Known Vulnerabilities for User Role by Bestwebsoft
Listed below are 3 of the newest known vulnerabilities associated with "User Role" by "Bestwebsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41267 json | Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, an improper mass ass... | Not Provided | 2026-04-23 | 2026-04-23 |
| CVE-2026-41167 json | Jellystat is a free and open source Statistics App for Jellyfin. Prior to version 1.1.10, multiple API endpoints in Jellystat... | Not Provided | 2026-04-22 | 2026-04-23 |
| CVE-2026-41133 json | pyLoad is a free and open-source download manager written in Python. Versions up to and including 0.5.0b3.dev97 cache `role` ... | Not Provided | 2026-04-22 | 2026-04-22 |
| CVE-2026-40926 json | WWBN AVideo is an open source video platform. In versions 29.0 and prior, three admin-only JSON endpoints — `objects/catego... | Not Provided | 2026-04-21 | 2026-04-22 |
| CVE-2026-40888 json | Frappe HR is an open-source human resources management solution (HRMS). Prior to versions 15.58.1 and 16.4.1, an authenticate... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-40486 json | Kimai is an open-source time tracking application. In versions 2.52.0 and below, the User Preferences API endpoint (PATCH /ap... | Not Provided | 2026-04-17 | 2026-04-20 |
| CVE-2026-39961 json | Aiven Operator allows you to provision and manage Aiven Services from your Kubernetes cluster. From 0.31.0 to before 0.37.0, ... | Not Provided | 2026-04-09 | 2026-04-10 |
| CVE-2026-39946 json | OpenBao is an open source identity-based secrets management system. Prior to version 2.5.3, when OpenBao revoked privileges o... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-39842 json | OpenRemote is an open-source IoT platform. Versions 1.21.0 and below contain two interrelated expression injection vulnerabil... | Not Provided | 2026-04-15 | 2026-04-16 |
| CVE-2026-39340 json | ChurchCRM is an open-source church management system. Prior to 7.1.0, a SQL injection vulnerability exists in PropertyTypeEdi... | Not Provided | 2026-04-07 | 2026-04-08 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Bestwebsoft | User Role | 1.6.1 | |||
| Application | Bestwebsoft | User Role | 1.6.0 | |||
| Application | Bestwebsoft | User Role | 1.5.9 | |||
| Application | Bestwebsoft | User Role | 1.5.8 | |||
| Application | Bestwebsoft | User Role | 1.5.7 | |||
| Application | Bestwebsoft | User Role | 1.5.6 | |||
| Application | Bestwebsoft | User Role | 1.5.5 | |||
| Application | Bestwebsoft | User Role | 1.5.4 | |||
| Application | Bestwebsoft | User Role | 1.5.3 | |||
| Application | Bestwebsoft | User Role | 1.5.2 | |||
| Application | Bestwebsoft | User Role | 1.5.1 | |||
| Application | Bestwebsoft | User Role | 1.5.0 | |||
| Application | Bestwebsoft | User Role | 1.4.9 | |||
| Application | Bestwebsoft | User Role | 1.4.8 | |||
| Application | Bestwebsoft | User Role | 1.4.7 | |||
| Application | Bestwebsoft | User Role | 1.4.6 | |||
| Application | Bestwebsoft | User Role | 1.4.5 | |||
| Application | Bestwebsoft | User Role | 1.4.4 | |||
| Application | Bestwebsoft | User Role | 1.4.3 | |||
| Application | Bestwebsoft | User Role | 1.4.2 |