HAPI FHIR: Incomplete fix for CVE-2026-45367: DSTU2 FHIRPathEngine.matches() missing RegexTimeout protection allows ReDoS

handlebars.java FileTemplateLoader Path Traversal

Filament: Disabled RichEditor field state can be used for XSS

LangChain4j: SQL injection via metadata filters in langchain4j-mariadb and langchain4j-pgvector

Gitea: Stored XSS via glTF `extensionsRequired` in Gitea 3D File Viewer

Gitea: Public-only tokens bypass private-resource restrictions on `/api/v1/user` self routes

Gitea: API Fork Missing CanCreateOrgRepo Check Allows Org Secret Exfiltration

Open WebUI: SSRF Protection Bypass in Playwright Web Loader via HTTP Redirects

Open WebUI: Path traversal / SSRF in terminal server proxy via encoded path traversal

Open WebUI: Stored XSS to Account Takeover via Model Profile Images

Open WebUI: Forged model meta.knowledge allows cross-user file read and deletion

Open WebUI: Stored XSS in Mermaid Markdown Preview

Open WebUI: Forged chat-file link allows cross-user file read and deletion

Open WebUI: Redirect-Bypass SSRF in OAuth `_process_picture_url` (incomplete-fix sibling of CVE-2026-45401)

Open WebUI: Cross-origin postMessage confirmation bypass via action:submit

Pi Agent: Predictable temporary extension install paths allow local privilege escalation on shared Linux hosts

Gitea: Authorization Bypass via "Allow edits from maintainers" allows unauthorized commits to any readable repo

Gitea: OAuth2 access token scope enforcement bypass via HTTP Basic authentication

Gogs: Overwriting critical files results in a denial of service

Gitea: Git Smart HTTP Skips Repository Token Scopes for Bearer Tokens