CVEs classified under CWE-777, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2026-40110 — CVSS 7.3 (high): Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the Origin header validation uses Python's…
CVE-2026-39087 — CVSS 6.4 (medium): ntfy before 2.22.0 allows SSRF because of an unanchored regular expression for web push endpoint URLs.