Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
Go/github.com/xyproto/algernon — 7 CVEs · VulnScope
pkg:Go/
github.com/xyproto/algernon
7 total CVEs
CRITICAL
1
HIGH
1
MEDIUM
3
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
9.0
CVE-2026-45721
Algernon: handler.lua discovery walks parent directories above the server root
from 0, < 1.17.7
HIGH
7.5
CVE-2026-45728
Algernon: Single-file mode unconditionally enables debug mode
from 0, < 1.17.7
MEDIUM
6.1
CVE-2023-26131
Algernon engine and themes vulnerable to Cross-site Scripting
from 0, <= 1.15.2
MEDIUM
4.3
Algernon: Auto-refresh SSE event server sets Access-Control-Allow-Origin: *
from 0, < 1.17.7
MEDIUM
4.3
Algernon: Auto-refresh SSE event server binds to all interfaces by default on Linux/macOS
from 0, < 1.17.7
—
Algernon Cross-Site Scripting vulnerability in github.com/xyproto/algernon
from 0, < 1.17.5
—
Algernon Cross-Site Scripting vulnerability in github.com/xyproto/algernon
from 0, < 1.17.5
CVE-2026-46431
CVE-2026-46430
CVE-2025-65754
CVE-2025-65754