Package impact
Go / github.com/nezhahq/nezha
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-46717 | high | — | 8.0 | 7d ago | Nezha Monitoring: RoleMember-reachable SSRF with full response-body reflection via POST /api/v1/notification | |||
| CVE-2026-47268 | unknown | — | — | 5h ago | Nezha's authenticated DDNS webhook configuration allows blind SSRF from the dashboard host |