Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

orval — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in orval, with AI-generated Chinese analysis, references, and POCs.

Vendor: orval-labs

CVE IDTitleCVSSSeverityPublished
CVE-2026-25141 Orval has a code injection via unsanitized x-enum-descriptions uing JS comments CWE-94 8.6AIHighAI2026-01-30
CVE-2026-24132 Orval Mock Generation Code Injection via const CWE-77 8.1 -2026-01-22
CVE-2026-23947 Orval MCP client is vulnerable to code injection via unsanitized x-enum-descriptions in enum generation CWE-77 10.0AICriticalAI2026-01-20
CVE-2026-22785 orval MCP client is vulnerable to a code injection attack. CWE-77 8.2AIHighAI2026-01-12

All 4 known CVE vulnerabilities affecting orval with full Chinese analysis, references, and POCs where available.