Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

tinacms — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting tinacms. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products tinacms:tinacms
CVE IDTitleCVSSSeverityPaused
CVE-2026-34603 @tinacms/graphql's Media Endpoints Can Escape the Media Root via Symlinks or Junctions — tinacmsCWE-22 7.1 High2026-04-01
CVE-2026-34604 @tinacms/graphql's `FilesystemBridge` Path Validation Can Be Bypassed via Symlinks or Junctions — tinacmsCWE-22 7.1 High2026-04-01
CVE-2026-33949 @tinacms/graphql has Path Traversal that leads to overwrite of arbitrary files — tinacmsCWE-22 8.1 High2026-04-01
CVE-2026-28791 Path Traversal in Media Upload Handle in Tina — tinacmsCWE-22 7.4 High2026-03-12
CVE-2025-68278 tinacms vulnerable to arbitrary code execution — tinacmsCWE-94 9.8AICriticalAI2025-12-18
CVE-2024-45391 Tina search token leak via lock file in TinaCMS — tinacmsCWE-200 7.5 High2024-09-03
CVE-2023-25164 Sensitive Information leak via Script File in TinaCMS — tinacmsCWE-532 8.6 High2023-02-08

This page lists every published CVE security advisory associated with tinacms. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.