Package impact
Go / github.com/gohugoio/hugo
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44301 | high | 8.1 | 8.1 | 22d ago | Hugo's Node tool execution allows file system access outside the project directory | |||
| CVE-2020-26284 | medium | — | 5.5 | 5y ago | Hugo is a fast and Flexible Static Site Generator built in Go. Hugo depends on Go's `os/exec` for certain features, e.g. for rendering of Pandoc documents if these binaries are found in the system `%… |