payload-puck — Vulnerabilities & Security Advisories 1

All 1 CVE vulnerabilities found in payload-puck, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-39397	@delmaredigital/payload-puc is missing authorization on /api/puck/* CRUD endpoints allows unauthenticated access to Puck-registered collections CWE-862	9.4	Critical	2026-04-07

All 1 known CVE vulnerabilities affecting payload-puck with full Chinese analysis, references, and POCs where available.