mindsdb vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-7711MediumMindsDB: MindsDB has an Improper Access Control IssueCVE-2026-27483Highmindsdb: MindsDB: Path Traversal in /api/files Leading to Remote Code ExecutionCVE-2026-2531LowMindsDB: MindsDB affected by a SSRF vulnerabilityCVE-2025-68472HighMindsDB: MindsDB has improper sanitation of filepath that leads to information disclosure and DOSCVE-2024-45854Highmindsdb: MindsDB Deserialization of Untrusted Data vulnerabilityCVE-2024-45856Mediummindsdb: MindsDB Cross-site Scripting vulnerabilityCVE-2024-45853Highmindsdb: MindsDB Deserialization of Untrusted Data vulnerabilityCVE-2024-45855Highmindsdb: MindsDB Deserialization of Untrusted Data vulnerabilityCVE-2024-45851Highmindsdb: MindsDB Eval Injection vulnerabilityCVE-2024-45852Highmindsdb: MindsDB Deserialization of Untrusted Data vulnerabilityCVE-2024-45847Highmindsdb: MindsDB Eval Injection vulnerabilityCVE-2024-45850Highmindsdb: MindsDB Eval Injection vulnerabilityCVE-2024-45846Highmindsdb: MindsDB Eval Injection vulnerabilityCVE-2024-45848Highmindsdb: MindsDB Eval Injection vulnerabilityCVE-2024-45849Highmindsdb: MindsDB Eval Injection vulnerabilityCVE-2024-24759Highmindsdb: MindsDB Vulnerable to Bypass of SSRF Protection with DNS RebindingCVE-2024-3575Mediummindsdb: Cross-site Scripting (XSS) in mindsdb/mindsdbCVE-2023-50731Highmindsdb: GitHub Security Lab (GHSL) Vulnerability Report: Arbitary write GHSL-2023-182 CVE-2023-49796Mediummindsdb: Improper Input Validation in mindsdbCVE-2023-49795Mediummindsdb: Server-Side Request Forgery in mindsdbCVE-2023-38699CriticalMindsDB: MindsDB can be made to not verify SSL certificatesCVE-2023-30620Highmindsdb: mindsdb arbitrary file write when extracting a remotely retrieved TarballCVE-2022-23522Mediummindsdb: Arbitrary file write in mindsdb when Extracting Tarballs retrieved from a remote location

Stop the waste.
Protect your environment with Kodem.