github.com/portainer/portainer vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-44884Mediumgithub.com/portainer/portainer: Portainer missing authorization on custom template file endpoint, which exposes template contentCVE-2026-44883Highgithub.com/portainer/portainer: Portainer: JWT accepted in URL query leaks tokens to logs and referersCVE-2026-44849Criticalgithub.com/portainer/portainer: Portainer has an endpoint security bypass via Swarm service create/updateCVE-2026-44882Highgithub.com/portainer/portainer: Portainer's Kubernetes middleware continues after token validation failure, bypassing endpoint…CVE-2026-44881Highgithub.com/portainer/portainer: Portainer Has an Arbitrary File Read via Git Symlink Injection in Stack Auto-UpdateCVE-2026-44850Highgithub.com/portainer/portainer: Portainer has a bind-mount restriction bypass via HostConfig.MountsCVE-2026-44885Mediumgithub.com/portainer/portainer: Portainer has a path traversal in backup archive extraction that allows arbitrary file writeCVE-2026-44848Criticalgithub.com/portainer/portainer: Portainer missing authorization on Docker plugin endpoints, which allows host RCECVE-2024-33662Highgithub.com/portainer/portainer: Portainer improperly uses an encryption algorithm in the AesEncrypt function

Stop the waste.
Protect your environment with Kodem.