Security: useplunk/plunk
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
CRLF Email Header Injection in raw MIME message construction allows authenticated API user to inject arbitrary email headersGHSA-2mvm-rg5v-7hfq published
Mar 31, 2026 by driaugHigh -
Stored Cross-Site Scripting (XSS) via SVG File UploadGHSA-69jg-7493-cx5x published
Mar 10, 2026 by driaugModerate -
SSRF via unvalidated AWS SNS SubscriptionConfirmation in POST /webhooks/snsGHSA-xpqg-p8mp-7g44 published
Mar 5, 2026 by driaugCritical -
Cross-project information disclosure via job status endpoints (IDOR)GHSA-w4xp-395x-725j published
Feb 19, 2026 by driaugModerate
Learn more about advisories related to useplunk/plunk in the GitHub Advisory Database