All 2 CVE vulnerabilities found in allure2, with AI-generated Chinese analysis, references, and POCs.
Vendor: allure-framework
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33166 | Allure Report has an Arbitrary File Read via Path Traversal in Attachment Processing (Allure 1, Allure 2, and XCTest Readers) CWE-22 | 8.6 | High | 2026-03-20 |
| CVE-2025-52888 | Allure 2's xunit-xml-plugin Vulnerable to Improper XXE Restriction CWE-611 | 7.5 | High | 2025-06-24 |
All 2 known CVE vulnerabilities affecting allure2 with full Chinese analysis, references, and POCs where available.