Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

mindsdb — Vulnerabilities & Security Advisories 21

All 21 CVE vulnerabilities found in mindsdb, with AI-generated Chinese analysis, references, and POCs.

Vendor: mindsdb

CVE IDTitleCVSSSeverityPublished
CVE-2026-27483 MindsDB has Path Traversal in /api/files Leading to Remote Code Execution CWE-22 8.8 High2026-02-24
CVE-2026-2531 MindsDB File Upload security.py clear_filename server-side request forgery CWE-918 6.3 Medium2026-02-16
CVE-2025-68472 MindsDB has improper sanitation of filepath that leads to information disclosure and DOS CWE-22 8.1 High2026-01-12
CVE-2024-45856 MindsDB 安全漏洞 CWE-79 9.0 Critical2024-09-12
CVE-2024-45855 MindsDB 安全漏洞 CWE-502 7.1 High2024-09-12
CVE-2024-45854 MindsDB 安全漏洞 CWE-502 7.1 High2024-09-12
CVE-2024-45853 MindsDB 安全漏洞 CWE-502 7.1 High2024-09-12
CVE-2024-45852 MindsDB 安全漏洞 CWE-502 8.8 High2024-09-12
CVE-2024-45851 MindsDB 安全漏洞 CWE-95 8.8 High2024-09-12
CVE-2024-45850 MindsDB 安全漏洞 CWE-95 8.8 High2024-09-12
CVE-2024-45849 MindsDB 安全漏洞 CWE-95 8.8 High2024-09-12
CVE-2024-45848 MindsDB 安全漏洞 CWE-95 8.8 High2024-09-12
CVE-2024-45847 MindsDB 安全漏洞 CWE-95 8.8 High2024-09-12
CVE-2024-45846 MindsDB 安全漏洞 CWE-95 8.8 High2024-09-12
CVE-2024-24759 MindsDB Vulnerable to Bypass of SSRF Protection with DNS Rebinding CWE-918 9.3 Critical2024-09-05
CVE-2023-50731 MindsDB has arbitrary file write in file.py CWE-918 9.1 Critical2023-12-22
CVE-2023-49796 MindsDB Arbitrary File Write vulnerability CWE-20 5.3 Medium2023-12-11
CVE-2023-49795 MindsDB Server-Side Request Forgery vulnerability CWE-918 6.5 Medium2023-12-11
CVE-2023-38699 MindsDB 'Call to requests with verify=False disabling SSL certificate checks, security issue.' issue CWE-311 9.1 Critical2023-08-04
CVE-2023-30620 Arbitrary File Write when Extracting a Remotely retrieved Tarball in mindsdb/mindsdb CWE-22 7.5 High2023-04-21
CVE-2022-23522 Arbitrary File Write when Extracting Tarballs retrieved from a remote location using in mindsdb CWE-22 8.5 High2023-03-30

All 21 known CVE vulnerabilities affecting mindsdb with full Chinese analysis, references, and POCs where available.