Lin-snow Ech0
3 CVEs affecting Lin-snow Ech0. Latest disclosed: 2026-04-06. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-35036 | High | 7.5 | 2026-04-06 | Ech0 is an open-source, self-hosted publishing platform for personal idea sharing. Prior to 4.2.8, Ech0 implements link preview (editor fetches a page title) t… |
CVE-2026-35037 | High | 7.2 | 2026-04-06 | Ech0 is an open-source, self-hosted publishing platform for personal idea sharing. Prior to 4.2.8, the GET /api/website/title endpoint accepts an arbitrary URL… |
CVE-2026-33638 | Medium | 5.3 | 2026-03-26 | Ech0 is an open-source, self-hosted publishing platform for personal idea sharing. Prior to version 4.2.0, `GET /api/allusers` is mounted as a public endpoint… |