Package impact
PyPI / strawberry-graphql
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-47707 | medium | 5.3 | 5.3 | 6h ago | Strawberry GraphQL's Bypass of MaxAliasesLimiter via Fragment Spreads leading to GraphQL Alias Amplification | |||
| CVE-2026-47706 | medium | 5.3 | 5.3 | 6h ago | Strawberry GraphQL has a Circular Fragment Reference DOS |