CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2026/01/29 9:21 p.m.•2 views

CVE-2026-24767

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.0, a blind Server-Side Request Forgery SSRF vulnerability exists in the uploadViaURL functionality due to an unprotected HEAD request. While the subsequent file retrieval logic correctly enforces SSRF protections, t...

6.4CVSS6AI score0.00015EPSS

Exploits1References1

Github Security Blog•added 2026/01/28 9:41 p.m.•9 views

NocoDB has Blind SSRF via Unvalidated HEAD Request in uploadViaURL Functionality

Summary A blind Server-Side Request Forgery SSRF vulnerability exists in the uploadViaURL functionality due to an unprotected HEAD request. While the subsequent file retrieval logic correctly enforces SSRF protections, the initial metadata request executes without validation. This allows limited...

6.4CVSS6AI score0.00015EPSS

Exploits1References3Affected Software1

ATTACKERKB•added 2026/01/28 8:29 p.m.•6 views

CVE-2026-24767

4.9CVSS5.9AI score0.00015EPSS

Exploits1References2Affected Software1

OSV•added 2026/01/28 8:29 p.m.•5 views

CVE-2026-24767 NocoDB has Blind SSRF via Unvalidated HEAD Request in uploadViaURL Functionality

4.9CVSS5.9AI score0.00015EPSS

Exploits1References3

Vulnrichment•added 2026/01/28 8:29 p.m.•2 views

CVE-2026-24767 NocoDB has Blind SSRF via Unvalidated HEAD Request in uploadViaURL Functionality

4.9CVSS5.9AI score0.00015EPSS

Exploits1References1

CNNVD•added 2026/01/28 12:0 a.m.•4 views

NocoDB code-related vulnerabilities

NocoDB is an open-source alternative to Airtable. It converts any MySQL, PostgreSQL, SQL Server, SQLite, and MariaDB databases into intelligent spreadsheets. Versions of NocoDB prior to 0.301.0 have code vulnerabilities; these vulnerabilities stem from a blind server-side request forgeing...

6.4CVSS6AI score0.00015EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by