Freshface Fresh Framework vulnerabilities
2 known vulnerabilities affecting freshface/fresh_framework.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-26936P2CRITICALCVSS 10.0≤ 1.70.02025-03-10
CVE-2025-26936 [CRITICAL] CWE-94 CVE-2025-26936: Improper Control of Generation of Code ('Code Injection') vulnerability in FRESHFACE Fresh Framework
Improper Control of Generation of Code ('Code Injection') vulnerability in FRESHFACE Fresh Framework fresh-framework allows Code Injection.This issue affects Fresh Framework: from n/a through <= 1.70.0.
nvd
CVE-2025-26961P3HIGHCVSS 8.6≤ 1.70.02025-03-15
CVE-2025-26961 [HIGH] CWE-862 CVE-2025-26961: Missing Authorization vulnerability in FRESHFACE Fresh Framework fresh-framework allows Accessing Fu
Missing Authorization vulnerability in FRESHFACE Fresh Framework fresh-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Fresh Framework: from n/a through <= 1.70.0.
nvd