Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openrefine openrefine vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-23833
OpenRefine is a free, open source power tool for working with messy data and improving it. A jdbc attack vulnerability exists in OpenRefine(version<=3.7.7) where an attacker may construct a JDBC query which may read files on the host filesystem. Due to the newer MySQL driver l...
NA
CVE-2023-41886
OpenRefine is a powerful free, open source tool for working with messy data. Prior to version 3.7.5, an arbitrary file read vulnerability allows any unauthenticated user to read a file on a server. Version 3.7.5 fixes this issue.
Openrefine Openrefine
NA
CVE-2023-41887
OpenRefine is a powerful free, open source tool for working with messy data. Prior to version 3.7.5, a remote code execution vulnerability allows any unauthenticated user to execute code on the server. Version 3.7.5 has a patch for this issue.
Openrefine Openrefine
NA
CVE-2022-41401
OpenRefine <= v3.5.2 contains a Server-Side Request Forgery (SSRF) vulnerability, which permits unauthorized users to exploit the system, potentially leading to unauthorized access to internal resources and sensitive file disclosure.
Openrefine Openrefine
NA
CVE-2023-37476
OpenRefine is a free, open source tool for data processing. A carefully crafted malicious OpenRefine project tar file can be used to trigger arbitrary code execution in the context of the OpenRefine process if a user can be convinced to import it. The vulnerability exists in all...
Openrefine Openrefine
445
VMScore
CVE-2019-3580
OpenRefine up to and including 3.1 allows arbitrary file write because Directory Traversal can occur during the import of a crafted project file.
Openrefine Openrefine
445
VMScore
CVE-2018-20157
The data import functionality in OpenRefine up to and including 3.1 allows an XML External Entity (XXE) attack through a crafted (zip) file, allowing malicious users to read arbitrary files.
Openrefine Openrefine
356
VMScore
CVE-2018-19859
OpenRefine prior to 3.2 beta allows directory traversal via a relative pathname in a ZIP archive.
Openrefine Openrefine 3.0
Openrefine Openrefine 2.7
Openrefine Openrefine 2.6
Openrefine Openrefine 1.0.5
Openrefine Openrefine 1.0.7
Openrefine Openrefine 2.0
Openrefine Openrefine 2.5
Openrefine Openrefine 1.0
Openrefine Openrefine 2.8
Openrefine Openrefine 3.1
Openrefine Openrefine 2.1
Openrefine Openrefine 1.0.1
Openrefine Openrefine 1.0.2
Openrefine Openrefine 1.0.3
Openrefine Openrefine 1.0.6
Openrefine Openrefine 1.1
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started