VulnerableCode Package Details - pkg:npm/%40backstage/plugin-techdocs-node@1.6.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-44tf-rp9m-yqgm Aliases: CVE-2026-25152 GHSA-w669-jj7h-88m9	@backstage/plugin-techdocs-node vulnerable to possible Path Traversal in TechDocs Local Generator A path traversal vulnerability in the TechDocs local generator allows attackers to read arbitrary files from the host filesystem when Backstage is configured with `techdocs.generator.runIn: local`. When processing documentation from untrusted sources, symlinks within the docs directory are followed by MkDocs during the build process. File contents are embedded into generated HTML and exposed to users who can view the documentation.	1.13.11 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.14.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-a2ex-8at2-9yeu Aliases: CVE-2026-25153 GHSA-6jr7-99pf-8vgf	@backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks When TechDocs is configured with `runIn: local`, a malicious actor who can submit or modify a repository's `mkdocs.yml` file can execute arbitrary Python code on the TechDocs build server via MkDocs hooks configuration.	1.13.11 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.14.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-ufwu-evnv-pyfd Aliases: CVE-2026-29186 GHSA-928r-fm4v-mvrw	TechDocs Mkdocs Configuration Key Enables Arbitrary Code Execution This is a configuration bypass vulnerability that enables arbitrary code execution. The `@backstage/plugin-techdocs-node` package uses an allowlist to filter dangerous MkDocs configuration keys during the documentation build process. A gap in this allowlist allows attackers to craft an `mkdocs.yml` that causes arbitrary Python code execution, completely bypassing TechDocs' security controls.	1.14.3 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-44tf-rp9m-yqgm
Aliases:
CVE-2026-25152
GHSA-w669-jj7h-88m9

@backstage/plugin-techdocs-node vulnerable to possible Path Traversal in TechDocs Local Generator A path traversal vulnerability in the TechDocs local generator allows attackers to read arbitrary files from the host filesystem when Backstage is configured with `techdocs.generator.runIn: local`. When processing documentation from untrusted sources, symlinks within the docs directory are followed by MkDocs during the build process. File contents are embedded into generated HTML and exposed to users who can view the documentation.

1.13.11
Affected by 1 other vulnerability.

1.14.1
Affected by 1 other vulnerability.

VCID-a2ex-8at2-9yeu
Aliases:
CVE-2026-25153
GHSA-6jr7-99pf-8vgf

@backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks When TechDocs is configured with `runIn: local`, a malicious actor who can submit or modify a repository's `mkdocs.yml` file can execute arbitrary Python code on the TechDocs build server via MkDocs hooks configuration.

1.13.11
Affected by 1 other vulnerability.

1.14.1
Affected by 1 other vulnerability.

VCID-ufwu-evnv-pyfd
Aliases:
CVE-2026-29186
GHSA-928r-fm4v-mvrw

TechDocs Mkdocs Configuration Key Enables Arbitrary Code Execution This is a configuration bypass vulnerability that enables arbitrary code execution. The `@backstage/plugin-techdocs-node` package uses an allowlist to filter dangerous MkDocs configuration keys during the documentation build process. A gap in this allowlist allows attackers to craft an `mkdocs.yml` that causes arbitrary Python code execution, completely bypassing TechDocs' security controls.

1.14.3
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-06T07:13:20.645987+00:00	GitLab Importer	Affected by	VCID-ufwu-evnv-pyfd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@backstage/plugin-techdocs-node/CVE-2026-29186.yml	38.6.0
2026-06-06T06:47:29.347346+00:00	GitLab Importer	Affected by	VCID-a2ex-8at2-9yeu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@backstage/plugin-techdocs-node/CVE-2026-25153.yml	38.6.0
2026-06-06T06:47:21.750179+00:00	GitLab Importer	Affected by	VCID-44tf-rp9m-yqgm	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@backstage/plugin-techdocs-node/CVE-2026-25152.yml	38.6.0