Filter
Openrefine OpenrefineOpenRefine has a path traversal in LoadLanguageCommand
7.1
First published (updated )
maven/org.openrefine.dependencies:butterflyButterfly has path/URL confusion in resource handling leading to multiple weaknesses
9.1
First published (updated )
maven/org.openrefine:openrefineOpenRefine's error page lacks escaping, leading to potential Cross-site Scripting on import of malicious project
6.1
First published (updated )
maven/org.openrefine:databaseOpenRefine's SQLite integration allows filesystem access, remote code execution (RCE)
8.8
First published (updated )
Openrefine OpenrefineOpenRefine has a reflected cross-site scripting vulnerability from POST request in ExportRowsCommand
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.openrefine:mainOpenRefine's PreviewExpressionCommand, which is eval, lacks protection against cross-site request forgery (CSRF)
8.8
First published (updated )
Openrefine OpenrefineReflected cross-site scripting vulnerability (XSS) in GData extension (authorized.vt)
8.1
First published (updated )
Openrefine OpenrefineOpenRefine JDBC Attack Vulnerability
7.5
EPSS
0.04%
First published (updated )
maven/org.openrefine:databaseRemote Code exec in project import with mysql jdbc url attack
9.8
First published (updated )
maven/org.openrefine:databaseOpenRefine vulnerable to arbitrary file read in project import with mysql jdbc url attack
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.