Overview · PenguinMod/PenguinMod-BackendApi · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Report a vulnerability

NoSQL injection in password reset endpoint allows account takeover
GHSA-wwwc-jwrc-3pj8 published May 18, 2026 by Ianyourgod

High
Email is not unverified when changed
GHSA-gm9c-x349-wpf8 published Dec 29, 2025 by Ianyourgod

Moderate

Learn more about advisories related to PenguinMod/PenguinMod-BackendApi in the GitHub Advisory Database