pkg:maven/org.openrefine/database
Type
maven
Namespace
org.openrefine
Name
database
Known advisories, vulnerabilities and fixes for org.openrefine/database package.
Critical
1
High
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 3.7.7 |
CVE-2024-23833
|
MAVEN:GHSA-6P92-QFQF-QWX4 | OpenRefine JDBC Attack Vulnerability | high |
2024-02-12T15:08:48
(7 months ago) |
|
Fixed | = 3.7.8 |
CVE-2024-23833
|
MAVEN:GHSA-6P92-QFQF-QWX4 | OpenRefine JDBC Attack Vulnerability | high |
2024-02-12T15:08:48
(7 months ago) |
|
Affected | <= 3.7.4 |
CVE-2023-41887
|
MAVEN:GHSA-P3R5-X3HR-GPG5 | OpenRefine Remote Code execution in project import with mysql jdbc url attack | critical |
2023-09-12T13:52:54
(12 months ago) |
|
Fixed | = 3.7.5 |
CVE-2023-41887
|
MAVEN:GHSA-P3R5-X3HR-GPG5 | OpenRefine Remote Code execution in project import with mysql jdbc url attack | critical |
2023-09-12T13:52:54
(12 months ago) |
|
Affected | <= 3.7.4 |
CVE-2023-41886
|
MAVEN:GHSA-QQH2-WVMV-H72M | OpenRefine vulnerable to arbitrary file read in project import with mysql jdbc url attack | high |
2023-09-12T13:52:05
(12 months ago) |
|
Fixed | = 3.7.5 |
CVE-2023-41886
|
MAVEN:GHSA-QQH2-WVMV-H72M | OpenRefine vulnerable to arbitrary file read in project import with mysql jdbc url attack | high |
2023-09-12T13:52:05
(12 months ago) |