415",
"nuxt--CVE-2025-59414",
"nuxt--a50e1b9fc6",
"nuxt--aa3625fcbc",
"nuxt--be7f3fbbc1",
"nuxt--cf9b360a45",
"nuxt--da2ffad408",
"nuxt--db9acba4cb",
"nuxt--e3b7c9ce87",
"nuxt--f0cdaf4c60",
"nuxt--f189ab795d"
],
"source_refs": [
{
"name": "Nuxt Security",
"url": "https://github.com/nuxt/nuxt/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Nuxt",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "opencart--repo--opencart-opencart",
"entity_type": "repo",
"display_name": "opencart / opencart",
"parent_entity_id": "opencart",
"root_system_id": "opencart",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/opencart/opencart",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.0.5.0",
"version_scheme": "semver-ish",
"latest_release_at": "2025-12-12T10:27:11Z",
"latest_release_url": "https://github.com/opencart/opencart/releases/tag/3.0.5.0",
"version_source_refs": [
"https://github.com/opencart/opencart/releases/tag/3.0.5.0",
"https://github.com/opencart/opencart/tree/3.0.5.0",
"https://github.com/login?return_to=%2Fopencart%2Fopencart"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"OpenCart Releases"
],
"catalog_source": "OpenCart Releases",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "OpenCart Releases",
"url": "https://github.com/opencart/opencart/releases",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "opencart",
"entity_type": "system",
"display_name": "OpenCart",
"parent_entity_id": null,
"root_system_id": "opencart",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.0.5.0",
"version_scheme": "vendor",
"latest_release_at": "2025-12-12T10:27:11Z",
"latest_release_url": "https://github.com/opencart/opencart/releases/tag/3.0.5.0",
"version_source_refs": [
"https://github.com/login?return_to=%2Fopencart%2Fopencart",
"https://github.com/opencart/opencart/tree/3.0.5.0"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"OpenCart Releases"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-05-15T19:15:54+00:00",
"last_synced_at": "2025-05-15T19:15:54+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 100,
"workflow_complete_advisory_count": 100,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2008-07-10T23:41:00+00:00",
"latest_advisory_at": "2025-05-15T19:15:54+00:00",
"advisory_ids": [
"opencart--139edfb591",
"opencart--152643f4dc",
"opencart--173620a91b",
"opencart--29b09ea7c3",
"opencart--2ef2d6324d",
"opencart--32a94fc273",
"opencart--32e040da25",
"opencart--3682265bda",
"opencart--4177db93f1",
"opencart--4e5239b63d",
"opencart--50b6423e49",
"opencart--56b30c5737",
"opencart--6347aad108",
"opencart--650dc573c7",
"opencart--661c1ed81c",
"opencart--66c7c43692",
"opencart--67690a305c",
"opencart--6cdb303d85",
"opencart--6e240216ae",
"opencart--6eb01915bf",
"opencart--71b8d154cc",
"opencart--781a3198e8",
"opencart--83cad0e28c",
"opencart--87d232be19",
"opencart--8fa2fb2c1a",
"opencart--CVE-2008-3130",
"opencart--CVE-2009-1027",
"opencart--CVE-2009-1621",
"opencart--CVE-2010-0956",
"opencart--CVE-2010-1610",
"opencart--CVE-2011-3763",
"opencart--CVE-2013-1891",
"opencart--CVE-2014-3990",
"opencart--CVE-2015-4671",
"opencart--CVE-2016-10509",
"opencart--CVE-2018-1000640",
"opencart--CVE-2018-11231",
"opencart--CVE-2018-11494",
"opencart--CVE-2018-11495",
"opencart--CVE-2018-13067",
"opencart--CVE-2019-15081",
"opencart--CVE-2020-10596",
"opencart--CVE-2020-13980",
"opencart--CVE-2020-15478",
"opencart--CVE-2020-20491",
"opencart--CVE-2020-28838",
"opencart--CVE-2020-29470",
"opencart--CVE-2020-29471",
"opencart--CVE-2021-37823",
"opencart--CVE-2022-24108",
"opencart--CVE-2022-41403",
"opencart--CVE-2023-2315",
"opencart--CVE-2023-40834",
"opencart--CVE-2023-47444",
"opencart--CVE-2024-21514",
"opencart--CVE-2024-21515",
"opencart--CVE-2024-21516",
"opencart--CVE-2024-21517",
"opencart--CVE-2024-21518",
"opencart--CVE-2024-21519",
"opencart--CVE-2024-36694",
"opencart--CVE-2024-51835",
"opencart--CVE-2025-0214",
"opencart--CVE-2025-0460",
"opencart--CVE-2025-0579",
"opencart--CVE-2025-0580",
"opencart--CVE-2025-0841",
"opencart--CVE-2025-0974",
"opencart--CVE-2025-1116",
"opencart--CVE-2025-1117",
"opencart--CVE-2025-1746",
"opencart--CVE-2025-1747",
"opencart--CVE-2025-1748",
"opencart--CVE-2025-1749",
"opencart--CVE-2025-22335",
"opencart--a5fd173846",
"opencart--a6d38feafd",
"opencart--a78be18997",
"opencart--b82c285b5d",
"opencart--b90c58a53b",
"opencart--b9505f6b40",
"opencart--bc58835992",
"opencart--c230e64eee",
"opencart--c6aa723016",
"opencart--c7095ac5c4",
"opencart--c971a2586e",
"opencart--c9e04e0601",
"opencart--cc0c4ce1db",
"opencart--cec4aaddde",
"opencart--cf2ae6a5b8",
"opencart--d9188f0a5c",
"opencart--dda59d6d6b",
"opencart--e19398ce31",
"opencart--e6cd6e0a9e",
"opencart--e6e061bcdc",
"opencart--e718d88d27",
"opencart--ee0bcf69a5",
"opencart--f0defacae9",
"opencart--f2011c59dd",
"opencart--f64f318f0c"
],
"source_refs": [
{
"name": "OpenCart Releases",
"url": "https://github.com/opencart/opencart/releases",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD OpenCart",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV OpenCart",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "openmage--repo--openmage-magento-lts",
"entity_type": "repo",
"display_name": "OpenMage / magento-lts",
"parent_entity_id": "openmage",
"root_system_id": "openmage",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/OpenMage/magento-lts",
"package_registry": "",
"marketplace_url": "",
"latest_version": "20.16.0",
"version_scheme": "semver-ish",
"latest_release_at": "2025-11-01T00:02:10Z",
"latest_release_url": "https://github.com/OpenMage/magento-lts/releases/tag/v20.16.0",
"version_source_refs": [
"https://github.com/OpenMage/magento-lts/releases/tag/v20.16.0"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub Releases API"
],
"catalog_source": "OpenMage GitHub Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "OpenMage GitHub Advisories",
"url": "https://github.com/OpenMage/magento-lts/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "openmage",
"entity_type": "system",
"display_name": "OpenMage / Mage-OS",
"parent_entity_id": null,
"root_system_id": "openmage",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "20.16.0",
"version_scheme": "vendor",
"latest_release_at": "2025-11-01T00:02:10Z",
"latest_release_url": "https://github.com/OpenMage/magento-lts/releases/tag/v20.16.0",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 27,
"workflow_complete_advisory_count": 27,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"openmage--00ec9cbd94",
"openmage--05dce0ecb4",
"openmage--0dab4c1acf",
"openmage--0ea08d028a",
"openmage--36f3104a3a",
"openmage--3a51ff5004",
"openmage--3b021a4e27",
"openmage--40fcea18aa",
"openmage--4543f23d23",
"openmage--543cbfcb3a",
"openmage--56acb3408d",
"openmage--5f86fc559d",
"openmage--6470662d28",
"openmage--6ad0ee83b2",
"openmage--73bd721bcb",
"openmage--75ecc8c69a",
"openmage--8242490b5f",
"openmage--8db808ae7c",
"openmage--98b9fc6dcd",
"openmage--9b0daf9805",
"openmage--b54fef776b",
"openmage--dc1d1ecc2e",
"openmage--e95d53d356",
"openmage--f2ad71899c",
"openmage--f9c68197bb",
"openmage--fa1e601784",
"openmage--ffd3c23a64"
],
"source_refs": [
{
"name": "OpenMage GitHub Advisories",
"url": "https://github.com/OpenMage/magento-lts/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD OpenMage",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV OpenMage",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "phpmyadmin",
"entity_type": "system",
"display_name": "phpMyAdmin",
"parent_entity_id": null,
"root_system_id": "phpmyadmin",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "5.2.3-all-languages.zip",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://files.phpmyadmin.net/phpMyAdmin/5.2.3/phpMyAdmin-5.2.3-all-languages.zip",
"version_source_refs": [
"https://files.phpmyadmin.net/phpMyAdmin/5.2.3/phpMyAdmin-5.2.3-all-languages.zip"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"phpMyAdmin Security Page"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 50,
"workflow_complete_advisory_count": 50,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"phpmyadmin--04b4918ca9",
"phpmyadmin--061948dba4",
"phpmyadmin--099c7a9e41",
"phpmyadmin--1138f2e464",
"phpmyadmin--15e877c3b2",
"phpmyadmin--2990adc377",
"phpmyadmin--2b03b271e5",
"phpmyadmin--2c943e6cc8",
"phpmyadmin--32730a2240",
"phpmyadmin--337a84a6c4",
"phpmyadmin--41ae0b8a3d",
"phpmyadmin--421b34d972",
"phpmyadmin--437e6e9078",
"phpmyadmin--4507eb8dd0",
"phpmyadmin--4b2e1eadc9",
"phpmyadmin--4cc36ce48c",
"phpmyadmin--54962ccd4b",
"phpmyadmin--54f36111cd",
"phpmyadmin--55827f8c93",
"phpmyadmin--5b59c06851",
"phpmyadmin--63eee95cc8",
"phpmyadmin--6f4102a516",
"phpmyadmin--79ef30f4f5",
"phpmyadmin--7bf1994362",
"phpmyadmin--7f45dd935c",
"phpmyadmin--8cd3c5e494",
"phpmyadmin--8efd1bcfaa",
"phpmyadmin--953daf5e04",
"phpmyadmin--97a396578a",
"phpmyadmin--9b5211f3ca",
"phpmyadmin--a7ea3aedf4",
"phpmyadmin--b1a43220a0",
"phpmyadmin--b65bc83298",
"phpmyadmin--b99b5f9f8f",
"phpmyadmin--bd5217d6e3",
"phpmyadmin--be801a0403",
"phpmyadmin--c59bed7b03",
"phpmyadmin--c8271fb98e",
"phpmyadmin--c8a86d8f70",
"phpmyadmin--ca0f4c9484",
"phpmyadmin--cc0ebec308",
"phpmyadmin--dd85608700",
"phpmyadmin--deeb6d0c9f",
"phpmyadmin--e36ebea6ae",
"phpmyadmin--e995390f8f",
"phpmyadmin--f1851fb737",
"phpmyadmin--f244048411",
"phpmyadmin--f25e4700c4",
"phpmyadmin--faae11554f",
"phpmyadmin--fcca009119"
],
"source_refs": [
{
"name": "phpMyAdmin Security Page",
"url": "https://www.phpmyadmin.net/security/",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD phpMyAdmin",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV phpMyAdmin",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "prestashop--package--prestashop-prestashop",
"entity_type": "package",
"display_name": "prestashop / prestashop",
"parent_entity_id": "prestashop",
"root_system_id": "prestashop",
"category": "ecommerce",
"ecosystem": "prestashop",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/prestashop/prestashop",
"package_registry": "https://packagist.org/packages/prestashop/prestashop",
"marketplace_url": "",
"latest_version": "9.1.0",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-13T18:04:58+00:00",
"latest_release_url": "https://packagist.org/packages/prestashop/prestashop",
"version_source_refs": [
"https://packagist.org/packages/prestashop/prestashop",
"https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-35pf-37c6-jxjv",
"https://security.friendsofpresta.org/core/2025/09/04/CVE-2025-51586.html"
],
"version_sync_status": "green",
"security_version_count": 41,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"Packagist p2",
"https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-35pf-37c6-jxjv",
"Friends Of Presta Security"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-25T19:49:27+00:00",
"last_synced_at": "2026-03-25T19:49:27+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2026-03-25T19:40:42+00:00",
"latest_advisory_at": "2026-03-30T12:26:07+00:00",
"advisory_ids": [
"prestashop--CVE-2026-33673",
"prestashop--CVE-2026-33674"
],
"source_refs": []
},
{
"entity_id": "prestashop--repo--prestashop-prestashop",
"entity_type": "repo",
"display_name": "PrestaShop / PrestaShop",
"parent_entity_id": "prestashop",
"root_system_id": "prestashop",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/PrestaShop/PrestaShop",
"package_registry": "",
"marketplace_url": "",
"latest_version": "8.2.5",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-23T10:07:16Z",
"latest_release_url": "https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.5",
"version_source_refs": [
"https://github.com/PrestaShop/PrestaShop/releases/tag/9.0.3",
"https://security.friendsofpresta.org/core/2025/09/04/CVE-2025-51586.html",
"https://security.friendsofpresta.org/modules/2025/05/22/appagebuilder.html",
"https://build.prestashop-project.org/news/2026/prestashop-8-2-4-maintenance-release/",
"https://security.friendsofpresta.org/modules/2026/02/16/advancedpopupcreator-cve-2025-69633.html",
"https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-3366-9287-7qpr",
"https://build.prestashop-project.org/news/2026/prestashop-8-2-5-maintenance-release/",
"https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.5"
],
"version_sync_status": "green",
"security_version_count": 9,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"Friends Of Presta Security",
"PrestaShop Security Page",
"GitHub PrestaShop Advisories"
],
"catalog_source": "GitHub PrestaShop Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "GitHub PrestaShop Advisories",
"url": "https://github.com/PrestaShop/PrestaShop/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "prestashop",
"entity_type": "system",
"display_name": "PrestaShop",
"parent_entity_id": null,
"root_system_id": "prestashop",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "8.2.5",
"version_scheme": "vendor",
"latest_release_at": "2026-03-23T10:07:16Z",
"latest_release_url": "https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.5",
"version_source_refs": [
"https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-3366-9287-7qpr",
"https://security.friendsofpresta.org/core/2025/09/04/CVE-2025-51586.html",
"https://security.friendsofpresta.org/modules/2025/05/22/appagebuilder.html",
"https://build.prestashop-project.org/news/2026/prestashop-8-2-4-maintenance-release/",
"https://security.friendsofpresta.org/modules/2026/02/16/advancedpopupcreator-cve-2025-69633.html",
"https://build.prestashop-project.org/news/2026/prestashop-8-2-5-maintenance-release/"
],
"version_sync_status": "green",
"security_version_count": 50,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub PrestaShop Advisories",
"Friends Of Presta Security",
"PrestaShop Security Page"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-12T10:46:40+00:00",
"last_synced_at": "2025-04-12T10:46:40+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 114,
"workflow_complete_advisory_count": 114,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2008-12-31T11:30:00+00:00",
"latest_advisory_at": "2026-03-30T12:26:07+00:00",
"advisory_ids": [
"prestashop--07b452707c",
"prestashop--080f1ad67c",
"prestashop--0a99372628",
"prestashop--0b4cde142a",
"prestashop--0cf1445861",
"prestashop--0f3d1052fe",
"prestashop--1143148052",
"prestashop--17a4020b8e",
"prestashop--194d3624d9",
"prestashop--1960d3328b",
"prestashop--1ae6727547",
"prestashop--1c4fd08f00",
"prestashop--2887e623db",
"prestashop--2ac3b23224",
"prestashop--2db6b7a5cb",
"prestashop--370138b15f",
"prestashop--3ba2f71e19",
"prestashop--3d2f6a9c11",
"prestashop--3d5108fb77",
"prestashop--3e17240b4a",
"prestashop--3e59307468",
"prestashop--41272d385b",
"prestashop--42b99ec487",
"prestashop--439f12a7f0",
"prestashop--4490b2f515",
"prestashop--457d471c98",
"prestashop--4993617c4b",
"prestashop--526249c655",
"prestashop--5354623814",
"prestashop--53dacbadfe",
"prestashop--54032297bb",
"prestashop--5b40a10031",
"prestashop--5cb36272bb",
"prestashop--5f34902a35",
"prestashop--63604b23bc",
"prestashop--69bfb37e23",
"prestashop--71c6fa029e",
"prestashop--7766d9922a",
"prestashop--7dfef9df45",
"prestashop--7f433feb85",
"prestashop--85f12ef1da",
"prestashop--8b01105c25",
"prestashop--8e4cc5b1b1",
"prestashop--9269919ece",
"prestashop--99df6b5f8c",
"prestashop--CVE-2008-5791",
"prestashop--CVE-2008-6503",
"prestashop--CVE-2011-3796",
"prestashop--CVE-2011-4544",
"prestashop--CVE-2011-4545",
"prestashop--CVE-2012-2517",
"prestashop--CVE-2012-5799",
"prestashop--CVE-2012-5800",
"prestashop--CVE-2012-5801",
"prestashop--CVE-2012-6641",
"prestashop--CVE-2013-4791",
"prestashop--CVE-2013-4792",
"prestashop--CVE-2013-6295",
"prestashop--CVE-2013-6358",
"prestashop--CVE-2014-2008",
"prestashop--CVE-2014-2009",
"prestashop--CVE-2015-1175",
"prestashop--CVE-2018-10942",
"prestashop--CVE-2018-13784",
"prestashop--CVE-2018-19124",
"prestashop--CVE-2018-19125",
"prestashop--CVE-2018-19126",
"prestashop--CVE-2018-19355",
"prestashop--CVE-2018-20717",
"prestashop--CVE-2018-5681",
"prestashop--CVE-2018-5682",
"prestashop--CVE-2018-7491",
"prestashop--CVE-2018-8823",
"prestashop--CVE-2018-8824",
"prestashop--CVE-2019-11876",
"prestashop--CVE-2019-13461",
"prestashop--CVE-2019-15565",
"prestashop--CVE-2019-19594",
"prestashop--CVE-2019-19595",
"prestashop--CVE-2020-5250",
"prestashop--CVE-2020-5266",
"prestashop--CVE-2020-5273",
"prestashop--CVE-2020-5277",
"prestashop--CVE-2020-5294",
"prestashop--CVE-2020-6632",
"prestashop--CVE-2026-33673",
"prestashop--CVE-2026-33674",
"prestashop--a0f896f1ae",
"prestashop--a2727cdb40",
"prestashop--a433672695",
"prestashop--a4680a587b",
"prestashop--a8de8dcd40",
"prestashop--a9884ea8ca",
"prestashop--aba2c74bb6",
"prestashop--aca010719a",
"prestashop--af5fa14c69",
"prestashop--b17c489f8a",
"prestashop--b55a9a50fe",
"prestashop--b57869fa03",
"prestashop--b7feb74da8",
"prestashop--bdf8465493",
"prestashop--c746c64241",
"prestashop--ca5fd6693a",
"prestashop--cb6263120d",
"prestashop--cc8c72b6d8",
"prestashop--cd62d2df40",
"prestashop--cdf49add4c",
"prestashop--cf731ac297",
"prestashop--e828aea1f4",
"prestashop--e8fcf4653b",
"prestashop--eab2fbb1b2",
"prestashop--eb4978e1ad",
"prestashop--f275ddbbd6",
"prestashop--f7b00578a3"
],
"source_refs": [
{
"name": "PrestaShop Security Page",
"url": "https://build.prestashop-project.org/news/",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub PrestaShop Advisories",
"url": "https://github.com/PrestaShop/PrestaShop/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD PrestaShop",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV PrestaShop",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
},
{
"name": "Friends Of Presta Security",
"url": "https://security.friendsofpresta.org/",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "rails--project--rails",
"entity_type": "project",
"display_name": "rails",
"parent_entity_id": "rails",
"root_system_id": "rails",
"category": "frameworks",
"ecosystem": "rails",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/rails",
"marketplace_url": "",
"latest_version": "4.1.0-beta",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/rails",
"version_source_refs": [
"https://www.npmjs.com/package/rails",
"https://nvd.nist.gov/vuln/detail/CVE-2007-5379",
"https://nvd.nist.gov/vuln/detail/CVE-2007-3227",
"https://nvd.nist.gov/vuln/detail/CVE-2007-6077",
"https://nvd.nist.gov/vuln/detail/CVE-2008-5189",
"https://nvd.nist.gov/vuln/detail/CVE-2009-4214"
],
"version_sync_status": "green",
"security_version_count": 102,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"npm latest",
"https://nvd.nist.gov/vuln/detail/CVE-2007-5379",
"https://nvd.nist.gov/vuln/detail/CVE-2007-3227",
"https://nvd.nist.gov/vuln/detail/CVE-2007-6077",
"https://nvd.nist.gov/vuln/detail/CVE-2008-5189",
"https://nvd.nist.gov/vuln/detail/CVE-2009-4214"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-05-01T18:49:06+00:00",
"last_synced_at": "2025-05-01T18:49:06+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 10,
"workflow_complete_advisory_count": 10,
"version_mapped_advisory_count": 10,
"first_advisory_at": "2017-10-24T18:33:36+00:00",
"latest_advisory_at": "2025-05-01T18:49:06+00:00",
"advisory_ids": [
"rails--CVE-2006-4111",
"rails--CVE-2006-4112",
"rails--CVE-2007-3227",
"rails--CVE-2007-5379",
"rails--CVE-2007-5380",
"rails--CVE-2007-6077",
"rails--CVE-2008-5189",
"rails--CVE-2009-4214",
"rails--CVE-2014-0081",
"rails--CVE-2024-26143"
],
"source_refs": []
},
{
"entity_id": "rails",
"entity_type": "system",
"display_name": "Ruby on Rails",
"parent_entity_id": null,
"root_system_id": "rails",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "4.1.0-beta",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/rails",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 102,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-05-01T18:49:06+00:00",
"last_synced_at": "2025-05-01T18:49:06+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 42,
"workflow_complete_advisory_count": 42,
"version_mapped_advisory_count": 10,
"first_advisory_at": "2008-09-30T17:22:09+00:00",
"latest_advisory_at": "2025-05-01T18:49:06+00:00",
"advisory_ids": [
"rails--CVE-2006-4111",
"rails--CVE-2006-4112",
"rails--CVE-2007-3227",
"rails--CVE-2007-5379",
"rails--CVE-2007-5380",
"rails--CVE-2007-6077",
"rails--CVE-2008-4094",
"rails--CVE-2008-5189",
"rails--CVE-2008-7248",
"rails--CVE-2009-2422",
"rails--CVE-2009-3009",
"rails--CVE-2009-3086",
"rails--CVE-2009-4214",
"rails--CVE-2010-3933",
"rails--CVE-2011-0446",
"rails--CVE-2011-0447",
"rails--CVE-2011-0448",
"rails--CVE-2011-0449",
"rails--CVE-2011-2197",
"rails--CVE-2011-2929",
"rails--CVE-2011-2930",
"rails--CVE-2011-2931",
"rails--CVE-2011-2932",
"rails--CVE-2011-3186",
"rails--CVE-2011-3187",
"rails--CVE-2011-4319",
"rails--CVE-2012-1098",
"rails--CVE-2012-1099",
"rails--CVE-2012-2660",
"rails--CVE-2012-2661",
"rails--CVE-2012-2694",
"rails--CVE-2012-2695",
"rails--CVE-2012-3424",
"rails--CVE-2012-3463",
"rails--CVE-2012-3464",
"rails--CVE-2012-3465",
"rails--CVE-2012-6496",
"rails--CVE-2012-6497",
"rails--CVE-2013-0155",
"rails--CVE-2013-0156",
"rails--CVE-2014-0081",
"rails--CVE-2024-26143"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Rails",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Ruby on Rails",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "react--project--react-dom",
"entity_type": "project",
"display_name": "react-dom",
"parent_entity_id": "react",
"root_system_id": "react",
"category": "frameworks",
"ecosystem": "react-dom",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/react-dom",
"marketplace_url": "",
"latest_version": "19.2.4",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/react-dom",
"version_source_refs": [
"https://www.npmjs.com/package/react-dom",
"https://nvd.nist.gov/vuln/detail/CVE-2018-6341"
],
"version_sync_status": "green",
"security_version_count": 12,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"npm latest",
"https://nvd.nist.gov/vuln/detail/CVE-2018-6341"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2023-11-08T04:00:21+00:00",
"last_synced_at": "2023-11-08T04:00:21+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2019-01-04T19:05:35+00:00",
"latest_advisory_at": "2023-11-08T04:00:21+00:00",
"advisory_ids": [
"react--CVE-2018-6341"
],
"source_refs": []
},
{
"entity_id": "react--project--react",
"entity_type": "project",
"display_name": "react",
"parent_entity_id": "react",
"root_system_id": "react",
"category": "frameworks",
"ecosystem": "react",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/react",
"marketplace_url": "",
"latest_version": "19.2.4",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/react",
"version_source_refs": [
"https://www.npmjs.com/package/react",
"https://github.com/facebook/react",
"https://nvd.nist.gov/vuln/detail/CVE-2013-7035"
],
"version_sync_status": "green",
"security_version_count": 6,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/facebook/react",
"https://nvd.nist.gov/vuln/detail/CVE-2013-7035"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2023-11-08T03:57:27+00:00",
"last_synced_at": "2023-11-08T03:57:27+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2020-09-04T15:26:04+00:00",
"latest_advisory_at": "2023-11-08T03:57:27+00:00",
"advisory_ids": [
"react--CVE-2013-7035",
"react--GHSA-hg79-j56m-fxgv"
],
"source_refs": []
},
{
"entity_id": "react",
"entity_type": "system",
"display_name": "React",
"parent_entity_id": null,
"root_system_id": "react",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "19.2.4",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/react-dom",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 18,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2023-11-08T04:00:21+00:00",
"last_synced_at": "2023-11-08T04:00:21+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 21,
"workflow_complete_advisory_count": 21,
"version_mapped_advisory_count": 3,
"first_advisory_at": "2019-01-04T19:05:35+00:00",
"latest_advisory_at": "2023-11-08T04:00:21+00:00",
"advisory_ids": [
"react--1f07e46cdd",
"react--3590f8d2eb",
"react--424360ed96",
"react--440e2f2fe0",
"react--5e34f09431",
"react--5f14eebccf",
"react--631bc8f9ec",
"react--639047312a",
"react--69243f52c9",
"react--83279f54c6",
"react--87bd5d2df7",
"react--8bf6525f07",
"react--8fb9c56ed6",
"react--90e1bf3aa2",
"react--CVE-2013-7035",
"react--CVE-2018-6341",
"react--GHSA-hg79-j56m-fxgv",
"react--a97e2dd555",
"react--afae360015",
"react--bc9ece6017",
"react--c3d13ac7ba"
],
"source_refs": [
{
"name": "GitHub React Advisories",
"url": "https://github.com/facebook/react/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV React",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "redmine",
"entity_type": "system",
"display_name": "Redmine",
"parent_entity_id": null,
"root_system_id": "redmine",
"category": "platforms",
"ecosystem": "platforms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "6.1.2",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.redmine.org/versions/220",
"version_source_refs": [
"https://www.redmine.org/versions/220"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"Redmine Security Advisories"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 50,
"workflow_complete_advisory_count": 50,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"redmine--0282099421",
"redmine--06dcc3d798",
"redmine--07648e61ad",
"redmine--11018a1a44",
"redmine--11954098a7",
"redmine--14b81e27e4",
"redmine--1b774dc215",
"redmine--1d6e3053bd",
"redmine--1eac2c6e99",
"redmine--21d6c05288",
"redmine--240d14f6bf",
"redmine--2519faedc9",
"redmine--257fde8edc",
"redmine--2833824585",
"redmine--2a63e0d8db",
"redmine--2df4082eef",
"redmine--2ff3f53268",
"redmine--3874d4f368",
"redmine--3bc961d9f5",
"redmine--3d768dc788",
"redmine--40a5b74e89",
"redmine--4482cb2cab",
"redmine--4f77e58dfd",
"redmine--5324f62fc1",
"redmine--5389ff67a1",
"redmine--5425f40fc4",
"redmine--581d3cab8b",
"redmine--5a06acdefc",
"redmine--63227d38e4",
"redmine--67194fad35",
"redmine--772bb797e3",
"redmine--7f8cb15c92",
"redmine--83c1e28359",
"redmine--88073787c5",
"redmine--8eea04bc6d",
"redmine--9333808981",
"redmine--9b363f3bd7",
"redmine--a0902bcb94",
"redmine--a28ac4c571",
"redmine--b91defae91",
"redmine--baac7591cc",
"redmine--bd4ca4c303",
"redmine--be912d4336",
"redmine--c27a1d5ee1",
"redmine--d24676e738",
"redmine--de7babae35",
"redmine--e83581619b",
"redmine--f1bebcdccf",
"redmine--f380daaeaa",
"redmine--fb3fd042a0"
],
"source_refs": [
{
"name": "Redmine Security Advisories",
"url": "https://www.redmine.org/projects/redmine/wiki/Security_Advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Redmine",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Redmine",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "saleor--repo--saleor-saleor",
"entity_type": "repo",
"display_name": "saleor / saleor",
"parent_entity_id": "saleor",
"root_system_id": "saleor",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/saleor/saleor",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.22.45",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-30T14:56:59Z",
"latest_release_url": "https://github.com/saleor/saleor/releases/tag/3.22.45",
"version_source_refs": [
"https://github.com/saleor/saleor/releases/tag/3.22.43",
"https://github.com/login?return_to=%2Fsaleor%2Fsaleor",
"https://github.com/saleor/saleor/releases/tag/3.22.44",
"https://github.com/saleor/saleor/releases/tag/3.22.45"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"GitHub Saleor Advisories"
],
"catalog_source": "GitHub Saleor Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "GitHub Saleor Advisories",
"url": "https://github.com/saleor/saleor/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "saleor",
"entity_type": "system",
"display_name": "Saleor",
"parent_entity_id": null,
"root_system_id": "saleor",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.22.45",
"version_scheme": "vendor",
"latest_release_at": "2026-03-30T14:56:59Z",
"latest_release_url": "https://github.com/saleor/saleor/releases/tag/3.22.45",
"version_source_refs": [
"https://github.com/login?return_to=%2Fsaleor%2Fsaleor"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub Saleor Advisories"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 24,
"workflow_complete_advisory_count": 24,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"saleor--06ef9177f9",
"saleor--0b7b2f4f3f",
"saleor--0e960c719b",
"saleor--1f0fa2da71",
"saleor--21ac98f89e",
"saleor--29410aa1c6",
"saleor--34b9e39e81",
"saleor--431e3f7372",
"saleor--44e8c4d838",
"saleor--4ab94b985a",
"saleor--4ee3f5bbd2",
"saleor--6a0cba201c",
"saleor--6b33da830a",
"saleor--7a3e54b667",
"saleor--9ad660fe0e",
"saleor--a512876f2d",
"saleor--a8df0219b9",
"saleor--af296325b0",
"saleor--c416bcc3dd",
"saleor--ca7819c06d",
"saleor--ce2407a2e9",
"saleor--edf3c3a6a5",
"saleor--f1b23f95f2",
"saleor--f764e86271"
],
"source_refs": [
{
"name": "GitHub Saleor Advisories",
"url": "https://github.com/saleor/saleor/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Saleor",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Saleor",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "shopware--repo--shopware-shopware",
"entity_type": "repo",
"display_name": "shopware / shopware",
"parent_entity_id": "shopware",
"root_system_id": "shopware",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/shopware/shopware",
"package_registry": "",
"marketplace_url": "",
"latest_version": "6.7.8.2",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-18T15:05:49Z",
"latest_release_url": "https://github.com/shopware/shopware/releases/tag/v6.7.8.2",
"version_source_refs": [
"https://github.com/shopware/shopware/releases/tag/v6.7.8.2",
"https://github.com/login?return_to=%2Fshopware%2Fshopware"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"Shopware Security Advisories"
],
"catalog_source": "Shopware Security Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "Shopware Security Advisories",
"url": "https://github.com/shopware/shopware/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "shopware",
"entity_type": "system",
"display_name": "Shopware",
"parent_entity_id": null,
"root_system_id": "shopware",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "6.7.8.2",
"version_scheme": "vendor",
"latest_release_at": "2026-03-18T15:05:49Z",
"latest_release_url": "https://github.com/shopware/shopware/releases/tag/v6.7.8.2",
"version_source_refs": [
"https://github.com/login?return_to=%2Fshopware%2Fshopware"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [
"Shopware Security Advisories"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-20T01:37:25+00:00",
"last_synced_at": "2025-04-20T01:37:25+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 71,
"workflow_complete_advisory_count": 71,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2017-04-21T20:59:00+00:00",
"latest_advisory_at": "2025-04-20T01:37:25+00:00",
"advisory_ids": [
"shopware--0cb639c8df",
"shopware--1445c0c00a",
"shopware--166d8db678",
"shopware--210c487342",
"shopware--4afc0aae28",
"shopware--57d591fbaa",
"shopware--6599dde67b",
"shopware--68336e295b",
"shopware--6e4f6e4afb",
"shopware--7ceba0fbae",
"shopware--7e1366732b",
"shopware--8b0027b775",
"shopware--9203c7e616",
"shopware--966863ab2d",
"shopware--9cc76a0615",
"shopware--CVE-2016-3109",
"shopware--CVE-2017-15374",
"shopware--CVE-2017-18357",
"shopware--CVE-2018-20713",
"shopware--CVE-2019-12799",
"shopware--CVE-2019-12935",
"shopware--CVE-2020-13970",
"shopware--CVE-2020-13971",
"shopware--CVE-2020-13997",
"shopware--CVE-2020-28199",
"shopware--CVE-2021-32709",
"shopware--CVE-2021-32710",
"shopware--CVE-2021-32711",
"shopware--CVE-2021-32712",
"shopware--CVE-2021-32713",
"shopware--CVE-2021-32716",
"shopware--CVE-2021-32717",
"shopware--CVE-2021-37707",
"shopware--CVE-2021-37708",
"shopware--CVE-2021-37709",
"shopware--CVE-2021-37710",
"shopware--CVE-2021-41188",
"shopware--CVE-2022-21651",
"shopware--CVE-2022-21652",
"shopware--CVE-2022-24744",
"shopware--CVE-2022-24745",
"shopware--CVE-2022-24746",
"shopware--CVE-2022-24747",
"shopware--CVE-2022-24748",
"shopware--CVE-2022-24871",
"shopware--CVE-2022-24872",
"shopware--CVE-2022-24873",
"shopware--CVE-2022-24879",
"shopware--CVE-2022-24892",
"shopware--CVE-2022-24956",
"shopware--CVE-2022-31057",
"shopware--CVE-2022-31148",
"shopware--CVE-2022-36101",
"shopware--CVE-2022-36102",
"shopware--CVE-2023-22730",
"shopware--ac322cd050",
"shopware--b3cad63289",
"shopware--b6516ddaa8",
"shopware--b6c8a4aa31",
"shopware--b89c99e036",
"shopware--c611c6d9a5",
"shopware--c6d55e5d34",
"shopware--ccdc5e2235",
"shopware--cefaaefd27",
"shopware--dac63eff72",
"shopware--dc0d63a152",
"shopware--ecd78f9e67",
"shopware--f3ea19ae1d",
"shopware--f8b6b65918",
"shopware--fad367ec4b",
"shopware--fb83697aae"
],
"source_refs": [
{
"name": "Shopware Security Advisories",
"url": "https://github.com/shopware/shopware/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Shopware",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Shopware",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "spring-boot--project--org-springframework-boot-spring-boot",
"entity_type": "project",
"display_name": "org.springframework.boot:spring-boot",
"parent_entity_id": "spring-boot",
"root_system_id": "spring-boot",
"category": "frameworks",
"ecosystem": "org.springframework.boot:spring-boot",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/org.springframework.boot:spring-boot",
"marketplace_url": "",
"latest_version": "2.2.11.RELEASE",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-13T21:59:19.426456Z",
"latest_release_url": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85",
"version_source_refs": [
"https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85"
],
"version_sync_status": "green",
"security_version_count": 22,
"last_version_synced_at": "2026-04-02T09:18:44+00:00",
"latest_version_evidence": [
"advisory-fixed-version",
"https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T21:59:19+00:00",
"last_synced_at": "2026-03-13T21:59:19+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2022-07-11T20:59:02+00:00",
"latest_advisory_at": "2026-03-13T21:59:19+00:00",
"advisory_ids": [
"spring-boot--CVE-2022-27772"
],
"source_refs": []
},
{
"entity_id": "spring-boot",
"entity_type": "system",
"display_name": "Spring Boot",
"parent_entity_id": null,
"root_system_id": "spring-boot",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.2.11.RELEASE",
"version_scheme": "vendor",
"latest_release_at": "2026-03-13T21:59:19.426456Z",
"latest_release_url": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 22,
"last_version_synced_at": "2026-04-02T09:18:43+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T21:59:19+00:00",
"last_synced_at": "2026-03-13T21:59:19+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2022-07-11T20:59:02+00:00",
"latest_advisory_at": "2026-03-13T21:59:19+00:00",
"advisory_ids": [
"spring-boot--0f2728a088",
"spring-boot--CVE-2022-27772"
],
"source_refs": [
{
"name": "Spring Security Advisories",
"url": "https://spring.io/security",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Spring Boot",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "spring-framework",
"entity_type": "system",
"display_name": "Spring Framework",
"parent_entity_id": null,
"root_system_id": "spring-framework",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:44+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 11,
"workflow_complete_advisory_count": 11,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"spring-framework--138983e8a8",
"spring-framework--1cce2f0e27",
"spring-framework--38d4e91fa6",
"spring-framework--390b9499b1",
"spring-framework--7817f6fd2f",
"spring-framework--99395e049e",
"spring-framework--ced42291b6",
"spring-framework--ddd48c93c1",
"spring-framework--e0221e4183",
"spring-framework--ed688dadf5",
"spring-framework--f5790eb958"
],
"source_refs": [
{
"name": "Spring Security Advisories",
"url": "https://spring.io/security",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Spring Framework",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "spring-security--project--org-springframework-security-spring-security-web",
"entity_type": "project",
"display_name": "org.springframework.security:spring-security-web",
"parent_entity_id": "spring-security",
"root_system_id": "spring-security",
"category": "frameworks",
"ecosystem": "org.springframework.security:spring-security-web",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/org.springframework.security:spring-security-web",
"marketplace_url": "",
"latest_version": "7.0.4",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-25T19:59:15.827722Z",
"latest_release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22732",
"version_source_refs": [
"https://nvd.nist.gov/vuln/detail/CVE-2026-22732"
],
"version_sync_status": "green",
"security_version_count": 92,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"advisory-fixed-version",
"https://nvd.nist.gov/vuln/detail/CVE-2026-22732"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-20T20:46:26+00:00",
"last_synced_at": "2026-03-20T20:46:26+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-03-20T00:31:28+00:00",
"latest_advisory_at": "2026-03-25T19:59:15+00:00",
"advisory_ids": [
"spring-security--CVE-2026-22732"
],
"source_refs": []
},
{
"entity_id": "spring-security",
"entity_type": "system",
"display_name": "Spring Security",
"parent_entity_id": null,
"root_system_id": "spring-security",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "7.0.4",
"version_scheme": "vendor",
"latest_release_at": "2026-03-25T19:59:15.827722Z",
"latest_release_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22732",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 92,
"last_version_synced_at": "2026-04-02T09:18:44+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-20T20:46:26+00:00",
"last_synced_at": "2026-03-20T20:46:26+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 4,
"workflow_complete_advisory_count": 4,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-03-20T00:31:28+00:00",
"latest_advisory_at": "2026-03-25T19:59:15+00:00",
"advisory_ids": [
"spring-security--3da31f4883",
"spring-security--7817f6fd2f",
"spring-security--9516ccd1a4",
"spring-security--CVE-2026-22732"
],
"source_refs": [
{
"name": "Spring Security Advisories",
"url": "https://spring.io/security",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Spring Security",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "strapi--repo--strapi-strapi",
"entity_type": "repo",
"display_name": "strapi / strapi",
"parent_entity_id": "strapi",
"root_system_id": "strapi",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/strapi/strapi",
"package_registry": "",
"marketplace_url": "",
"latest_version": "5.41.1",
"version_scheme": "semver-ish",
"latest_release_at": "2026-04-01T09:55:43Z",
"latest_release_url": "https://github.com/strapi/strapi/releases/tag/v5.41.1",
"version_source_refs": [
"https://github.com/strapi/strapi/releases/tag/v5.40.0",
"https://github.com/login?return_to=%2Fstrapi%2Fstrapi",
"https://github.com/strapi/strapi/releases/tag/v5.41.0",
"https://github.com/strapi/strapi/releases/tag/v5.41.1"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"Strapi GitHub Advisories"
],
"catalog_source": "Strapi GitHub Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "Strapi GitHub Advisories",
"url": "https://github.com/strapi/strapi/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "strapi",
"entity_type": "system",
"display_name": "Strapi",
"parent_entity_id": null,
"root_system_id": "strapi",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "5.41.1",
"version_scheme": "vendor",
"latest_release_at": "2026-04-01T09:55:43Z",
"latest_release_url": "https://github.com/strapi/strapi/releases/tag/v5.41.1",
"version_source_refs": [
"https://github.com/login?return_to=%2Fstrapi%2Fstrapi"
],
"version_sync_status": "green",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"Strapi GitHub Advisories"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 26,
"workflow_complete_advisory_count": 26,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [
"strapi--05ba9bef79",
"strapi--1473dee955",
"strapi--197f0bbd33",
"strapi--24f8b59ff9",
"strapi--2db1a8c04f",
"strapi--3eebee5d89",
"strapi--48a214349c",
"strapi--4b6da3fb0f",
"strapi--622329861e",
"strapi--624ccd57fe",
"strapi--87ddb42a69",
"strapi--889fa1f744",
"strapi--8fa6768ba1",
"strapi--917bb8917b",
"strapi--9f4a582896",
"strapi--b269e71df1",
"strapi--b31a6ebd6c",
"strapi--b50d0f7842",
"strapi--b7319d090f",
"strapi--bafe5f7634",
"strapi--bde77c915a",
"strapi--bdf9253f45",
"strapi--c4a353b074",
"strapi--cc8d7c3c7a",
"strapi--e52f38e110",
"strapi--ea5ecc42f3"
],
"source_refs": [
{
"name": "Strapi GitHub Advisories",
"url": "https://github.com/strapi/strapi/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Strapi",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "sveltekit--package--sveltejs-kit",
"entity_type": "package",
"display_name": "sveltejs / kit",
"parent_entity_id": "sveltekit",
"root_system_id": "sveltekit",
"category": "frameworks",
"ecosystem": "@sveltejs",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/@sveltejs/kit",
"marketplace_url": "",
"latest_version": "2.55.0",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/@sveltejs/kit",
"version_source_refs": [
"https://www.npmjs.com/package/@sveltejs/kit",
"https://github.com/sveltejs/kit/security/advisories/GHSA-88qp-p4qg-rqm6",
"https://github.com/sveltejs/kit/security/advisories/GHSA-fpg4-jhqr-589c"
],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/sveltejs/kit/security/advisories/GHSA-88qp-p4qg-rqm6",
"https://github.com/sveltejs/kit/security/advisories/GHSA-fpg4-jhqr-589c"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-28T06:27:26+00:00",
"last_synced_at": "2026-02-28T06:27:26+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 3,
"workflow_complete_advisory_count": 3,
"version_mapped_advisory_count": 3,
"first_advisory_at": "2026-02-19T20:29:42+00:00",
"latest_advisory_at": "2026-02-28T06:27:26+00:00",
"advisory_ids": [
"sveltekit--GHSA-88qp-p4qg-rqm6",
"sveltekit--GHSA-fpg4-jhqr-589c",
"sveltekit--GHSA-vrhm-gvg7-fpcf"
],
"source_refs": []
},
{
"entity_id": "sveltekit",
"entity_type": "system",
"display_name": "SvelteKit",
"parent_entity_id": null,
"root_system_id": "sveltekit",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "2.55.0",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/@sveltejs/kit",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-28T06:27:26+00:00",
"last_synced_at": "2026-02-28T06:27:26+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 3,
"workflow_complete_advisory_count": 3,
"version_mapped_advisory_count": 3,
"first_advisory_at": "2026-02-19T20:29:42+00:00",
"latest_advisory_at": "2026-02-28T06:27:26+00:00",
"advisory_ids": [
"sveltekit--GHSA-88qp-p4qg-rqm6",
"sveltekit--GHSA-fpg4-jhqr-589c",
"sveltekit--GHSA-vrhm-gvg7-fpcf"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV SvelteKit",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "symfony--package--symfony-symfony",
"entity_type": "package",
"display_name": "symfony / symfony",
"parent_entity_id": "symfony",
"root_system_id": "symfony",
"category": "frameworks",
"ecosystem": "symfony",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/symfony/symfony",
"package_registry": "https://packagist.org/packages/symfony/symfony",
"marketplace_url": "",
"latest_version": "8.0.8",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-31T21:14:58+00:00",
"latest_release_url": "https://packagist.org/packages/symfony/symfony",
"version_source_refs": [
"https://packagist.org/packages/symfony/symfony",
"https://github.com/symfony/symfony/security/advisories/GHSA-5pv8-ppvj-4h68"
],
"version_sync_status": "green",
"security_version_count": 220,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"Packagist p2",
"https://github.com/symfony/symfony/security/advisories/GHSA-5pv8-ppvj-4h68"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T22:16:14+00:00",
"last_synced_at": "2026-03-13T22:16:14+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 9,
"workflow_complete_advisory_count": 9,
"version_mapped_advisory_count": 9,
"first_advisory_at": "2020-03-30T20:09:16+00:00",
"latest_advisory_at": "2026-03-13T22:16:14+00:00",
"advisory_ids": [
"symfony--CVE-2020-15094",
"symfony--CVE-2020-5255",
"symfony--CVE-2020-5274",
"symfony--CVE-2020-5275",
"symfony--CVE-2021-21424",
"symfony--CVE-2021-32693",
"symfony--CVE-2021-41267",
"symfony--CVE-2021-41268",
"symfony--CVE-2021-41270"
],
"source_refs": []
},
{
"entity_id": "symfony",
"entity_type": "system",
"display_name": "Symfony",
"parent_entity_id": null,
"root_system_id": "symfony",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "8.0.8",
"version_scheme": "vendor",
"latest_release_at": "2026-03-31T21:14:58+00:00",
"latest_release_url": "https://packagist.org/packages/symfony/symfony",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 220,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-13T22:16:14+00:00",
"last_synced_at": "2026-03-13T22:16:14+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 9,
"workflow_complete_advisory_count": 9,
"version_mapped_advisory_count": 9,
"first_advisory_at": "2020-03-30T20:09:16+00:00",
"latest_advisory_at": "2026-03-13T22:16:14+00:00",
"advisory_ids": [
"symfony--CVE-2020-15094",
"symfony--CVE-2020-5255",
"symfony--CVE-2020-5274",
"symfony--CVE-2020-5275",
"symfony--CVE-2021-21424",
"symfony--CVE-2021-32693",
"symfony--CVE-2021-41267",
"symfony--CVE-2021-41268",
"symfony--CVE-2021-41270"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Symfony",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "traefik--extension--github-com-traefik-traefik-v3",
"entity_type": "extension",
"display_name": "traefik / traefik / v3",
"parent_entity_id": "traefik",
"root_system_id": "traefik",
"category": "servers",
"ecosystem": "github.com",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/traefik/traefik",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.7.0-ea.3",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-26T11:10:20Z",
"latest_release_url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3",
"version_source_refs": [
"https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.2",
"https://github.com/traefik/traefik/security/advisories/GHSA-wvvq-wgcr-9q48",
"https://github.com/traefik/traefik/releases/tag/v2.11.42",
"https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3"
],
"version_sync_status": "green",
"security_version_count": 8,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"https://github.com/traefik/traefik/security/advisories/GHSA-wvvq-wgcr-9q48",
"advisory-fixed-version"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-20T15:46:41+00:00",
"last_synced_at": "2026-03-20T15:46:41+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-03-20T15:43:01+00:00",
"latest_advisory_at": "2026-03-23T18:56:07+00:00",
"advisory_ids": [
"traefik--CVE-2026-32305"
],
"source_refs": []
},
{
"entity_id": "traefik--repo--github-com-traefik-traefik-v3",
"entity_type": "repo",
"display_name": "traefik / traefik / v3",
"parent_entity_id": "traefik",
"root_system_id": "traefik",
"category": "servers",
"ecosystem": "github.com",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/traefik/traefik",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.7.0-ea.3",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-26T11:10:20Z",
"latest_release_url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3",
"version_source_refs": [
"https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.2",
"https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9",
"https://github.com/traefik/traefik/security/advisories/GHSA-8q2w-wr49-whqj",
"https://github.com/traefik/traefik/security/advisories/GHSA-62c8-mh53-4cqv",
"https://github.com/traefik/traefik/security/advisories/GHSA-hxr6-2p24-hf98",
"https://github.com/traefik/traefik/security/advisories/GHSA-6p68-w45g-48j7",
"https://github.com/traefik/traefik/security/advisories/GHSA-5423-jcjm-2gpv",
"https://github.com/traefik/traefik/security/advisories/GHSA-vrch-868g-9jx5",
"https://github.com/traefik/traefik/security/advisories/GHSA-gm3x-23wp-hc2c",
"https://github.com/traefik/traefik/security/advisories/GHSA-cwjm-3f7h-9hwq",
"https://github.com/traefik/traefik/security/advisories/GHSA-gv8r-9rw9-9697",
"https://github.com/traefik/traefik/security/advisories/GHSA-fw45-f5q2-2p4x",
"https://github.com/traefik/traefik/security/advisories/GHSA-4hjq-9h5c-252j",
"https://github.com/traefik/traefik/security/advisories/GHSA-g3hg-j4jv-cwfr",
"https://github.com/traefik/traefik/security/advisories/GHSA-89p3-4642-cr2w",
"https://github.com/traefik/traefik/releases/tag/v2.11.42",
"https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3",
"https://github.com/traefik/traefik/security/advisories/GHSA-qr99-7898-vr7c",
"https://github.com/traefik/traefik/security/advisories/GHSA-67jx-r9pv-98rj"
],
"version_sync_status": "green",
"security_version_count": 63,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9",
"https://github.com/traefik/traefik/security/advisories/GHSA-8q2w-wr49-whqj",
"https://github.com/traefik/traefik/security/advisories/GHSA-62c8-mh53-4cqv",
"https://github.com/traefik/traefik/security/advisories/GHSA-hxr6-2p24-hf98",
"https://github.com/traefik/traefik/security/advisories/GHSA-6p68-w45g-48j7",
"https://github.com/traefik/traefik/security/advisories/GHSA-5423-jcjm-2gpv",
"https://github.com/traefik/traefik/security/advisories/GHSA-vrch-868g-9jx5",
"https://github.com/traefik/traefik/security/advisories/GHSA-gm3x-23wp-hc2c",
"https://github.com/traefik/traefik/security/advisories/GHSA-cwjm-3f7h-9hwq",
"https://github.com/traefik/traefik/security/advisories/GHSA-gv8r-9rw9-9697",
"https://github.com/traefik/traefik/security/advisories/GHSA-fw45-f5q2-2p4x",
"https://github.com/traefik/traefik/security/advisories/GHSA-4hjq-9h5c-252j",
"https://github.com/traefik/traefik/security/advisories/GHSA-g3hg-j4jv-cwfr",
"https://github.com/traefik/traefik/security/advisories/GHSA-89p3-4642-cr2w",
"advisory-fixed-version",
"https://github.com/traefik/traefik/security/advisories/GHSA-qr99-7898-vr7c",
"https://github.com/traefik/traefik/security/advisories/GHSA-67jx-r9pv-98rj"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-20T15:46:26+00:00",
"last_synced_at": "2026-03-20T15:46:26+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 20,
"workflow_complete_advisory_count": 20,
"version_mapped_advisory_count": 20,
"first_advisory_at": "2024-07-09T19:34:07+00:00",
"latest_advisory_at": "2026-03-29T15:49:22+00:00",
"advisory_ids": [
"traefik--CVE-2024-39321",
"traefik--CVE-2024-45410",
"traefik--CVE-2025-32431",
"traefik--CVE-2025-47952",
"traefik--CVE-2025-66490",
"traefik--CVE-2025-66491",
"traefik--CVE-2026-22045",
"traefik--CVE-2026-25949",
"traefik--CVE-2026-26998",
"traefik--CVE-2026-26999",
"traefik--CVE-2026-29054",
"traefik--CVE-2026-29777",
"traefik--CVE-2026-32595",
"traefik--CVE-2026-32695",
"traefik--CVE-2026-33433",
"traefik--GHSA-46wh-3698-f2cx",
"traefik--GHSA-4hjq-9h5c-252j",
"traefik--GHSA-5423-jcjm-2gpv",
"traefik--GHSA-gv8r-9rw9-9697",
"traefik--GHSA-hxr6-2p24-hf98"
],
"source_refs": []
},
{
"entity_id": "traefik",
"entity_type": "system",
"display_name": "Traefik",
"parent_entity_id": null,
"root_system_id": "traefik",
"category": "servers",
"ecosystem": "servers",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.7.0-ea.3",
"version_scheme": "vendor",
"latest_release_at": "2026-03-26T11:10:20Z",
"latest_release_url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.3",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 71,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-20T15:46:41+00:00",
"last_synced_at": "2026-03-20T15:46:41+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 48,
"workflow_complete_advisory_count": 48,
"version_mapped_advisory_count": 21,
"first_advisory_at": "2024-07-09T19:34:07+00:00",
"latest_advisory_at": "2026-03-29T15:49:22+00:00",
"advisory_ids": [
"traefik--05879db0a0",
"traefik--073109115e",
"traefik--0c45d49e68",
"traefik--0c5728e780",
"traefik--19a385484f",
"traefik--215c6d605a",
"traefik--28a935b81b",
"traefik--29439bed6b",
"traefik--2cb326d185",
"traefik--4185d7b075",
"traefik--453fce835e",
"traefik--4bdc904266",
"traefik--53e0523390",
"traefik--57ed245fc6",
"traefik--5c0e05b2c9",
"traefik--63f03e3b70",
"traefik--7963c083d8",
"traefik--7f6abd7d76",
"traefik--8031d86f14",
"traefik--81ff015a55",
"traefik--8ed1821d0e",
"traefik--932bc11f0f",
"traefik--CVE-2024-39321",
"traefik--CVE-2024-45410",
"traefik--CVE-2025-32431",
"traefik--CVE-2025-47952",
"traefik--CVE-2025-66490",
"traefik--CVE-2025-66491",
"traefik--CVE-2026-22045",
"traefik--CVE-2026-25949",
"traefik--CVE-2026-26998",
"traefik--CVE-2026-26999",
"traefik--CVE-2026-29054",
"traefik--CVE-2026-29777",
"traefik--CVE-2026-32305",
"traefik--CVE-2026-32595",
"traefik--CVE-2026-32695",
"traefik--CVE-2026-33433",
"traefik--GHSA-46wh-3698-f2cx",
"traefik--GHSA-4hjq-9h5c-252j",
"traefik--GHSA-5423-jcjm-2gpv",
"traefik--GHSA-gv8r-9rw9-9697",
"traefik--GHSA-hxr6-2p24-hf98",
"traefik--a2cbd1b1a8",
"traefik--ad9aaf4006",
"traefik--ba188f1bf7",
"traefik--e14e4aace6",
"traefik--edfa0dc761"
],
"source_refs": [
{
"name": "GitHub Traefik Advisories",
"url": "https://github.com/traefik/traefik/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Traefik",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "undici--extension--undici",
"entity_type": "extension",
"display_name": "undici",
"parent_entity_id": "undici",
"root_system_id": "undici",
"category": "frameworks",
"ecosystem": "undici",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/undici",
"marketplace_url": "",
"latest_version": "8.0.0",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/undici",
"version_source_refs": [
"https://www.npmjs.com/package/undici",
"https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-8vpv-qv8q"
],
"version_sync_status": "green",
"security_version_count": 4,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-8vpv-qv8q"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-18T22:58:59+00:00",
"last_synced_at": "2026-03-18T22:58:59+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 2,
"workflow_complete_advisory_count": 2,
"version_mapped_advisory_count": 2,
"first_advisory_at": "2026-03-13T20:41:41+00:00",
"latest_advisory_at": "2026-03-18T22:58:59+00:00",
"advisory_ids": [
"undici--CVE-2026-1526",
"undici--CVE-2026-2229"
],
"source_refs": []
},
{
"entity_id": "undici--project--undici",
"entity_type": "project",
"display_name": "undici",
"parent_entity_id": "undici",
"root_system_id": "undici",
"category": "frameworks",
"ecosystem": "undici",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/undici",
"marketplace_url": "",
"latest_version": "8.0.0",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/undici",
"version_source_refs": [
"https://www.npmjs.com/package/undici",
"https://github.com/nodejs/undici/security/advisories/GHSA-3cvr-822r-rqcc",
"https://github.com/nodejs/undici/security/advisories/GHSA-f772-66g8-q5h3",
"https://github.com/nodejs/undici/security/advisories/GHSA-r6ch-mqf9-qc9w",
"https://github.com/nodejs/undici/security/advisories/GHSA-3787-6prv-h9w3",
"https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-6q6p-2qxm",
"https://github.com/nodejs/undici/security/advisories/GHSA-5r9g-qh6m-jxff",
"https://github.com/nodejs/undici/security/advisories/GHSA-pgw7-wx7w-2w33",
"https://github.com/nodejs/undici/security/advisories/GHSA-9f24-jqhm-jfcw",
"https://github.com/nodejs/undici/security/advisories/GHSA-f269-vfmq-vjvj",
"https://github.com/nodejs/undici/security/advisories/GHSA-3g92-w8c5-73pq",
"https://github.com/nodejs/undici/security/advisories/GHSA-phc3-fgpg-7m6h"
],
"version_sync_status": "green",
"security_version_count": 21,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/nodejs/undici/security/advisories/GHSA-3cvr-822r-rqcc",
"https://github.com/nodejs/undici/security/advisories/GHSA-f772-66g8-q5h3",
"https://github.com/nodejs/undici/security/advisories/GHSA-r6ch-mqf9-qc9w",
"https://github.com/nodejs/undici/security/advisories/GHSA-3787-6prv-h9w3",
"https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-6q6p-2qxm",
"https://github.com/nodejs/undici/security/advisories/GHSA-5r9g-qh6m-jxff",
"https://github.com/nodejs/undici/security/advisories/GHSA-pgw7-wx7w-2w33",
"https://github.com/nodejs/undici/security/advisories/GHSA-9f24-jqhm-jfcw",
"https://github.com/nodejs/undici/security/advisories/GHSA-f269-vfmq-vjvj",
"https://github.com/nodejs/undici/security/advisories/GHSA-3g92-w8c5-73pq",
"https://github.com/nodejs/undici/security/advisories/GHSA-phc3-fgpg-7m6h"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-18T23:58:57+00:00",
"last_synced_at": "2026-03-18T23:58:57+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 13,
"workflow_complete_advisory_count": 13,
"version_mapped_advisory_count": 13,
"first_advisory_at": "2022-06-17T01:02:29+00:00",
"latest_advisory_at": "2026-03-18T23:58:57+00:00",
"advisory_ids": [
"undici--CVE-2022-31150",
"undici--CVE-2022-32210",
"undici--CVE-2022-35948",
"undici--CVE-2022-35949",
"undici--CVE-2023-23936",
"undici--CVE-2023-24807",
"undici--CVE-2024-24750",
"undici--CVE-2024-24758",
"undici--CVE-2024-38372",
"undici--CVE-2026-1525",
"undici--CVE-2026-1527",
"undici--CVE-2026-1528",
"undici--CVE-2026-2581"
],
"source_refs": []
},
{
"entity_id": "undici",
"entity_type": "system",
"display_name": "Undici",
"parent_entity_id": null,
"root_system_id": "undici",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "8.0.0",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/undici",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 25,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-03-18T23:58:57+00:00",
"last_synced_at": "2026-03-18T23:58:57+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 16,
"workflow_complete_advisory_count": 16,
"version_mapped_advisory_count": 15,
"first_advisory_at": "2022-06-17T01:02:29+00:00",
"latest_advisory_at": "2026-03-18T23:58:57+00:00",
"advisory_ids": [
"undici--CVE-2022-31150",
"undici--CVE-2022-32210",
"undici--CVE-2022-35948",
"undici--CVE-2022-35949",
"undici--CVE-2023-23936",
"undici--CVE-2023-24807",
"undici--CVE-2024-24750",
"undici--CVE-2024-24758",
"undici--CVE-2024-38372",
"undici--CVE-2026-1525",
"undici--CVE-2026-1526",
"undici--CVE-2026-1527",
"undici--CVE-2026-1528",
"undici--CVE-2026-21636",
"undici--CVE-2026-2229",
"undici--CVE-2026-2581"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Undici",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD Undici",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "vite--extension--vite",
"entity_type": "extension",
"display_name": "vite",
"parent_entity_id": "vite",
"root_system_id": "vite",
"category": "frameworks",
"ecosystem": "vite",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/vite",
"marketplace_url": "",
"latest_version": "8.0.3",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/vite",
"version_source_refs": [
"https://www.npmjs.com/package/vite",
"https://github.com/vitejs/vite/security/advisories/GHSA-jqfw-vq24-v9c3"
],
"version_sync_status": "green",
"security_version_count": 8,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/vitejs/vite/security/advisories/GHSA-jqfw-vq24-v9c3"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T04:35:16+00:00",
"last_synced_at": "2026-02-04T04:35:16+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2025-09-09T20:54:42+00:00",
"latest_advisory_at": "2026-02-04T04:35:16+00:00",
"advisory_ids": [
"vite--CVE-2025-58752"
],
"source_refs": []
},
{
"entity_id": "vite--module--vite",
"entity_type": "module",
"display_name": "vite",
"parent_entity_id": "vite",
"root_system_id": "vite",
"category": "frameworks",
"ecosystem": "vite",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/vite",
"marketplace_url": "",
"latest_version": "8.0.3",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/vite",
"version_source_refs": [
"https://www.npmjs.com/package/vite",
"https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
],
"version_sync_status": "green",
"security_version_count": 12,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T04:04:22+00:00",
"last_synced_at": "2026-02-04T04:04:22+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2024-09-17T19:28:01+00:00",
"latest_advisory_at": "2026-02-04T04:04:22+00:00",
"advisory_ids": [
"vite--CVE-2024-45812"
],
"source_refs": []
},
{
"entity_id": "vite--plugin--vite",
"entity_type": "plugin",
"display_name": "vite",
"parent_entity_id": "vite",
"root_system_id": "vite",
"category": "frameworks",
"ecosystem": "vite",
"official": false,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/vite",
"marketplace_url": "",
"latest_version": "8.0.3",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/vite",
"version_source_refs": [
"https://www.npmjs.com/package/vite",
"https://github.com/vitejs/vite/security/advisories/GHSA-vg6x-rcgg-rjx6",
"https://github.com/vitejs/vite/security/advisories/GHSA-xcj6-pq6g-qj4x",
"https://github.com/vitejs/vite/security/advisories/GHSA-92r3-m2mg-pj97"
],
"version_sync_status": "green",
"security_version_count": 23,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/vitejs/vite/security/advisories/GHSA-vg6x-rcgg-rjx6",
"https://github.com/vitejs/vite/security/advisories/GHSA-xcj6-pq6g-qj4x",
"https://github.com/vitejs/vite/security/advisories/GHSA-92r3-m2mg-pj97"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T04:37:03+00:00",
"last_synced_at": "2026-02-04T04:37:03+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 3,
"workflow_complete_advisory_count": 3,
"version_mapped_advisory_count": 3,
"first_advisory_at": "2023-12-05T23:31:34+00:00",
"latest_advisory_at": "2026-02-04T04:37:03+00:00",
"advisory_ids": [
"vite--CVE-2023-49293",
"vite--CVE-2025-24010",
"vite--CVE-2025-31486"
],
"source_refs": []
},
{
"entity_id": "vite--project--vite",
"entity_type": "project",
"display_name": "vite",
"parent_entity_id": "vite",
"root_system_id": "vite",
"category": "frameworks",
"ecosystem": "vite",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/vite",
"marketplace_url": "",
"latest_version": "8.0.3",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/vite",
"version_source_refs": [
"https://www.npmjs.com/package/vite",
"https://nvd.nist.gov/vuln/detail/CVE-2022-35204",
"https://github.com/vitejs/vite/security/advisories/GHSA-353f-5xf4-qw67",
"https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"https://github.com/vitejs/vite/security/advisories/GHSA-x574-m823-4x7w",
"https://github.com/vitejs/vite/security/advisories/GHSA-4r4m-qw57-chr8",
"https://github.com/vitejs/vite/security/advisories/GHSA-356w-63v5-8wf4",
"https://github.com/vitejs/vite/security/advisories/GHSA-859w-5945-r5v3",
"https://github.com/vitejs/vite/security/advisories/GHSA-g4jq-h2w9-997c",
"https://github.com/vitejs/vite/security/advisories/GHSA-c24v-8rfc-w8vw",
"https://github.com/vitejs/vite/security/advisories/GHSA-8jhw-289h-jh2g",
"https://github.com/vitejs/vite/security/advisories/GHSA-93m4-6634-74q7"
],
"version_sync_status": "green",
"security_version_count": 107,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://nvd.nist.gov/vuln/detail/CVE-2022-35204",
"https://github.com/vitejs/vite/security/advisories/GHSA-353f-5xf4-qw67",
"https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"https://github.com/vitejs/vite/security/advisories/GHSA-x574-m823-4x7w",
"https://github.com/vitejs/vite/security/advisories/GHSA-4r4m-qw57-chr8",
"https://github.com/vitejs/vite/security/advisories/GHSA-356w-63v5-8wf4",
"https://github.com/vitejs/vite/security/advisories/GHSA-859w-5945-r5v3",
"https://github.com/vitejs/vite/security/advisories/GHSA-g4jq-h2w9-997c",
"https://github.com/vitejs/vite/security/advisories/GHSA-c24v-8rfc-w8vw",
"https://github.com/vitejs/vite/security/advisories/GHSA-8jhw-289h-jh2g",
"https://github.com/vitejs/vite/security/advisories/GHSA-93m4-6634-74q7"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T04:37:24+00:00",
"last_synced_at": "2026-02-04T04:37:24+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 11,
"workflow_complete_advisory_count": 11,
"version_mapped_advisory_count": 11,
"first_advisory_at": "2022-08-19T00:00:20+00:00",
"latest_advisory_at": "2026-02-04T04:37:24+00:00",
"advisory_ids": [
"vite--CVE-2022-35204",
"vite--CVE-2023-34092",
"vite--CVE-2024-23331",
"vite--CVE-2024-31207",
"vite--CVE-2024-45811",
"vite--CVE-2025-30208",
"vite--CVE-2025-31125",
"vite--CVE-2025-32395",
"vite--CVE-2025-46565",
"vite--CVE-2025-58751",
"vite--CVE-2025-62522"
],
"source_refs": []
},
{
"entity_id": "vite",
"entity_type": "system",
"display_name": "Vite",
"parent_entity_id": null,
"root_system_id": "vite",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "8.0.3",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/vite",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 150,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-04T04:37:24+00:00",
"last_synced_at": "2026-02-04T04:37:24+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 42,
"workflow_complete_advisory_count": 42,
"version_mapped_advisory_count": 16,
"first_advisory_at": "2022-08-19T00:00:20+00:00",
"latest_advisory_at": "2026-02-04T04:37:24+00:00",
"advisory_ids": [
"vite--0431a74cbb",
"vite--21a135147f",
"vite--3253012d26",
"vite--337a6b65a2",
"vite--40b8a1cdab",
"vite--4bb40e7a4d",
"vite--4f488961b3",
"vite--6bc7a4e4df",
"vite--81409e65ea",
"vite--8df264d7be",
"vite--8ff9dce727",
"vite--90961ad518",
"vite--94a2c7491d",
"vite--CVE-2022-35204",
"vite--CVE-2023-34092",
"vite--CVE-2023-49293",
"vite--CVE-2024-23331",
"vite--CVE-2024-31207",
"vite--CVE-2024-45811",
"vite--CVE-2024-45812",
"vite--CVE-2025-24010",
"vite--CVE-2025-30208",
"vite--CVE-2025-31125",
"vite--CVE-2025-31486",
"vite--CVE-2025-32395",
"vite--CVE-2025-46565",
"vite--CVE-2025-58751",
"vite--CVE-2025-58752",
"vite--CVE-2025-62522",
"vite--a19c63b94a",
"vite--a5d4d7e7b8",
"vite--a8a73c8f9d",
"vite--ac5076e48a",
"vite--c076aa0c77",
"vite--c181eacd2f",
"vite--c7ed487a58",
"vite--ce431f1b64",
"vite--dd15f3bb5d",
"vite--f14ce960b5",
"vite--f4eeb2b362",
"vite--f81e537cca",
"vite--fbafab7f7a"
],
"source_refs": [
{
"name": "Vite Security",
"url": "https://github.com/vitejs/vite/security/advisories",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Vite",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "vue--project--vue",
"entity_type": "project",
"display_name": "vue",
"parent_entity_id": "vue",
"root_system_id": "vue",
"category": "frameworks",
"ecosystem": "vue",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/vue",
"marketplace_url": "",
"latest_version": "3.5.31",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/vue",
"version_source_refs": [
"https://www.npmjs.com/package/vue",
"https://nvd.nist.gov/vuln/detail/CVE-2024-9506"
],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://nvd.nist.gov/vuln/detail/CVE-2024-9506"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2024-10-24T19:12:14+00:00",
"last_synced_at": "2024-10-24T19:12:14+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2024-10-15T18:30:50+00:00",
"latest_advisory_at": "2024-10-24T19:12:14+00:00",
"advisory_ids": [
"vue--CVE-2024-9506"
],
"source_refs": []
},
{
"entity_id": "vue",
"entity_type": "system",
"display_name": "Vue",
"parent_entity_id": null,
"root_system_id": "vue",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "3.5.31",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/vue",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 2,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2024-10-24T19:12:14+00:00",
"last_synced_at": "2024-10-24T19:12:14+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 15,
"workflow_complete_advisory_count": 15,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2024-10-15T18:30:50+00:00",
"latest_advisory_at": "2024-10-24T19:12:14+00:00",
"advisory_ids": [
"vue--1570e8326d",
"vue--33e104491f",
"vue--38ca26476d",
"vue--45b610d81b",
"vue--4ae8f41666",
"vue--62b649ac4a",
"vue--7dea132a68",
"vue--8620f396c9",
"vue--CVE-2024-9506",
"vue--ad807381e3",
"vue--bc08de2ce3",
"vue--ca53856ac2",
"vue--e1b1ddcdb9",
"vue--ea962ad50f",
"vue--fda8b59364"
],
"source_refs": [
{
"name": "Vue Security",
"url": "https://github.com/vuejs/core/security",
"kind": "html-links",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV Vue",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "webpack",
"entity_type": "system",
"display_name": "webpack",
"parent_entity_id": null,
"root_system_id": "webpack",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "",
"version_source_refs": [],
"version_sync_status": "source-gap",
"security_version_count": 0,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-27T17:21:22+00:00",
"last_synced_at": "2026-02-27T17:21:22+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2026-02-26T02:16:21+00:00",
"latest_advisory_at": "2026-02-27T17:21:22+00:00",
"advisory_ids": [
"webpack--CVE-2026-27903"
],
"source_refs": [
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV webpack",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD webpack",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "werkzeug--project--werkzeug",
"entity_type": "project",
"display_name": "werkzeug",
"parent_entity_id": "werkzeug",
"root_system_id": "werkzeug",
"category": "frameworks",
"ecosystem": "werkzeug",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "https://www.npmjs.com/package/werkzeug",
"marketplace_url": "",
"latest_version": "0.0.15",
"version_scheme": "semver-ish",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/werkzeug",
"version_source_refs": [
"https://www.npmjs.com/package/werkzeug",
"https://github.com/pallets/werkzeug/security/advisories/GHSA-29vq-49wr-vm6x"
],
"version_sync_status": "green",
"security_version_count": 22,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"npm latest",
"https://github.com/pallets/werkzeug/security/advisories/GHSA-29vq-49wr-vm6x"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-23T23:43:27+00:00",
"last_synced_at": "2026-02-23T23:43:27+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-02-19T20:32:45+00:00",
"latest_advisory_at": "2026-02-23T23:43:27+00:00",
"advisory_ids": [
"werkzeug--CVE-2026-27199"
],
"source_refs": []
},
{
"entity_id": "werkzeug",
"entity_type": "system",
"display_name": "Werkzeug",
"parent_entity_id": null,
"root_system_id": "werkzeug",
"category": "frameworks",
"ecosystem": "frameworks",
"official": true,
"status": "cataloged",
"history_policy": "rolling-24m",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "0.0.15",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://www.npmjs.com/package/werkzeug",
"version_source_refs": [],
"version_sync_status": "green",
"security_version_count": 22,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2026-02-23T23:43:27+00:00",
"last_synced_at": "2026-02-23T23:43:27+00:00",
"history_backfill_status": "seeded",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 1,
"workflow_complete_advisory_count": 1,
"version_mapped_advisory_count": 1,
"first_advisory_at": "2026-02-19T20:32:45+00:00",
"latest_advisory_at": "2026-02-23T23:43:27+00:00",
"advisory_ids": [
"werkzeug--CVE-2026-27199"
],
"source_refs": [
{
"name": "OSV Werkzeug",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub Global Advisories",
"url": null,
"kind": "ghsa-global",
"status": "retired",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "woocommerce--repo--woocommerce-woocommerce",
"entity_type": "repo",
"display_name": "woocommerce / woocommerce",
"parent_entity_id": "woocommerce",
"root_system_id": "woocommerce",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "https://github.com/woocommerce/woocommerce",
"package_registry": "",
"marketplace_url": "",
"latest_version": "10.6.2",
"version_scheme": "semver-ish",
"latest_release_at": "2026-03-31T18:21:02Z",
"latest_release_url": "https://github.com/woocommerce/woocommerce/releases/tag/10.6.2",
"version_source_refs": [
"https://github.com/woocommerce/woocommerce/releases/tag/10.6.1",
"https://patchstack.com/database/wordpress/plugin/wc-carta-docente/vulnerability/wordpress-ilghera-carta-docente-for-woocommerce-plugin-1-5-0-authenticated-administrator-path-traversal-to-arbitrary-file-deletion-via-cert-parameter-vulnerability",
"https://developer.woocommerce.com/2026/03/02/store-api-vulnerability-patched-in-woocommerce-5-4/",
"https://developer.woocommerce.com/2026/02/16/hpos-sync-on-read-to-be-disabled-by-default-in-woocommerce-10-7/",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-10-incorrect-authorization-to-unauthenticated-information-exposure-and-data-manipulation-vulnerability",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-limited-remote-code-execution-vulnerability",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-to-data-export-vulnerability",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woo-product-filter/vulnerability/wordpress-product-filter-for-woocommerce-by-wbw-plugin-3-1-2-missing-authorization-to-unauthenticated-filter-data-deletion-via-truncate-table-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woo-custom-product-addons-pro/vulnerability/wordpress-woocommerce-custom-product-addons-pro-plugin-5-4-1-unauthenticated-remote-code-execution-via-custom-pricing-formula-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woocommerce-payments/vulnerability/wordpress-woopayments-plugin-10-5-1-missing-authorization-to-unauthenticated-plugin-settings-update-via-save-upe-appearance-ajax-vulnerability",
"https://github.com/woocommerce/woocommerce/releases/tag/10.6.2",
"https://patchstack.com/database/wordpress/plugin/woc-order-alert/vulnerability/wordpress-order-notification-for-woocommerce-plugin-3-6-3-unauthenticated-woocommerce-rest-permission-bypass-vulnerability"
],
"version_sync_status": "green",
"security_version_count": 5,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"GitHub Releases API",
"Patchstack Database",
"Woo Developer Advisories"
],
"catalog_source": "GitHub WooCommerce Advisories",
"catalog_reason": "source catalog exposed a stable security-related object and auto-catalog is enabled",
"auto_cataloged": true,
"last_discovered_at": "",
"last_synced_at": "",
"history_backfill_status": "pending",
"latest_sync_status": "pending",
"official_source_covered": false,
"advisory_count": 0,
"workflow_complete_advisory_count": 0,
"version_mapped_advisory_count": 0,
"first_advisory_at": "",
"latest_advisory_at": "",
"advisory_ids": [],
"source_refs": [
{
"name": "GitHub WooCommerce Advisories",
"url": "https://github.com/woocommerce/woocommerce/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
}
]
},
{
"entity_id": "woocommerce",
"entity_type": "system",
"display_name": "WooCommerce",
"parent_entity_id": null,
"root_system_id": "woocommerce",
"category": "ecommerce",
"ecosystem": "ecommerce",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "10.6.2",
"version_scheme": "vendor",
"latest_release_at": "2026-03-31T18:21:02Z",
"latest_release_url": "https://github.com/woocommerce/woocommerce/releases/tag/10.6.2",
"version_source_refs": [
"https://developer.woocommerce.com/2026/02/16/hpos-sync-on-read-to-be-disabled-by-default-in-woocommerce-10-7/",
"https://patchstack.com/database/wordpress/plugin/wc-carta-docente/vulnerability/wordpress-ilghera-carta-docente-for-woocommerce-plugin-1-5-0-authenticated-administrator-path-traversal-to-arbitrary-file-deletion-via-cert-parameter-vulnerability",
"https://developer.woocommerce.com/2026/03/02/store-api-vulnerability-patched-in-woocommerce-5-4/",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-10-incorrect-authorization-to-unauthenticated-information-exposure-and-data-manipulation-vulnerability",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-limited-remote-code-execution-vulnerability",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-to-data-export-vulnerability",
"https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woo-product-filter/vulnerability/wordpress-product-filter-for-woocommerce-by-wbw-plugin-3-1-2-missing-authorization-to-unauthenticated-filter-data-deletion-via-truncate-table-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woo-custom-product-addons-pro/vulnerability/wordpress-woocommerce-custom-product-addons-pro-plugin-5-4-1-unauthenticated-remote-code-execution-via-custom-pricing-formula-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woocommerce-payments/vulnerability/wordpress-woopayments-plugin-10-5-1-missing-authorization-to-unauthenticated-plugin-settings-update-via-save-upe-appearance-ajax-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woc-order-alert/vulnerability/wordpress-order-notification-for-woocommerce-plugin-3-6-3-unauthenticated-woocommerce-rest-permission-bypass-vulnerability"
],
"version_sync_status": "green",
"security_version_count": 5,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"Woo Developer Advisories",
"Patchstack Database"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-20T01:37:25+00:00",
"last_synced_at": "2025-04-20T01:37:25+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 111,
"workflow_complete_advisory_count": 111,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2014-07-02T20:55:06+00:00",
"latest_advisory_at": "2025-04-20T01:37:25+00:00",
"advisory_ids": [
"woocommerce--05da41121f",
"woocommerce--06e151b334",
"woocommerce--08ab0e40fd",
"woocommerce--08ff88b89e",
"woocommerce--1129617837",
"woocommerce--18f94418c3",
"woocommerce--1b2a89ca9c",
"woocommerce--2646cca050",
"woocommerce--2acb79d818",
"woocommerce--30c7084831",
"woocommerce--313be91ecc",
"woocommerce--35d1bcc8fd",
"woocommerce--38e031b62a",
"woocommerce--3b3ee22bdd",
"woocommerce--3d4415cd8c",
"woocommerce--3f7bcf6460",
"woocommerce--40fad2352c",
"woocommerce--46dfa1debb",
"woocommerce--4703641b3e",
"woocommerce--4b8901521b",
"woocommerce--4e5d64d078",
"woocommerce--509829ee63",
"woocommerce--5431e35cb9",
"woocommerce--583e91c778",
"woocommerce--5ea81bed02",
"woocommerce--5ebeb363ab",
"woocommerce--5f95d49feb",
"woocommerce--608614d706",
"woocommerce--61bcf00c63",
"woocommerce--6398a77e67",
"woocommerce--669aeb4ed9",
"woocommerce--69fa3cd79b",
"woocommerce--6a9eb36c09",
"woocommerce--6c455c6050",
"woocommerce--6f6549cea3",
"woocommerce--6ff424270d",
"woocommerce--7f9ac413c1",
"woocommerce--8197f55ac4",
"woocommerce--81f7400465",
"woocommerce--82db1502da",
"woocommerce--8aa1dccc64",
"woocommerce--94b883541e",
"woocommerce--9848665054",
"woocommerce--9b9e3ff8e5",
"woocommerce--9c50136dd9",
"woocommerce--CVE-2014-4549",
"woocommerce--CVE-2014-4558",
"woocommerce--CVE-2014-6313",
"woocommerce--CVE-2015-2069",
"woocommerce--CVE-2015-2329",
"woocommerce--CVE-2015-5065",
"woocommerce--CVE-2016-10112",
"woocommerce--CVE-2016-10922",
"woocommerce--CVE-2016-10923",
"woocommerce--CVE-2016-10935",
"woocommerce--CVE-2017-17058",
"woocommerce--CVE-2017-18356",
"woocommerce--CVE-2017-18506",
"woocommerce--CVE-2017-18592",
"woocommerce--CVE-2018-11485",
"woocommerce--CVE-2018-11486",
"woocommerce--CVE-2018-11525",
"woocommerce--CVE-2018-11579",
"woocommerce--CVE-2018-20714",
"woocommerce--CVE-2018-20782",
"woocommerce--CVE-2018-20966",
"woocommerce--CVE-2018-5316",
"woocommerce--CVE-2018-8710",
"woocommerce--CVE-2018-8711",
"woocommerce--CVE-2019-1010124",
"woocommerce--CVE-2019-11807",
"woocommerce--CVE-2019-14774",
"woocommerce--CVE-2019-14796",
"woocommerce--CVE-2019-14948",
"woocommerce--CVE-2019-14978",
"woocommerce--CVE-2019-14979",
"woocommerce--CVE-2019-15092",
"woocommerce--CVE-2019-18668",
"woocommerce--CVE-2019-18834",
"woocommerce--CVE-2019-20891",
"woocommerce--CVE-2019-5979",
"woocommerce--CVE-2019-7441",
"woocommerce--CVE-2019-9168",
"woocommerce--CVE-2020-11727",
"woocommerce--CVE-2020-8819",
"woocommerce--a130ac93bb",
"woocommerce--a72c466a05",
"woocommerce--a89ba1be4d",
"woocommerce--aa9bdbc2ce",
"woocommerce--aabb0dbc7f",
"woocommerce--ab923ae740",
"woocommerce--ac4a14e633",
"woocommerce--ac8969a095",
"woocommerce--b0bcd8ad54",
"woocommerce--b19dfd0a1c",
"woocommerce--b213245e4b",
"woocommerce--bc8055b458",
"woocommerce--c4c5c5cb89",
"woocommerce--d01b27ef60",
"woocommerce--d3da259278",
"woocommerce--d717626a6f",
"woocommerce--dd8265593a",
"woocommerce--e0fa01b204",
"woocommerce--e2b8d0d0e4",
"woocommerce--e8abb34bbb",
"woocommerce--eb8448be50",
"woocommerce--ec096f5867",
"woocommerce--ef0c884c7a",
"woocommerce--ef9e14861f",
"woocommerce--f0e42669e3",
"woocommerce--fe6541027e"
],
"source_refs": [
{
"name": "Woo Developer Advisories",
"url": "https://developer.woocommerce.com/",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "GitHub WooCommerce Advisories",
"url": "https://github.com/woocommerce/woocommerce/security/advisories",
"kind": "html-links",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD WooCommerce",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "OSV WooCommerce",
"url": null,
"kind": "osv-batch",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
},
{
"name": "Patchstack Database",
"url": "https://patchstack.com/database/",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
},
{
"name": "Wordfence Vulnerability Database",
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
}
]
},
{
"entity_id": "wordpress",
"entity_type": "system",
"display_name": "WordPress",
"parent_entity_id": null,
"root_system_id": "wordpress",
"category": "cms",
"ecosystem": "cms",
"official": true,
"status": "cataloged",
"history_policy": "history-full",
"repo_url": "",
"package_registry": "",
"marketplace_url": "",
"latest_version": "51.1.53",
"version_scheme": "vendor",
"latest_release_at": "",
"latest_release_url": "https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-38-authenticated-contributor-dom-based-stored-cross-site-scripting-via-multiple-widgets-vulnerability",
"version_source_refs": [
"https://wpscan.com/blog/object-injection-vulnerability-fixed-in-seopress-7-9/",
"https://patchstack.com/database/wordpress/plugin/ft-rockpress/vulnerability/wordpress-rockpress-plugin-1-0-17-missing-authorization-to-authenticated-subscriber-arbitrary-modification-via-ajax-actions-vulnerability",
"https://patchstack.com/database/wordpress/plugin/instant-popup-builder/vulnerability/wordpress-instant-popup-builder-plugin-1-1-7-unauthenticated-arbitrary-shortcode-execution-via-token-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/cm-custom-reports/vulnerability/wordpress-cm-custom-reports-plugin-1-2-7-authenticated-administrator-stored-cross-site-scripting-via-plugin-labels-vulnerability",
"https://patchstack.com/database/wordpress/plugin/wc-carta-docente/vulnerability/wordpress-ilghera-carta-docente-for-woocommerce-plugin-1-5-0-authenticated-administrator-path-traversal-to-arbitrary-file-deletion-via-cert-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/emailkit/vulnerability/wordpress-emailkit-plugin-1-6-3-authenticated-administrator-path-traversal-via-emailkit-editor-template-rest-api-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/simply-schedule-appointments/vulnerability/wordpress-appointment-booking-calendar-plugin-1-6-10-0-unauthenticated-sql-injection-via-fields-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/alt-manager/vulnerability/wordpress-image-alt-text-manager-plugin-1-8-2-authenticated-author-stored-cross-site-scripting-via-post-title-vulnerability",
"https://patchstack.com/database/wordpress/plugin/add-custom-fields-to-media/vulnerability/wordpress-add-custom-fields-to-media-plugin-2-0-3-cross-site-request-forgery-to-custom-field-deletion-via-delete-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/info-cards/vulnerability/wordpress-info-cards-plugin-2-0-7-authenticated-contributor-stored-cross-site-scripting-via-block-attributes-vulnerability",
"https://patchstack.com/database/wordpress/plugin/keep-backup-daily/vulnerability/wordpress-keep-backup-daily-plugin-2-1-1-authenticated-admin-limited-path-traversal-via-kbd-path-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/linksy-search-and-replace/vulnerability/wordpress-linksy-search-and-replace-plugin-1-0-4-missing-authorization-to-authenticated-subscriber-arbitrary-database-update-via-linksy-search-and-replace-item-details-vulnerability",
"https://patchstack.com/database/wordpress/plugin/scoreboard-for-html5-game-lite/vulnerability/wordpress-scoreboard-for-html5-games-lite-plugin-1-2-authenticated-contributor-stored-cross-site-scripting-via-shortcode-attributes-vulnerability",
"https://patchstack.com/database/wordpress/plugin/expire-users/vulnerability/wordpress-expire-users-plugin-1-2-2-authenticated-subscriber-privilege-escalation-to-administrator-via-save-extra-user-profile-fields-vulnerability",
"https://patchstack.com/database/wordpress/theme/jaroti/vulnerability/wordpress-jaroti-theme-1-4-8-reflected-cross-site-scripting-xss-vulnerability",
"https://patchstack.com/database/wordpress/plugin/optin/vulnerability/wordpress-wowoptin-next-gen-popup-maker-plugin-1-4-29-unauthenticated-server-side-request-forgery-via-link-parameter-in-rest-api-vulnerability",
"https://patchstack.com/database/wordpress/theme/loobek/vulnerability/wordpress-loobek-theme-1-5-2-reflected-cross-site-scripting-xss-vulnerability",
"https://patchstack.com/database/wordpress/theme/miti/vulnerability/wordpress-miti-theme-1-5-3-reflected-cross-site-scripting-xss-vulnerability",
"https://patchstack.com/database/wordpress/plugin/motta-addons/vulnerability/wordpress-motta-addons-plugin-1-6-1-reflected-cross-site-scripting-xss-vulnerability",
"https://patchstack.com/database/wordpress/plugin/faq-builder-ays/vulnerability/wordpress-faq-builder-ays-plugin-1-8-2-cross-site-scripting-xss-vulnerability",
"https://patchstack.com/database/wordpress/plugin/wordpress-seo/vulnerability/wordpress-yoast-seo-plugin-27-1-1-authenticated-contributor-stored-cross-site-scripting-via-jsontext-block-attribute-vulnerability",
"https://patchstack.com/database/wordpress/plugin/vagaro-booking-widget/vulnerability/wordpress-vagaro-booking-widget-plugin-0-3-unauthenticated-stored-cross-site-scripting-via-vagaro-code-vulnerability",
"https://patchstack.com/database/wordpress/plugin/rexcrawler/vulnerability/wordpress-rexcrawler-plugin-1-0-15-reflected-cross-site-scripting-via-url-and-regex-parameters-vulnerability",
"https://patchstack.com/database/wordpress/plugin/wpfaqblock/vulnerability/wordpress-wpfaqblock-faq-accordion-plugin-for-gutenberg-plugin-1-1-authenticated-contributor-stored-cross-site-scripting-via-class-shortcode-attribute-vulnerability",
"https://patchstack.com/database/wordpress/plugin/gallery-for-ultimate-member/vulnerability/wordpress-video-photo-gallery-for-ultimate-member-plugin-1-1-1-reflected-cross-site-scripting-vulnerability",
"https://patchstack.com/database/wordpress/plugin/alfie-the-productfeedtool-wp-plugin/vulnerability/wordpress-alfie-feed-plugin-plugin-1-2-1-cross-site-request-forgery-to-stored-cross-site-scripting-via-naam-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/comment-genius/vulnerability/wordpress-comment-genius-plugin-1-2-5-reflected-cross-site-scripting-via-server-php-self-vulnerability",
"https://patchstack.com/database/wordpress/plugin/wp-webauthn/vulnerability/wordpress-wp-webauthn-plugin-1-3-4-unauthenticated-stored-cross-site-scripting-vulnerability",
"https://patchstack.com/database/wordpress/plugin/arforms-form-builder/vulnerability/wordpress-arforms-plugin-1-7-2-unauthenticated-blind-arbitrary-shortcode-execution-vulnerability",
"https://patchstack.com/database/wordpress/plugin/postaffiliatepro/vulnerability/wordpress-post-affiliate-pro-plugin-1-28-0-authenticated-administrator-server-side-request-forgery-via-post-affiliate-pro-url-field-vulnerability",
"https://patchstack.com/database/wordpress/plugin/import-users-from-csv-with-meta/vulnerability/wordpress-import-and-export-users-and-customers-plugin-1-29-7-privilege-escalation-to-administrator-via-save-extra-user-profile-fields-vulnerability",
"https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-49-unauthenticated-api-keys-disclosure-vulnerability",
"https://patchstack.com/database/wordpress/plugin/ultimate-shortcodes-creator/vulnerability/wordpress-shortcodes-blocks-creator-ultimate-plugin-2-2-0-reflected-cross-site-scripting-via-page-vulnerability",
"https://patchstack.com/database/wordpress/plugin/ultimate-shortcodes-creator/vulnerability/wordpress-shortcodes-blocks-creator-ultimate-plugin-2-2-0-reflected-cross-site-scripting-via-wpnonce-vulnerability",
"https://patchstack.com/database/wordpress/plugin/wp-job-portal/vulnerability/wordpress-wp-job-portal-plugin-2-4-8-unauthenticated-sql-injection-via-radius-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/wp-graphql/vulnerability/wordpress-wpgraphql-plugin-2-9-1-broken-access-control-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woo-product-filter/vulnerability/wordpress-product-filter-for-woocommerce-by-wbw-plugin-3-1-2-missing-authorization-to-unauthenticated-filter-data-deletion-via-truncate-table-vulnerability",
"https://patchstack.com/database/wordpress/plugin/shapepress-dsgvo/vulnerability/wordpress-wp-dsgvo-tools-gdpr-plugin-3-1-38-missing-authorization-to-unauthenticated-account-destruction-of-non-admin-users-vulnerability",
"https://patchstack.com/database/wordpress/plugin/jetformbuilder/vulnerability/wordpress-jetformbuilder-plugin-3-5-6-2-unauthenticated-arbitrary-file-read-via-media-field-vulnerability",
"https://patchstack.com/database/wordpress/plugin/sina-extension-for-elementor/vulnerability/wordpress-sina-extension-for-elementor-plugin-3-7-0-authenticated-contributor-stored-cross-site-scripting-via-fancy-text-widget-and-countdown-widget-vulnerability",
"https://patchstack.com/database/wordpress/plugin/jet-engine/vulnerability/wordpress-jetengine-plugin-3-8-6-1-unauthenticated-sql-injection-via-listing-grid-filtered-query-parameter-vulnerability",
"https://wordpress.org/news/2025/06/dropping-security-updates-for-wordpress-versions-4-1-through-4-6/",
"https://patchstack.com/database/wordpress/plugin/smart-slider-3/vulnerability/wordpress-smart-slider-3-plugin-3-5-1-33-authenticated-subscriber-arbitrary-file-read-via-actionexportall-vulnerability",
"https://patchstack.com/database/wordpress/plugin/contest-gallery/vulnerability/wordpress-contest-gallery-plugin-28-1-5-unauthenticated-privilege-escalation-admin-account-takeover-via-registration-confirmation-email-to-id-type-confusion-vulnerability",
"https://patchstack.com/database/wordpress/plugin/bwl-advanced-faq-manager-lite/vulnerability/wordpress-bwl-advanced-faq-manager-lite-plugin-1-1-1-authenticated-contributor-stored-cross-site-scripting-via-sbox-id-shortcode-attribute-vulnerability",
"https://patchstack.com/database/wordpress/plugin/pagelayer/vulnerability/wordpress-pagelayer-plugin-2-0-7-improper-neutralization-of-crlf-sequences-to-unauthenticated-email-header-injection-via-email-vulnerability",
"https://patchstack.com/database/wordpress/plugin/quick-adsense-reloaded/vulnerability/wordpress-quads-ads-manager-for-google-adsense-plugin-2-0-98-1-authenticated-contributor-stored-cross-site-scripting-via-multiple-ad-metadata-parameters-vulnerability",
"https://patchstack.com/database/wordpress/plugin/pepro-ultimate-invoice/vulnerability/wordpress-peprodev-ultimate-invoice-plugin-2-2-6-unauthenticated-invoice-archive-download-vulnerability",
"https://patchstack.com/database/wordpress/plugin/simple-download-counter/vulnerability/wordpress-simple-download-counter-plugin-2-3-authenticated-contributor-stored-cross-site-scripting-via-text-shortcode-attribute-vulnerability",
"https://patchstack.com/database/wordpress/plugin/dsgvo-leaflet-map/vulnerability/wordpress-dsgvo-snippet-for-leaflet-map-and-its-extensions-plugin-3-1-authenticated-contributor-stored-cross-site-scripting-via-unset-attribute-vulnerability",
"https://patchstack.com/database/wordpress/plugin/ameliabooking/vulnerability/wordpress-amelia-booking-pro-plugin-9-1-2-authenticated-customer-insecure-direct-object-reference-to-arbitrary-user-password-change-vulnerability",
"https://patchstack.com/database/wordpress/plugin/conditional-menus/vulnerability/wordpress-conditional-menus-plugin-1-2-6-cross-site-request-forgery-to-menu-options-update-vulnerability",
"https://patchstack.com/database/wordpress/plugin/twentig/vulnerability/wordpress-twentig-plugin-1-9-7-authenticated-contributor-stored-cross-site-scripting-via-featuredimagesizewidth-vulnerability",
"https://patchstack.com/database/wordpress/plugin/learning-management-system/vulnerability/wordpress-masteriyo-lms-plugin-2-1-6-missing-authorization-to-authenticated-student-privilege-escalation-to-administrator-vulnerability",
"https://patchstack.com/database/wordpress/plugin/wp-job-portal/vulnerability/wordpress-wp-job-portal-plugin-2-4-9-authenticated-subscriber-arbitrary-file-deletion-via-resume-custom-file-field-vulnerability",
"https://patchstack.com/database/wordpress/plugin/sureforms/vulnerability/wordpress-sureforms-plugin-2-5-2-unauthenticated-payment-amount-validation-bypass-via-form-id-vulnerability",
"https://patchstack.com/database/wordpress/plugin/trx_addons/vulnerability/wordpress-themerex-addons-plugin-2-38-5-unauthenticated-arbitrary-file-upload-vulnerability",
"https://patchstack.com/database/wordpress/plugin/js-support-ticket/vulnerability/wordpress-js-help-desk-ai-powered-support-ticketing-system-plugin-3-0-4-unauthenticated-sql-injection-via-multiformid-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/truebooker-appointment-booking/vulnerability/wordpress-truebooker-appointment-booking-and-scheduler-plugin-plugin-1-1-4-sensitive-information-exposure-via-views-files-vulnerability",
"https://patchstack.com/database/wordpress/plugin/ibtana-visual-editor/vulnerability/wordpress-ibtana-wordpress-website-builder-plugin-1-2-5-7-authenticated-contributor-stored-cross-site-scripting-via-shortcode-vulnerability",
"https://patchstack.com/database/wordpress/plugin/debugger-troubleshooter/vulnerability/wordpress-debugger-troubleshooter-plugin-1-3-2-unauthenticated-privilege-escalation-to-administrator-via-cookie-manipulation-vulnerability",
"https://patchstack.com/database/wordpress/plugin/contact-form-by-supsystic/vulnerability/wordpress-contact-form-by-supsystic-plugin-1-7-36-unauthenticated-server-side-template-injection-via-prefill-functionality-vulnerability",
"https://patchstack.com/database/wordpress/plugin/shared-files/vulnerability/wordpress-shared-files-plugin-1-7-58-contributor-arbitrary-file-download-vulnerability",
"https://patchstack.com/database/wordpress/plugin/everest-forms-pro/vulnerability/wordpress-everest-forms-pro-plugin-1-9-12-unauthenticated-remote-code-execution-via-calculation-field-vulnerability",
"https://patchstack.com/database/wordpress/plugin/fluent-booking/vulnerability/wordpress-fluent-booking-plugin-2-0-01-unauthenticated-stored-cross-site-scripting-via-multiple-parameters-vulnerability",
"https://patchstack.com/database/wordpress/plugin/gravitysmtp/vulnerability/wordpress-gravity-smtp-plugin-2-1-4-unauthenticated-sensitive-information-exposure-via-rest-api-vulnerability",
"https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-38-authenticated-contributor-dom-based-stored-cross-site-scripting-via-multiple-widgets-vulnerability",
"https://patchstack.com/database/wordpress/plugin/performance-monitor/vulnerability/wordpress-performance-monitor-plugin-1-0-6-unauthenticated-blind-ssrf-vulnerability",
"https://patchstack.com/database/wordpress/plugin/contact-form-entries/vulnerability/wordpress-database-for-contact-form-7-wpforms-elementor-forms-plugin-1-4-9-missing-authorization-to-authenticated-contributor-sensitive-information-exposure-via-shortcode-vulnerability",
"https://patchstack.com/database/wordpress/plugin/auto-post-scheduler/vulnerability/wordpress-auto-post-scheduler-plugin-1-84-cross-site-request-forgery-to-stored-cross-site-scripting-via-aps-options-page-vulnerability",
"https://patchstack.com/database/wordpress/plugin/ameliabooking/vulnerability/wordpress-amelia-plugin-2-1-2-authenticated-manager-sql-injection-via-sort-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/minify-html-markup/vulnerability/wordpress-minify-html-plugin-2-1-12-cross-site-request-forgery-to-plugin-settings-update-vulnerability",
"https://patchstack.com/database/wordpress/plugin/kubio/vulnerability/wordpress-kubio-ai-page-builder-plugin-2-7-0-cross-site-scripting-xss-vulnerability",
"https://patchstack.com/database/wordpress/plugin/loco-translate/vulnerability/wordpress-loco-translate-plugin-2-8-2-reflected-cross-site-scripting-via-update-href-parameter-vulnerability",
"https://patchstack.com/database/wordpress/plugin/w3-total-cache/vulnerability/wordpress-w3-total-cache-plugin-2-9-3-unauthenticated-security-token-exposure-via-user-agent-header-vulnerability",
"https://patchstack.com/database/wordpress/plugin/woc-order-alert/vulnerability/wordpress-order-notification-for-woocommerce-plugin-3-6-3-unauthenticated-woocommerce-rest-permission-bypass-vulnerability",
"https://patchstack.com/database/wordpress/plugin/profile-builder/vulnerability/wordpress-user-profile-builder-beautiful-user-registration-forms-user-profiles-user-role-editor-plugin-3-15-5-insecure-direct-object-reference-to-authenticated-subscriber-arbitrary-post-author-reassignment-via-avatar-field-vulnerability"
],
"version_sync_status": "green",
"security_version_count": 55,
"last_version_synced_at": "2026-04-02T09:18:45+00:00",
"latest_version_evidence": [
"WPScan Vulnerability Database",
"Patchstack Database",
"WordPress Security News RSS"
],
"catalog_source": "",
"catalog_reason": "",
"auto_cataloged": false,
"last_discovered_at": "2025-04-09T00:30:58+00:00",
"last_synced_at": "2025-04-09T00:30:58+00:00",
"history_backfill_status": "complete",
"latest_sync_status": "green",
"official_source_covered": true,
"advisory_count": 140,
"workflow_complete_advisory_count": 140,
"version_mapped_advisory_count": 0,
"first_advisory_at": "2004-12-31T05:00:00+00:00",
"latest_advisory_at": "2025-04-09T00:30:58+00:00",
"advisory_ids": [
"wordpress--06006e9fb7",
"wordpress--06a219901c",
"wordpress--10d0d8f3f9",
"wordpress--1129617837",
"wordpress--12cc024a36",
"wordpress--12fca2abea",
"wordpress--13ce5128b4",
"wordpress--148b831760",
"wordpress--14cf81010e",
"wordpress--159a635b11",
"wordpress--17030a8718",
"wordpress--1c6aa83433",
"wordpress--213ff5c60e",
"wordpress--23d14ed85a",
"wordpress--2cd6936b0a",
"wordpress--2e850b3e28",
"wordpress--2fe5e39d3a",
"wordpress--3094ee5dd1",
"wordpress--30bd187991",
"wordpress--33d0089d9b",
"wordpress--37e9df8b25",
"wordpress--38e031b62a",
"wordpress--3f7222ce61",
"wordpress--490100c57e",
"wordpress--4dc1ee03ad",
"wordpress--57d5f9df5e",
"wordpress--58792b4ae0",
"wordpress--59276ee314",
"wordpress--59d89f1230",
"wordpress--5b7e6857ed",
"wordpress--5dd8f12e11",
"wordpress--5e0f0aa282",
"wordpress--5e2c6a493e",
"wordpress--5f95d49feb",
"wordpress--60c101bf41",
"wordpress--63066ed17e",
"wordpress--633cea0b87",
"wordpress--65236a70e8",
"wordpress--6850d32ee1",
"wordpress--69a8f91df1",
"wordpress--69bed74e7a",
"wordpress--6a726d41d8",
"wordpress--6d631adfc0",
"wordpress--6f46717425",
"wordpress--737216664c",
"wordpress--76d8cacd47",
"wordpress--79882b1d53",
"wordpress--7a096bdecd",
"wordpress--7a0d2f5c04",
"wordpress--80760b9e99",
"wordpress--8654fd6af7",
"wordpress--88079feb95",
"wordpress--8a3a3a86d7",
"wordpress--8aac20fdae",
"wordpress--8be181bdf7",
"wordpress--8f1d763e2e",
"wordpress--90ac8d52d0",
"wordpress--93ef1b52ba",
"wordpress--9a8ddc580f",
"wordpress--9afa4252ce",
"wordpress--9b87475497",
"wordpress--9cce67b3aa",
"wordpress--CVE-2004-1559",
"wordpress--CVE-2004-1584",
"wordpress--CVE-2005-1102",
"wordpress--CVE-2005-1687",
"wordpress--CVE-2005-1688",
"wordpress--CVE-2005-1810",
"wordpress--CVE-2005-1921",
"wordpress--CVE-2005-2107",
"wordpress--CVE-2005-2108",
"wordpress--CVE-2005-2109",
"wordpress--CVE-2005-2110",
"wordpress--CVE-2005-2612",
"wordpress--CVE-2005-3330",
"wordpress--CVE-2005-4463",
"wordpress--CVE-2006-0733",
"wordpress--CVE-2006-0985",
"wordpress--CVE-2006-0986",
"wordpress--CVE-2006-1012",
"wordpress--CVE-2006-1263",
"wordpress--CVE-2006-1796",
"wordpress--CVE-2006-2667",
"wordpress--CVE-2006-2702",
"wordpress--CVE-2006-3389",
"wordpress--CVE-2006-3390",
"wordpress--CVE-2006-4028",
"wordpress--CVE-2006-4208",
"wordpress--CVE-2006-4743",
"wordpress--CVE-2006-5705",
"wordpress--CVE-2006-6016",
"wordpress--CVE-2006-6017",
"wordpress--CVE-2006-6808",
"wordpress--CVE-2006-6863",
"wordpress--CVE-2007-0106",
"wordpress--CVE-2007-0107",
"wordpress--CVE-2007-0109",
"wordpress--CVE-2007-0233",
"wordpress--CVE-2007-0262",
"wordpress--CVE-2007-0539",
"wordpress--CVE-2007-0540",
"wordpress--CVE-2007-0541",
"wordpress--CVE-2007-1049",
"wordpress--CVE-2007-1230",
"wordpress--CVE-2007-1244",
"wordpress--CVE-2007-1277",
"wordpress--CVE-2007-1409",
"wordpress--CVE-2007-1599",
"wordpress--CVE-2007-1622",
"wordpress--CVE-2007-1732",
"wordpress--CVE-2007-1893",
"wordpress--CVE-2007-1894",
"wordpress--a4f0e68ab5",
"wordpress--af099a61a6",
"wordpress--af95f34447",
"wordpress--b467539b2c",
"wordpress--b481717d30",
"wordpress--b92a24e31a",
"wordpress--bbd4d9a5ed",
"wordpress--bc834bfe64",
"wordpress--c23a850ec3",
"wordpress--c346c10a12",
"wordpress--c3e95dab52",
"wordpress--c8dbf74c29",
"wordpress--cac928e94b",
"wordpress--d24a559b69",
"wordpress--d4a95ae26d",
"wordpress--da71cecbfb",
"wordpress--db166494f5",
"wordpress--dbc90eee65",
"wordpress--dc4426e2f6",
"wordpress--e61c231e8b",
"wordpress--e6d2a6b634",
"wordpress--eda217cbfb",
"wordpress--eddfccd91d",
"wordpress--ee42b86359",
"wordpress--ef12da29f9",
"wordpress--fea9c161bb",
"wordpress--feb9fe6fdd",
"wordpress--ffa886d3ac"
],
"source_refs": [
{
"name": "WordPress Security News RSS",
"url": "https://wordpress.org/news/category/security/feed/",
"kind": "rss-feed",
"status": "active",
"bucket": "official_sources",
"official": true
},
{
"name": "NVD WordPress",
"url": null,
"kind": "nvd-search",
"status": "retired",
"bucket": "official_sources",
"official": true
},
{
"name": "Wordfence Vulnerability Database",
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
},
{
"name": "Patchstack Database",
"url": "https://patchstack.com/database/",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
},
{
"name": "WPScan Vulnerability Database",
"url": "https://wpscan.com/blog/",
"kind": "html-links",
"status": "active",
"bucket": "ecosystem_sources",
"official": false
},
{
"name": "PortSwigger Research",
"url": "https://portswigger.net/research",
"kind": "html-links",
"status": "active",
"bucket": "research_sources",
"official": false
}
]
}
]
在新工单中引用 查看 Git Blame 复制永久链接