CVE-2026-10706
The CVE-2026-10706 issue affects Adalo’s no‑code app builder (V1 and V2): the database API exposes complete user records via list requests due to missing ownership‑aware authorization checks, allowing authenticated users to retrieve data belonging to other applications. This enables cross‑applica...