MEDIUM5.9Litestar: AllowedHostsMiddleware bypasses host validation via client-controlled X-Forwarded-Host header
MEDIUM6.5vLLM's Artifact Pin Decay allows pinned deployments to load unpinned code, weights, and processors
MEDIUM5.4Authlib OAuth 2.0 has Open Redirect in Authorization API that allows attacker-controlled redirect_uri through unsupported response_type
MEDIUM4.3Bugsink: DOS using large numbers of event tags
MEDIUM4.3Bugsink: Project scoping missing in sourcemap and debug-file lookup
LOW3.1Bugsink: Issue bulk actions can affect another project’s issue if its UUID is known
LOW3.1Bugsink: Issue event views can show an event from another project if its UUID is known
CRITICAL9.1NASA AMMOS Instrument Toolkit: Path traversal resulting in arbitrary file append (can be triggered over the network by unauthenticated attacker)
MEDIUM6.5Authorization Bypass in SearchModelVersions in mlflow/mlflow
MEDIUM6.5Apache Airflow: revoke_token() unreachable in FabAuthManager / KeycloakAuthManager logout path
CRITICAL9.1Apache Airflow: BashOperator Jinja2 injection via dag_run.conf — low-privilege user pattern
MEDIUM4.3Apache Airflow: per-DAG RBAC bypass on /ui/partitioned_dag_runs endpoints
MEDIUM6.5Apache Airflow: Arbitrary File Read via Log Symlink following in FileTaskHandler
MEDIUM5.3Strawberry GraphQL's Bypass of MaxAliasesLimiter via Fragment Spreads leading to GraphQL Alias Amplification
MEDIUM5.3Strawberry GraphQL has a Circular Fragment Reference DOS
MEDIUM6.1WebOb: Location header normalization during redirect leads to open redirect - again