Bugsink
This hub aggregates every CVE we track for Bugsink, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
1
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3LOW2MEDIUM2CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2
0
0
1
0
1
4
0
2024-072026-06
Latest CVEs
The 8 most recently published vulnerabilities affecting Bugsink.
- CVE-2026-47716Bugsink: Issue bulk actions can affect another project’s issue if its UUID is known3.1
- CVE-2026-47715Bugsink: Issue event views can show an event from another project if its UUID is known3.1
- CVE-2026-47728Bugsink: Project scoping missing in sourcemap and debug-file lookup4.3
- CVE-2026-44502Bugsink: SSRF bypass in `validate_webhook_url`4.3
- CVE-2026-40162Bugsink affected by authenticated arbitrary file write in artifactbundle/assemble7.1
- CVE-2026-27614Bugsink is vulnerable to Stored XSS via Pygments fallback in stacktrace rendering9.3
- CVE-2025-64509Bugsink vulnerable to unauthenticated remote DoS via crafted Brotli input (via CPU)7.5
- CVE-2025-64508Bugsink vulnerable to unauthenticated remote DoS via crafted Brotli input7.5
Product normalization is registry-driven with AI assist and human review. How it works