11 Total advisories
10 Vulnerabilities
1 Malware
Malware Advisories
Vulnerabilities
MEDIUM 5.3
CVE-2026-47706
Strawberry GraphQL has a Circular Fragment Reference DOS
MEDIUM 5.3
CVE-2026-47707
Strawberry GraphQL's Bypass of MaxAliasesLimiter via Fragment Spreads leading to GraphQL Alias Amplification
LOW 3.1
CVE-2026-45739
Strawberry GraphQL: Default GraphiQL may expose HTTP headers in URLs
HIGH 7.5
CVE-2026-35523
strawberry-graphql: Authentication bypass via legacy graphql-ws WebSocket subprotocol
HIGH 7.5
CVE-2026-35526
strawberry-graphql: Denial of Service via unbounded WebSocket subscriptions
HIGH 7.5
CVE-2026-35526
CVE-2026-35526
HIGH 7.5
CVE-2026-35523
CVE-2026-35523
MEDIUM 4.6
CVE-2024-47082
Cross-Site Request Forgery (CSRF) in strawberry-graphql
HIGH 8.0
CVE-2024-47082
CVE-2024-47082
LOW 3.7
CVE-2025-22151
Strawberry GraphQL has type resolution vulnerability in node interface that allows potential data leakage through incorrect type resolution
Ready to move
Start Securing
Free, no credit card | First findings in minutes