VYPR

PyPI package

firefighter-incident

pkg:pypi/firefighter-incident

Vulnerabilities (1)

  • CVE-2026-42864CriMay 11, 2026
    affected < 0.0.54fixed 0.0.54

    FireFighter is an incident management application. Prior to 0.0.54, the POST /api/v2/firefighter/raid/jira_bot endpoint (CreateJiraBotView) is reachable without authentication (permission_classes = [permissions.AllowAny]). Its attachments payload is fetched server-side via httpx.