| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-32251 | Tolgee has an XXE Injection in Translation Import | tolgee | tolgee-platform | - | - | 2026-03-12 19:21:05 | Deep Dive |
| CVE-2024-52297 | Tolgee's configuration all configuration properties leaked in public configuration DTO | tolgee | tolgee-platform | Critical | 9.8 | 2024-11-12 15:54:30 | Deep Dive |
| CVE-2024-32470 | Tolgee' API keys created by server admin users bypass the permission check | tolgee | tolgee-platform | Medium | 6.5 | 2024-04-18 15:05:26 | Deep Dive |
| CVE-2024-32466 | Tolgee's API key scopes not checked when querying translation data | tolgee | tolgee-platform | Low | 2.7 | 2024-04-18 15:02:44 | Deep Dive |
| CVE-2023-41316 | HTML Injection with email in Tolgee | tolgee | tolgee-platform | Medium | 5.5 | 2023-09-07 19:39:08 | Deep Dive |
| CVE-2023-38510 | Tolgee Lacks Permission Check for API Key for some endpoints | tolgee | tolgee-platform | High | 8.1 | 2023-07-27 18:57:28 | Deep Dive |