nocodb

Insufficient Session Expiration in NocoDB

NocoDB has Unvalidated Redirect in Login Flow via continueAfterSignIn Parameter

nocodb SQL Injection vulnerability

NocoDB information disclosure vulnerability

NocoDB Vulnerable to Stored Cross-Site Scripting via Comments and Rich Text Cells

NocoDB has Stored Cross-site Scripting via Formula Cell

NocoDB Vulnerable to SQL Injection via DATEADD Formula

NocoDB has Prototype Pollution in Connection Test Endpoint, Leading to DoS

Cross-site Scripting in NocoDB

NocoDB Missing Ownership Validation in MCP Token Operations

NocoDB has Blind SSRF via Unvalidated HEAD Request in uploadViaURL Functionality

Improper Input Validation in nocodb

NocoDB Vulnerable to User Enumeration via Password Reset Endpoint

Improper Privilege Management in NocoDB

NocoDB vulnerable to Denial of Service

NocoDB has Plaintext Storage of Shared View Passwords

NocoDB Vulnerable to Stored Cross-Site Scripting via SVG upload

NocoDB Vulnerable to Stored Cross-site Scripting via Rich Text Field

NocoDB Vulnerable to Stored Cross-Site Scripting via Rich Text Cells

NocoDB Vulnerable to Stored Cross-site Scripting via Comments

NocoDB's Refresh Tokens Not Revoked on Password Reset