Lunary

This hub aggregates every CVE we track for Lunary, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Lunary.

• CVE-2024-5386Account Hijacking via Password Reset Token Leak in lunary-ai/lunary8.8Feb 2, 2026
• CVE-2024-4147Insufficient Access Control in lunary-ai/lunary6.5Feb 2, 2026
• CVE-2025-9803Improper Authentication in lunary-ai/lunary8.8Nov 25, 2025
• CVE-2025-5352Environment Variable XSS in Analytics Component in lunary-ai/lunary9.6Aug 23, 2025
• CVE-2025-4779Stored Cross-site Scripting (XSS) in lunary-ai/lunary6.1Jul 7, 2025
• CVE-2024-11300Improper Access Control in lunary-ai/lunary6.5Mar 20, 2025
• CVE-2024-10272Broken Access Control in lunary-ai/lunary7.5Mar 20, 2025
• CVE-2024-8998Regular Expression Denial of Service (ReDoS) in lunary-ai/lunary7.5Mar 20, 2025
• CVE-2025-0281Stored Cross-Site Scripting (XSS) in lunary-ai/lunary5.4Mar 20, 2025
• CVE-2024-8765Improper Path Equivalence Resolution in lunary-ai/lunary7.3Mar 20, 2025
• CVE-2024-9099Exposure of Private API Keys in lunary-ai/lunary8.1Mar 20, 2025
• CVE-2024-8789Regular Expression Denial of Service (ReDoS) in lunary-ai/lunary7.5Mar 20, 2025
• CVE-2024-10330Improper Access Control in lunary-ai/lunary6.5Mar 20, 2025
• CVE-2024-11301Improper Enforcement of Unique Constraint in lunary-ai/lunary6.5Mar 20, 2025
• CVE-2024-7476Broken Access Control in lunary-ai/lunary4.3Mar 20, 2025