Loading market data...
← Back to CVE feed

CVE-2026-47381

UNKNOWN View on NVD ↗

Description

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a user in one workspace could exercise another workspace's integration through the testConnection endpoint by supplying its ID, because the integration was fetched in a bypass scope and the caller's permission check matched any base in any workspace. This vulnerability is fixed in 2026.05.1.

Published: Jun 23, 2026 21:16 UTC Modified: Jun 24, 2026 16:16 UTC