Known Vulnerabilities for Environment by Yeoman
Listed below are 10 of the newest known vulnerabilities associated with "Environment" by "Yeoman".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58057 json | Flowise before 3.1.3 validates Custom MCP stdio environment variables against a denylist using a case-sensitive comparison, s... | Not Provided | 2026-06-28 | 2026-06-29 |
| CVE-2026-57231 json | Podman is a tool for managing OCI containers and pods. From 1.8.1 until 5.8.4, a container image that contains a environment ... | Not Provided | 2026-06-26 | 2026-06-27 |
| CVE-2026-56777 json | n8n before 2.25.7 and 2.26.x before 2.26.2 contains an abstract syntax tree (AST) security validator bypass in the Python Cod... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-56382 json | Craft CMS (composer package craftcms/cms) versions >= 5.5.0 and <= 5.9.13 contain a remote code execution vulnerability in th... | Not Provided | 2026-06-21 | 2026-06-22 |
| CVE-2026-56278 json | Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') for the express-... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-56269 json | Flowise before 3.1.0 (npm package flowise, versions 3.0.13 and earlier) uses a weak hardcoded default value 'Secre$t' for the... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-56076 json | PraisonAI before 1.5.128 contains a cross-origin agent execution vulnerability in the AGUI endpoint that allows remote attack... | Not Provided | 2026-06-18 | 2026-06-22 |
| CVE-2026-56075 json | PraisonAI before 4.5.128 contains an arbitrary shell command execution vulnerability where the UI modules hardcode approval_m... | Not Provided | 2026-06-18 | 2026-06-22 |
| CVE-2026-55994 json | Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor, Server-Side Request Forgery (SSRF) vul... | Not Provided | 2026-07-06 | 2026-07-06 |
| CVE-2026-55993 json | Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor, Server-Side Request Forgery (SSRF) vul... | Not Provided | 2026-07-06 | 2026-07-07 |