code16/sharp Security Advisories for v6.1.2 (4)
-
[HIGH] Sharp is Vulnerable to Path Traversal via Unsanitized Extension in FileUtil
PKSA-48kw-4xx3-wpfb CVE-2026-33686 GHSA-9ffq-6457-8958
Affected version: <9.20.0
Reported by:
GitHub -
[HIGH] Sharp has Unrestricted File Upload via Client-Controlled Validation Rules
PKSA-74vs-2hzw-xc7y CVE-2026-33687 GHSA-fr76-5637-w3g9
Affected version: <9.20.0
Reported by:
GitHub -
[MEDIUM] Sharp user-provided input can be evaluated in a SharpShowTextField with Vue template syntax
PKSA-w3x4-3yd5-pjjx CVE-2025-62798 GHSA-9f58-4465-23c7
Affected version: <9.11.1
Reported by:
GitHub -
[MEDIUM] code16 Sharp vulnerable to Cross Site Scripting (XSS)
PKSA-9m12-t4dn-mzg2 CVE-2025-61457 GHSA-9778-v769-qvjf
Affected version: <9.7.0
Reported by:
GitHub