CVE-2026-48152

Budibase is an open-source low-code platform. Prior to 3.39.0, the single-datasource GET and PUT routes are guarded by generic TABLE READ, not by Builder/Admin permission or datasource-specific ownership/resource checks. The built-in Basic app user role maps to the WRITE permission set, which...

The vulnerability of an organization’s software for app compatibility with Rack and CORS allows a perpetrator to influence the integrity, confidentiality, and accessibility of information. This vulnerability is related to the improper use of standard permissions.

The vulnerability of an organization’s application compatibility with Rack applications and CORS Rack-cors is related to the improper use of standard permissions. Exploiting this vulnerability can allow attackers to influence the integrity, confidentiality, and accessibility of information...

The vulnerability of Google Chrome browser developer tools allows a hacker to compromise the integrity of the protected information.

The vulnerability of Google Chrome browser developer tools is related to errors in the use of standard permissions. Exploiting this vulnerability allows a malicious actor to compromise the integrity of protected information from a remote location...