Vulnerabilities in OWASP-BLT

2 results

CVE-2026-40316HIGHOWASP BLT has RCE in Github Actions via untrusted Django model execution in workflowEPSS 0.4%CVE-2026-42603HIGHOWASP BLT: pre-commit-fix.yaml executes untrusted fork code via pull_request_targetEPSS 0.3%