All 2 CVE vulnerabilities found in Anchorr, with AI-generated Chinese analysis, references, and POCs.
Vendor: openVESSL
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-32891 | Anchorr Privilege Escalation: Jellyseerr User → Anchorr Admin via Stored XSS CWE-80 | 9.1 | Critical | 2026-03-20 |
| CVE-2026-32890 | Anchorr: Stored XSS in User Mapping dropdown allows unprivileged Discord users to exfiltrate all secrets via /api/config CWE-79 | 9.7 | Critical | 2026-03-20 |
All 2 known CVE vulnerabilities affecting Anchorr with full Chinese analysis, references, and POCs where available.