Known Vulnerabilities for Yaml by Toddr
Listed below are 10 of the newest known vulnerabilities associated with "Yaml" by "Toddr".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-62314 json | Anubis is a Web AI Firewall Utility that challenges users' connections in order to protect upstream resources from scraper bo... | Not Provided | 2026-07-15 | 2026-07-16 |
| CVE-2026-62230 json | Grav before 2.0.4 ships a default .htaccess (and reference webserver-configs/htaccess.txt) whose rules blocking access to sen... | Not Provided | 2026-07-17 | 2026-07-17 |
| CVE-2026-61438 json | PraisonAI before 4.6.78 contains a remote code execution vulnerability in JobWorkflowExecutor._exec_inline_python() due to in... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-59870 json | js-yaml is a JavaScript YAML parser and dumper. From 5.0.0 before 5.2.1, YAML11_SCHEMA support for the !!omap tag in src/tag/... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-59869 json | js-yaml is a JavaScript YAML parser and dumper. From 3.0.0 before 3.15.0 and from 4.0.0 before 4.3.0, js-yaml can spend quadr... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59868 json | js-yaml is a JavaScript YAML parser and dumper. From 5.0.0 before 5.2.0, when merge keys are enabled, js-yaml can spend quadr... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59195 json | pnpm is a package manager. Prior to 10.34.4 and 11.8.0, pnpm accepts package names from the env lockfile configDependencies s... | Not Provided | 2026-07-06 | 2026-07-07 |
| CVE-2026-58493 json | grav-plugin-database is the database plugin for Grav CMS. Prior to 1.2.0, Database::__call builds PDO DSN strings by directly... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-58486 json | HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulne... | Not Provided | 2026-07-13 | 2026-07-14 |
| CVE-2026-57077 json | YAML::Syck versions before 1.47 for Perl allow an out-of-bounds read via an unbounded newline scan in newline_len. In the bu... | Not Provided | 2026-07-16 | 2026-07-17 |