fedify-dev Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by fedify-dev
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Fedify has an incomplete SSRF mitigation after GHSA-p9cg-vqcc-grcx: validatePublicUrl allows special-use IPv4 ranges
CVE-2026-50131Fedify-devFedify8.6HIGHFedify has an LD-Signature Bypass via JSON-LD Named-Graph Restructuring
CVE-2026-42462Fedify-devFedify7HIGHSecurity Flaw in Hollo Microblogging Software Exposes Private Messages
CVE-2026-25808Fedify-devHollo7.5HIGHReDoS Vulnerability in Fedify TypeScript Library for Federated Server Apps
CVE-2025-68475Fedify-devFedify7.5HIGHAuthentication Bypass in Fedify TypeScript Library Affects Multiple Versions
CVE-2025-54888Fedify-devFedify8.7HIGH