{"id":"CLEANSTART-2026-IL36032","summary":"Security fixes for CVE-2025-30218, CVE-2025-49005, CVE-2025-65945, ghsa-2mjp-6q6p-2qxm, ghsa-33vc-wfww-vjfv, ghsa-43fc-jf86-j433, ghsa-4992-7rv2-5pvq, ghsa-4hjh-wcwx-xvwj, ghsa-554w-wpv2-vw27, ghsa-5gfm-wpxj-wjgq, ghsa-5jpx-9hw9-2fx4, ghsa-65ch-62r8-g69g, ghsa-869p-cjfg-cm3x, ghsa-968p-4wvh-cqc8, ghsa-9g9p-9gw9-jx7f, ghsa-9qr9-h5gf-34mp, ghsa-f269-vfmq-vjvj, ghsa-fjxv-7rqg-78g4, ghsa-g9mf-h72j-4rw9, ghsa-h25m-26qc-wcjf, ghsa-jmr7-xgp7-cmfj, ghsa-m7jm-9gc2-mpf2, ghsa-mwv6-3258-q52c, ghsa-rcmh-qjqh-p98v, ghsa-v9p9-hfj2-hcw8, ghsa-vrm6-8vpv-qv8q, ghsa-w37m-7fhw-fmv9, ghsa-xxjr-mmjv-4gpg applied in versions: 2.11.0-r0, 2.11.0-r2","details":"Multiple security vulnerabilities affect the jitsucom-jitsu package. These issues are resolved in later releases. See references for individual vulnerability details.","modified":"2026-04-01T18:48:51.129496Z","published":"2026-04-01T09:39:16.823043Z","upstream":["CVE-2025-30218","CVE-2025-49005","CVE-2025-65945","ghsa-2mjp-6q6p-2qxm","ghsa-33vc-wfww-vjfv","ghsa-43fc-jf86-j433","ghsa-4992-7rv2-5pvq","ghsa-4hjh-wcwx-xvwj","ghsa-554w-wpv2-vw27","ghsa-5gfm-wpxj-wjgq","ghsa-5jpx-9hw9-2fx4","ghsa-65ch-62r8-g69g","ghsa-869p-cjfg-cm3x","ghsa-968p-4wvh-cqc8","ghsa-9g9p-9gw9-jx7f","ghsa-9qr9-h5gf-34mp","ghsa-f269-vfmq-vjvj","ghsa-fjxv-7rqg-78g4","ghsa-g9mf-h72j-4rw9","ghsa-h25m-26qc-wcjf","ghsa-jmr7-xgp7-cmfj","ghsa-m7jm-9gc2-mpf2","ghsa-mwv6-3258-q52c","ghsa-rcmh-qjqh-p98v","ghsa-v9p9-hfj2-hcw8","ghsa-vrm6-8vpv-qv8q","ghsa-w37m-7fhw-fmv9","ghsa-xxjr-mmjv-4gpg"],"database_specific":{},"references":[{"type":"ADVISORY","url":"https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-IL36032.json"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-30218"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-49005"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-65945"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-2mjp-6q6p-2qxm"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-33vc-wfww-vjfv"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-43fc-jf86-j433"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-4992-7rv2-5pvq"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-4hjh-wcwx-xvwj"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-554w-wpv2-vw27"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-5gfm-wpxj-wjgq"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-5jpx-9hw9-2fx4"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-65ch-62r8-g69g"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-869p-cjfg-cm3x"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-968p-4wvh-cqc8"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-9g9p-9gw9-jx7f"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-9qr9-h5gf-34mp"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-f269-vfmq-vjvj"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-fjxv-7rqg-78g4"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-g9mf-h72j-4rw9"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-h25m-26qc-wcjf"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-jmr7-xgp7-cmfj"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-m7jm-9gc2-mpf2"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-mwv6-3258-q52c"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-rcmh-qjqh-p98v"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-v9p9-hfj2-hcw8"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-vrm6-8vpv-qv8q"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-w37m-7fhw-fmv9"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-xxjr-mmjv-4gpg"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-30218"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49005"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-65945"}],"affected":[{"package":{"name":"jitsucom-jitsu","ecosystem":"CleanStart"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.11.0-r2"}]}],"database_specific":{"source":"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-IL36032.json"}}],"schema_version":"1.7.5"}