Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-31938 |
|
Cross-Site Scripting (XSS) in parall (CVE-2026-31938)
cross-site scripting in parall (CVE-2026-31938). Confidential information can be exposed externally. Exploitable via ``options``.
|
| CVE-2026-31898 |
|
Vulnerability in parall (CVE-2026-31898)
vulnerability in parall (CVE-2026-31898). Confidential information can be exposed externally. Exploitable via ``createAnnotation``.
|
| CVE-2026-25940 |
|
Vulnerability in parall (CVE-2026-25940)
vulnerability in parall (CVE-2026-25940). Confidential information can be exposed externally.
|
| CVE-2026-25535 |
|
Vulnerability in dos (CVE-2026-25535)
vulnerability in dos (CVE-2026-25535). Risk of unauthorized operations or information disclosure. Exploitable via ``addImage``.
|
| CVE-2026-25755 |
|
Code Injection in parall (CVE-2026-25755)
code injection in parall (CVE-2026-25755). Confidential information can be exposed externally. Exploitable via ``addJS``.
|
| CVE-2026-24737 |
|
Vulnerability in parall (CVE-2026-24737)
vulnerability in parall (CVE-2026-24737). Confidential information can be exposed externally.
|
| CVE-2025-68428 |
|
Vulnerability in path-traversal (CVE-2025-68428)
vulnerability in path-traversal (CVE-2025-68428). Confidential information can be exposed externally. Exploitable via ``addImage``.
|