FLAT-KEW1L (CVE-2026-53931)
Server-side request forgery (SSRF) In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-B3POC (CVE-2026-53930)
Server-side request forgery (SSRF) In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-XYQ23 (CVE-2026-53929)
Server side cross-site scripting In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-K34JN (CVE-2026-53928)
Insecure session management In nocodb
1.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-PBHWG (CVE-2026-53927)
Server-side request forgery (SSRF) In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-6WNM6 (CVE-2026-53926)
Insecure session management In nocodb
1.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-DG3RK (CVE-2026-47388)
Improper authorization control for web services In nocodb
0.6
Low
Ecosystem: Npm
Package: nocodb
FLAT-XG7N6 (CVE-2026-47387)
Server side cross-site scripting In nocodb
5.8
Medium
Ecosystem: Npm
Package: nocodb
FLAT-L2MIY (CVE-2026-47386)
Race condition In nocodb
1.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-G1YUJ (CVE-2026-47385)
Lack of data validation - Path Traversal In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-DAPVT (CVE-2026-47384)
SQL injection - Code In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-4YDO0 (CVE-2026-47383)
Server side cross-site scripting In nocodb
4.5
Medium
Ecosystem: Npm
Package: nocodb
FLAT-MVPGI (CVE-2026-47382)
Server-side request forgery (SSRF) In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-1U2J2 (CVE-2026-47381)
Spoofing In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-E6PU5 (CVE-2026-47380)
Lack of protection against brute force attacks In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-MHZGO (CVE-2026-47379)
Sensitive information sent insecurely In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-TZSU3 (CVE-2026-47378)
Restricted fields manipulation In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-J8D0Q (CVE-2026-47377)
Uncontrolled external site redirect In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-H6D1R (CVE-2026-47376)
Reflected cross-site scripting (XSS) In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-XJ1DS (CVE-2026-47375)
SQL injection - Code In nocodb
4.1
Medium
Ecosystem: Npm
Package: nocodb
FLAT-S2NH5 (CVE-2026-47279)
Improper authorization control for web services In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-15ULX (CVE-2026-46554)
Insecure session management In nocodb
0.6
Low
Ecosystem: Npm
Package: nocodb
FLAT-K8303 (CVE-2026-46553)
Inadequate file size control In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-SY6F6 (CVE-2026-46552)
Improper authorization control for web services In nocodb
6.7
Medium
Ecosystem: Npm
Package: nocodb
FLAT-POA2T (CVE-2026-46551)
Inadequate file size control In nocodb
3.8
Low
Ecosystem: Npm
Package: nocodb
FLAT-Q0281 (CVE-2026-46550)
Insecurely generated cookies In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-V9YOX (CVE-2026-46549)
Authentication mechanism absence or evasion In nocodb
5.7
Medium
Ecosystem: Npm
Package: nocodb
FLAT-KDZ23 (CVE-2026-46548)
Server-side request forgery (SSRF) In nocodb
3.8
Low
Ecosystem: Npm
Package: nocodb
FLAT-KMQSG (CVE-2026-46547)
Reflected cross-site scripting (XSS) In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-0UI79 (CVE-2026-28401)
Server side cross-site scripting In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-4PNF0 (CVE-2026-28397)
Server side cross-site scripting In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-VFWKE (CVE-2026-28399)
SQL injection - Code In nocodb
6.2
Medium
Ecosystem: Npm
Package: nocodb
FLAT-1PXWG (CVE-2026-28398)
Server side cross-site scripting In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-RGQME (CVE-2026-28361)
Improper authorization control for web services In nocodb
4.9
Medium
Ecosystem: Npm
Package: nocodb
FLAT-R8C9O (CVE-2026-28396)
Insecure session management In nocodb
4.9
Medium
Ecosystem: Npm
Package: nocodb
FLAT-IHB8U (CVE-2026-28360)
Non-encrypted confidential information In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-I6YK3 (CVE-2026-28359)
Server side cross-site scripting In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-DXNLY (CVE-2026-28358)
User enumeration In nocodb
2.7
Low
Ecosystem: Npm
Package: nocodb
FLAT-DY5UV (CVE-2026-28357)
Server side cross-site scripting In nocodb
1.3
Low
Ecosystem: Npm
Package: nocodb
FLAT-LQM0V (CVE-2026-24766)
Prototype Pollution In nocodb
5.8
Medium
Ecosystem: Npm
Package: nocodb
FLAT-YYKJ2 (CVE-2026-24767)
Server-side request forgery (SSRF) In nocodb
0.6
Low
Ecosystem: Npm
Package: nocodb
FLAT-8W8RP (CVE-2026-24768)
Uncontrolled external site redirect In nocodb
4.9
Medium
Ecosystem: Npm
Package: nocodb
FLAT-JYCE3 (CVE-2026-24769)
Server side cross-site scripting In nocodb
7.6
High
Ecosystem: Npm
Package: nocodb
FLAT-CSMM2 (CVE-2025-27506)
Reflected cross-site scripting (XSS) In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-66IL4 (CVE-2023-49781)
Server side cross-site scripting In nocodb
6.0
Medium
Ecosystem: Npm
Package: nocodb
FLAT-H5NY8 (CVE-2023-50718)
SQL injection - Code In nocodb
6.0
Medium
Ecosystem: Npm
Package: nocodb
FLAT-8D9V4 (CVE-2023-50717)
Insecure file upload In nocodb
4.6
Medium
Ecosystem: Npm
Package: nocodb
FLAT-FR0BE (CVE-2023-43794)
NoSQL injection In nocodb
4.6
Medium
Ecosystem: Npm
Package: nocodb
FLAT-8TQ7N (CVE-2023-5104)
Lack of data validation In nocodb
4.9
Medium
Ecosystem: Npm
Package: nocodb
FLAT-WOCGK (CVE-2022-3423)
Asymmetric denial of service In nocodb
4.9
Medium
Ecosystem: Npm
Package: nocodb
FLAT-ELOER (CVE-2022-2079)
Server side cross-site scripting In nocodb
1.2
Low
Ecosystem: Npm
Package: nocodb
FLAT-OP8O8 (CVE-2022-2064)
Insecure session expiration time In nocodb
5.2
Medium
Ecosystem: Npm
Package: nocodb
FLAT-PRRWY (CVE-2022-2063)
Excessive privileges In nocodb
6.3
Medium
Ecosystem: Npm
Package: nocodb
FLAT-5OTW0 (CVE-2022-2062)
Technical information leak In nocodb
6.6
Medium
Ecosystem: Npm
Package: nocodb