From 2a1aaaa127751094fd10fe0a914222c73e41c589 Mon Sep 17 00:00:00 2001 From: cookesan <6601329+cookesan@users.noreply.github.com> Date: Mon, 29 Jun 2026 08:03:40 -0400 Subject: [PATCH 1/2] Add TinaCMS postMessage fix references --- .../06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json b/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json index dfbf99ac1c728..b9fccd96425f7 100644 --- a/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json +++ b/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json @@ -63,9 +63,21 @@ "type": "WEB", "url": "https://github.com/tinacms/tinacms/pull/7056" }, + { + "type": "WEB", + "url": "https://github.com/tinacms/tinacms/commit/c491fc55e612725f5d775eeb1fdf3f8ba82314fa" + }, { "type": "PACKAGE", "url": "https://github.com/tinacms/tinacms" + }, + { + "type": "WEB", + "url": "https://github.com/tinacms/tinacms/releases/tag/tinacms@3.9.3" + }, + { + "type": "WEB", + "url": "https://github.com/tinacms/tinacms/releases/tag/%40tinacms/app%402.5.6" } ], "database_specific": { From 875d14e93849bb261c57638850333cebf5029efc Mon Sep 17 00:00:00 2001 From: cookesan <6601329+cookesan@users.noreply.github.com> Date: Wed, 8 Jul 2026 02:42:16 -0400 Subject: [PATCH 2/2] Add TinaCMS postMessage NVD reference --- .../2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json b/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json index b9fccd96425f7..1206784921be3 100644 --- a/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json +++ b/advisories/github-reviewed/2026/06/GHSA-g5qx-h5f3-mp2f/GHSA-g5qx-h5f3-mp2f.json @@ -59,6 +59,10 @@ "type": "WEB", "url": "https://github.com/tinacms/tinacms/security/advisories/GHSA-g5qx-h5f3-mp2f" }, + { + "type": "ADVISORY", + "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-55660" + }, { "type": "WEB", "url": "https://github.com/tinacms/tinacms/pull/7056" @@ -90,6 +94,6 @@ "severity": "HIGH", "github_reviewed": true, "github_reviewed_at": "2026-06-19T21:15:29Z", - "nvd_published_at": null + "nvd_published_at": "2026-07-01T21:17:03Z" } -} \ No newline at end of file +}