Vulnerabilidades em earendil-works

4 resultados

CVE-2026-54326LOWPi: Potential XSS in HTML session exports via Markdown URL sanitization bypassEPSS 0.1%CVE-2026-54325MEDIUMPi loads project-local extensions without approvalEPSS 0.1%CVE-2026-54328HIGHPi: Predictable temporary extension install paths allow local privilege escalation on shared Linux hostsEPSS 0.1%CVE-2026-54327LOWPi: Race condition in auth.json writes could expose stored credentialsEPSS 0.1%