Package impact
Go / github.com/xyproto/algernon
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-45721 | critical | 9.0 | 9.0 | 4d ago | Algernon: handler.lua discovery walks parent directories above the server root | |||
| CVE-2026-46431 | medium | 4.3 | 4.3 | 4d ago | Algernon: Auto-refresh SSE event server sets Access-Control-Allow-Origin: * | |||
| CVE-2026-46430 | medium | 4.3 | 4.3 | 4d ago | Algernon: Auto-refresh SSE event server binds to all interfaces by default on Linux/macOS |