Every CVE whose affected-product data names Vapor Leafkit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-37634 — CVSS 7.4 (high): Leafkit is a templating language with Swift-inspired syntax. Versions prior to 1.3.0 are susceptible to Cross-site Scripting (XSS) attacks…
CVE-2026-27120 — CVSS 6.1 (medium): Leafkit is a templating language with Swift-inspired syntax. Prior to 1.4.1, htmlEscaped in leaf-kit will only escape html special…
CVE-2026-28499 — CVSS 6.1 (medium): LeafKit is a templating language with Swift-inspired syntax. Prior to version 1.14.2, HTML escaping doesn't work correctly when a template…