Vulnerabilidades em langfuse
4 resultadosCVE-2026-24055MEDIUMLangfuse Slack OAuth Installation Endpoint Lacks Authentication, Enabling Arbitrary Project LinkingEPSS 0.4%CVE-2025-64504MEDIUMLangfuse vulnerable to cross‑organization enumeration of member & invitation lists via project membership APIsEPSS 0.3%CVE-2026-41487MEDIUMLangfuse: Improper role-based-access control in Langfuse LLM connection management allowed users of role “member” to retrieve stored LLM provider API keysEPSS 0.2%CVE-2025-65107MEDIUMLangfuse SSO Account Takeover via CSRF or phishing attackEPSS 0.1%