pkg:maven/org.openrefine/database
Type
maven
Namespace
org.openrefine
Name
database
Known advisories, vulnerabilities and fixes for org.openrefine/database package.
Critical
1
High
2
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 3.7.7 |
CVE-2024-23833
|
 MAVEN:GHSA-6P92-QFQF-QWX4
|
OpenRefine JDBC Attack Vulnerability | high |
2024-02-12T15:08:48
(7 months ago) |
|
| Fixed | = 3.7.8 |
CVE-2024-23833
|
MAVEN:GHSA-6P92-QFQF-QWX4
|
OpenRefine JDBC Attack Vulnerability | high |
2024-02-12T15:08:48
(7 months ago) |
|
| Affected | <= 3.7.4 |
CVE-2023-41887
|
MAVEN:GHSA-P3R5-X3HR-GPG5
|
OpenRefine Remote Code execution in project import with mysql jdbc url attack | critical |
2023-09-12T13:52:54
(12 months ago) |
|
| Fixed | = 3.7.5 |
CVE-2023-41887
|
MAVEN:GHSA-P3R5-X3HR-GPG5
|
OpenRefine Remote Code execution in project import with mysql jdbc url attack | critical |
2023-09-12T13:52:54
(12 months ago) |
|
| Affected | <= 3.7.4 |
CVE-2023-41886
|
MAVEN:GHSA-QQH2-WVMV-H72M
|
OpenRefine vulnerable to arbitrary file read in project import with mysql jdbc url attack | high |
2023-09-12T13:52:05
(12 months ago) |
|
| Fixed | = 3.7.5 |
CVE-2023-41886
|
MAVEN:GHSA-QQH2-WVMV-H72M
|
OpenRefine vulnerable to arbitrary file read in project import with mysql jdbc url attack | high |
2023-09-12T13:52:05
(12 months ago) |