Package impact
PyPI / lightrag-hku
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-39413 | medium | — | 5.5 | 2mo ago | lightrag-hku: JWT Algorithm Confusion Vulnerability | |||
| CVE-2026-30762 | unknown | — | — | 2mo ago | LightRAG: Hardcoded JWT Signing Secret Allows Authentication Bypass | |||
| CVE-2025-6773 | unknown | — | — | 11mo ago | HKUDS LightRAG allows Path Traversal via function upload_to_input_dir |