Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

268 New today
64,888 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

351
Jun 10
245
Jun 11
336
Jun 12
60
Jun 13
68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
250
Jun 23
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 5.1 CVE-2026-53927

NocoDB: Server-Side Request Forgery via Spreadsheet Fetch URL_CVE-2026-53927

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the spreadsheet-fetch endpoint (axiosRequestMake) accepted URLs whos...

nocodb nocodb < 2026.05.1 CVE
MEDIUM 6.3 CVE-2026-53926

NocoDB: OAuth Tokens Persist Through Security Events_CVE-2026-53926

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, revokeAllOAuthTokensByUser in the users service is an empty stub bei...

nocodb nocodb < 2026.05.1 CVE
LOW 2.3 CVE-2026-47388

NocoDB: Missing Ownership Check in MCP Attachment Read_CVE-2026-47388

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a low-privilege MCP token holder with knowledge of an attachment pat...

nocodb nocodb < 2026.05.1 CVE
HIGH 8.4 CVE-2026-47387

NocoDB: Stored Cross-Site Scripting via Form View Redirect URL_CVE-2026-47387

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the shared form-view submit handler (packages/nc-gui/composables/use...

nocodb nocodb < 2026.05.1 CVE
MEDIUM 6.3 CVE-2026-47386

NocoDB: OAuth Authorization Code Race Condition_CVE-2026-47386

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, two concurrent token-exchange requests using the same OAuth authoriz...

nocodb nocodb < 2026.05.1 CVE
MEDIUM 5.3 CVE-2026-47385

NocoDB: Path Traversal via SQLite Source Filename_CVE-2026-47385

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, an authenticated user with base-create permission can attach a SQLit...

nocodb nocodb < 2026.05.1 CVE
MEDIUM 5.3 CVE-2026-47384

NocoDB: SQL Injection via Column Title in Bulk GroupBy_CVE-2026-47384

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, an authenticated user with column-create permission can inject SQL i...

nocodb nocodb < 2026.05.1 CVE
HIGH 7.4 CVE-2026-47383

NocoDB: Stored Cross-Site Scripting via Row Comments_CVE-2026-47383

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, an authenticated commenter could store HTML in row comments that exe...

nocodb nocodb < 2026.05.1 CVE
MEDIUM 6.9 CVE-2026-47381

NocoDB: Cross-Workspace Integration Use in Connection Test_CVE-2026-47381

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a user in one workspace could exercise another workspace's integrati...

nocodb nocodb < 2026.05.1 CVE