Known Vulnerabilities for Workspaces by @turbo
Listed below are 10 of the newest known vulnerabilities associated with "Workspaces" by "@turbo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58653 json | PraisonAI before 0.1.7 fails to validate that project_id in issue create and update request bodies belongs to the URL workspa... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-56268 json | Flowise before 3.1.2 contains an information disclosure vulnerability in the /api/v1/chatflows/apikey/:apikey endpoint. When ... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-55611 json | AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. F... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-53819 json | OpenClaw before 2026.5.27 contains an arbitrary code execution vulnerability in skill install flows where workspace .env file... | Not Provided | 2026-06-11 | 2026-06-12 |
| CVE-2026-53813 json | OpenClaw before 2026.4.25 contains a path traversal vulnerability in memory-core artifact loading where workspace state influ... | Not Provided | 2026-06-11 | 2026-06-12 |
| CVE-2026-50137 json | Budibase is an open-source low-code platform. Prior to 3.39.0, an anonymous attacker who knows or can enumerate a workspace i... | Not Provided | 2026-06-26 | 2026-06-29 |
| CVE-2026-47713 json | AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. P... | Not Provided | 2026-05-28 | 2026-05-29 |
| CVE-2026-47388 json | NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a low-privilege MCP token holder with knowledg... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-47107 json | Windmill prior to 1.703.2 contains an incorrect default permissions vulnerability in nsjail sandbox configuration files where... | Not Provided | 2026-05-19 | 2026-05-19 |
| CVE-2026-46580 json | In Eclipse Theia versions prior to 1.71.0, files matching the pattern .prompts/*.prompttemplate in a workspace were automatic... | Not Provided | 2026-06-18 | 2026-06-19 |