Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/02/25 6:57 p.m.2 views

EUVD-2026-8646

Budibase: Remote Code Execution via Unsafe eval in View Filter Map Function Budibase Cloud...

9.9CVSS5.5AI score0.00098EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2026/02/25 6:57 p.m.5 views

Budibase: Remote Code Execution via Unsafe eval() in View Filter Map Function (Budibase Cloud)

Summary A critical unsafe eval vulnerability in Budibase's view filtering implementation allows any authenticated user including free tier accounts to execute arbitrary JavaScript code on the server. This vulnerability ONLY affects Budibase Cloud SaaS - self-hosted deployments use native CouchDB...

9.9CVSS6.4AI score0.00098EPSS
Exploits1References6Affected Software1
NVD
NVDadded 2026/02/25 4:23 p.m.2 views

CVE-2026-27702

Budibase is a low code platform for creating internal tools, workflows, and admin panels. Prior to version 3.30.4, an unsafe eval vulnerability in Budibase's view filtering implementation allows any authenticated user including free tier accounts to execute arbitrary JavaScript code on the server...

9.9CVSS0.00098EPSS
Exploits1References4
CVE
CVEadded 2026/02/25 3:11 p.m.6 views

CVE-2026-27702

Budibase Cloud (SaaS) is affected by an unsafe eval() vulnerability in the view filtering implementation prior to version 3.30.4. The issue resides in packages/server/src/db/inMemoryView.ts where user-controlled view map functions are directly evaluated without sanitization, enabling any authenti...

9.9CVSS6.2AI score0.00098EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2026/02/25 3:11 p.m.17 views

CVE-2026-27702 Budibase Vulnerable to Remote Code Execution via Unsafe eval() in View Filter Map Function (Budibase Cloud)

Budibase is a low code platform for creating internal tools, workflows, and admin panels. Prior to version 3.30.4, an unsafe eval vulnerability in Budibase's view filtering implementation allows any authenticated user including free tier accounts to execute arbitrary JavaScript code on the server...

9.9CVSS0.00098EPSS
Exploits1References4
OSV
OSVadded 2026/02/25 3:11 p.m.2 views

CVE-2026-27702 Budibase Vulnerable to Remote Code Execution via Unsafe eval() in View Filter Map Function (Budibase Cloud)

Budibase is a low code platform for creating internal tools, workflows, and admin panels. Prior to version 3.30.4, an unsafe eval vulnerability in Budibase's view filtering implementation allows any authenticated user including free tier accounts to execute arbitrary JavaScript code on the server...

9.9CVSS6.3AI score0.00098EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2026/02/25 12:0 a.m.4 views

PT-2026-21923

Name of the Vulnerable Software and Affected Versions Budibase versions prior to 3.30.4 Description Budibase, a low-code platform for creating internal tools, workflows, and admin panels, contains an unsafe eval vulnerability in its view filtering implementation. This issue affects Budibase Cloud...

9.9CVSS6.2AI score0.00098EPSS
Exploits1References14
Rows per page
Query Builder