Publish Advisories

GHSA-36xv-jgw5-4q75
GHSA-4ph2-f6pf-79wv
GHSA-4rx4-4r3x-6534
GHSA-693f-pf34-72c5
GHSA-cjg8-h5qc-hrjv
GHSA-hv3w-m4g2-5x77
GHSA-jfxc-v5g9-38xr
GHSA-jmrh-xmgh-x9j4
GHSA-r9x3-wx45-2v7f
GHSA-vpwc-v33q-mq89

Author: advisory-database[bot]

advisories/github-reviewed/2026/04/GHSA-36xv-jgw5-4q75/GHSA-36xv-jgw5-4q75.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-36xv-jgw5-4q75",
-  "modified": "2026-04-06T17:59:51Z",
+  "modified": "2026-04-07T22:09:36Z",
   "published": "2026-04-06T17:59:51Z",
   "aliases": [
     "CVE-2026-35515"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/nestjs/nest/security/advisories/GHSA-36xv-jgw5-4q75"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35515"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/nestjs/nest/pull/16686"
@@ -67,6 +71,6 @@
     "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T17:59:51Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T16:16:27Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-4ph2-f6pf-79wv/GHSA-4ph2-f6pf-79wv.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4ph2-f6pf-79wv",
-  "modified": "2026-04-06T23:08:55Z",
+  "modified": "2026-04-07T22:09:54Z",
   "published": "2026-04-06T23:08:55Z",
   "aliases": [
     "CVE-2026-39307"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-4ph2-f6pf-79wv"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39307"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/MervinPraison/PraisonAI"
@@ -54,11 +58,12 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-22",
       "CWE-23"
     ],
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T23:08:55Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T17:16:36Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-4rx4-4r3x-6534/GHSA-4rx4-4r3x-6534.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4rx4-4r3x-6534",
-  "modified": "2026-04-06T23:09:12Z",
+  "modified": "2026-04-07T22:10:07Z",
   "published": "2026-04-06T23:09:12Z",
   "aliases": [
     "CVE-2026-39306"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-4rx4-4r3x-6534"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39306"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/MervinPraison/PraisonAI"
@@ -59,6 +63,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T23:09:12Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T17:16:36Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-693f-pf34-72c5/GHSA-693f-pf34-72c5.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-693f-pf34-72c5",
-  "modified": "2026-04-06T23:09:28Z",
+  "modified": "2026-04-07T22:10:17Z",
   "published": "2026-04-06T23:09:28Z",
   "aliases": [
     "CVE-2026-35615"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-693f-pf34-72c5"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35615"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/MervinPraison/PraisonAI"
@@ -59,6 +63,6 @@
     "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T23:09:28Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T17:16:35Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-cjg8-h5qc-hrjv/GHSA-cjg8-h5qc-hrjv.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-cjg8-h5qc-hrjv",
-  "modified": "2026-04-06T17:55:14Z",
+  "modified": "2026-04-07T22:09:25Z",
   "published": "2026-04-06T17:55:14Z",
   "aliases": [
     "CVE-2026-35492"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/kedro-org/kedro-plugins/security/advisories/GHSA-cjg8-h5qc-hrjv"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35492"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/kedro-org/kedro/issues/5452"
@@ -68,6 +72,6 @@
     "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T17:55:14Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T16:16:27Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-hv3w-m4g2-5x77/GHSA-hv3w-m4g2-5x77.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-hv3w-m4g2-5x77",
-  "modified": "2026-04-06T18:00:29Z",
+  "modified": "2026-04-07T22:09:48Z",
   "published": "2026-04-06T18:00:29Z",
   "aliases": [
     "CVE-2026-35526"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/strawberry-graphql/strawberry/security/advisories/GHSA-hv3w-m4g2-5x77"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35526"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/strawberry-graphql/strawberry/commit/0977a4e6b41b7cfe3e9d8ba84a43458a2b0c54c2"
@@ -64,6 +68,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T18:00:29Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T16:16:28Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-jfxc-v5g9-38xr/GHSA-jfxc-v5g9-38xr.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-jfxc-v5g9-38xr",
-  "modified": "2026-04-06T23:09:03Z",
+  "modified": "2026-04-07T22:10:01Z",
   "published": "2026-04-06T23:09:03Z",
   "aliases": [
     "CVE-2026-39305"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-jfxc-v5g9-38xr"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39305"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/MervinPraison/PraisonAI"
@@ -53,10 +57,12 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-22"
+    ],
     "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T23:09:03Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T17:16:36Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-jmrh-xmgh-x9j4/GHSA-jmrh-xmgh-x9j4.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-jmrh-xmgh-x9j4",
-  "modified": "2026-04-06T18:00:01Z",
+  "modified": "2026-04-07T22:09:19Z",
   "published": "2026-04-06T18:00:01Z",
   "aliases": [
     "CVE-2026-35490"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-jmrh-xmgh-x9j4"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35490"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/commit/31a760c2147e3e73a403baf6d7de34dc50429c85"
@@ -63,6 +67,6 @@
     "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T18:00:01Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T16:16:27Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-r9x3-wx45-2v7f/GHSA-r9x3-wx45-2v7f.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-r9x3-wx45-2v7f",
-  "modified": "2026-04-06T23:09:19Z",
+  "modified": "2026-04-07T22:10:12Z",
   "published": "2026-04-06T23:09:19Z",
   "aliases": [
     "CVE-2026-39308"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-r9x3-wx45-2v7f"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39308"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/MervinPraison/PraisonAI"
@@ -59,6 +63,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T23:09:19Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T17:16:36Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-vpwc-v33q-mq89/GHSA-vpwc-v33q-mq89.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-vpwc-v33q-mq89",
-  "modified": "2026-04-06T18:00:26Z",
+  "modified": "2026-04-07T22:09:42Z",
   "published": "2026-04-06T18:00:26Z",
   "aliases": [
     "CVE-2026-35523"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/strawberry-graphql/strawberry/security/advisories/GHSA-vpwc-v33q-mq89"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35523"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/strawberry-graphql/strawberry/commit/0977a4e6b41b7cfe3e9d8ba84a43458a2b0c54c2"
@@ -63,6 +67,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-06T18:00:26Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-07T17:16:31Z"
   }
 }