To report a vulnerability, please open a private vulnerability report at https://github.com/HytaleModding/wiki/security or email us at hello@hytalemodding.dev
Security: HytaleModding/wiki
Security
SECURITY.md
-
Remote Code Execution via File Upload Bypass in `FileController`GHSA-2xqq-6778-h4j9 published
Mar 30, 2026 by ItsNeil17Critical -
Insecure Direct Object Reference / GDPR PII ExposureGHSA-xvq7-wwhx-x2fh published
Mar 13, 2026 by ItsNeil17Moderate
Learn more about advisories related to HytaleModding/wiki in the GitHub Advisory Database