Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
BIT-grafana-2026-33375
  • Bitnami/grafana
 Grafana MSSQL Data Source Plugin: Restriction Bypass Leading to OOM DoS 2 days ago
  • Fix available
  • Severity - 6.5 (Medium)
BIT-grafana-2026-28375
  • Bitnami/grafana
 Grafana Testdata datasource can issue unbounded memory allocations 2 days ago
  • Fix available
  • Severity - 6.5 (Medium)
BIT-grafana-2026-27880
  • Bitnami/grafana
 OpenFeature evaluation API reads input data with no bounds 2 days ago
  • Fix available
  • Severity - 7.5 (High)
BIT-grafana-2026-27879
  • Bitnami/grafana
 Query resampling can cause unbounded memory allocations 2 days ago
  • Fix available
  • Severity - 6.5 (Medium)
BIT-grafana-2026-27877
  • Bitnami/grafana
 Public dashboards discloses all direct mode datasources 2 days ago
  • Fix available
  • Severity - 7.5 (High)
BIT-grafana-2026-27876
  • Bitnami/grafana
 RCE on Grafana via sqlExpressions 2 days ago
  • Fix available
  • Severity - 9.1 (Critical)
BIT-appsmith-2026-34411
  • Bitnami/appsmith
 Appsmith < 1.98 Unauthenticated Instance Configuration Disclosure via Management APIs 2 days ago
  • Fix available
  • Severity - 6.9 (Medium)
BIT-gitlab-2026-2370
  • Bitnami/gitlab
 Improper Handling of Parameters in GitLab 3 days ago
  • Fix available
  • Severity - 8.8 (High)
BIT-mastodon-2026-33869
  • Bitnami/mastodon
 Mastodon has a denial of service for quote authorization 3 days ago
  • Fix available
  • Severity - 4.8 (Medium)
BIT-mastodon-2026-33868
  • Bitnami/mastodon
 Mastodon has a GET-Based Open Redirect via '/web/%2F<domain>' 3 days ago
  • Fix available
  • Severity - 6.1 (Medium)
BIT-prestashop-2026-33674
  • Bitnami/prestashop
 PrestaShop: Improper Use of Validation Framework 4 days ago
  • Fix available
  • Severity - 2.0 (Low)
BIT-prestashop-2026-33673
  • Bitnami/prestashop
 PrestaShop has multiple stored XSS vulnerabilities via unprotected Template variables 4 days ago
  • Fix available
  • Severity - 7.6 (High)
BIT-nats-2026-33249
  • Bitnami/nats
 NATS: Message tracing can be redirected to arbitrary subject 4 days ago
  • Fix available
  • Severity - 4.3 (Medium)
BIT-nats-2026-33248
  • Bitnami/nats
 NATS has mTLS verify_and_map authentication bypass via incorrect Subject DN matching 27 Mar
  • Fix available
  • Severity - 4.2 (Medium)
BIT-nats-2026-33247
  • Bitnami/nats
 NATS credentials are exposed in monitoring port via command-line argv 27 Mar
  • Fix available
  • Severity - 5.3 (Medium)
BIT-nats-2026-33246
  • Bitnami/nats
 NATS: Leafnode connections allow spoofing of Nats-Request-Info identity headers 27 Mar
  • Fix available
  • Severity - 5.4 (Medium)
Load more...