Known Vulnerabilities for Developer by Automattic
Listed below are 10 of the newest known vulnerabilities associated with "Developer" by "Automattic".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-60089 json | PraisonAI (pip package praisonaiagents) before 1.6.78 automatically loads defaults from a project-local .praisonai/config.tom... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-59863 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, Kiota honored a poisoned .kiota/workspace.json workspa... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-58492 json | grav-plugin-database is the database plugin for Grav CMS. Prior to 1.2.0, the PDO::tableExists method interpolates its table ... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-55954 json | Authentication Bypass by Spoofing vulnerability in ueberauth ueberauth_apple allows account takeover via unvalidated ID token... | Not Provided | 2026-07-14 | 2026-07-15 |
| CVE-2026-55884 json | Tilt defines dev environments as code for microservice apps on Kubernetes. From 0.20.8 through 0.37.3, the Tilt HUD HTTP serv... | Not Provided | 2026-07-10 | 2026-07-15 |
| CVE-2026-55759 json | Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6... | Not Provided | 2026-06-24 | 2026-06-26 |
| CVE-2026-55697 json | pnpm is a package manager. Prior to 10.34.2 and 11.5.3, pnpm can install configDependencies declared in pnpm-workspace.yaml b... | Not Provided | 2026-06-25 | 2026-06-29 |
| CVE-2026-54753 json | Nx is a monorepo solution for TypeScript and polyglot codebases. From 17.0.4 until 22.7.2 and 23.0.0-beta.2, the local HTTP s... | Not Provided | 2026-06-26 | 2026-06-26 |
| CVE-2026-54557 json | mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install s... | Not Provided | 2026-06-26 | 2026-06-26 |
| CVE-2026-54502 json | Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.dump is vu... | Not Provided | 2026-07-01 | 2026-07-01 |