Vulnerabilities in delmaredigital

1 result

CVE-2026-39397CRITICAL@delmaredigital/payload-puc is missing authorization on /api/puck/* CRUD endpoints allows unauthenticated access to Puck-registered collectionsEPSS 0.4%