Known Vulnerabilities for Google-cloud by Craftcms
Listed below are 10 of the newest known vulnerabilities associated with "Google-cloud" by "Craftcms".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56270 json | Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a missing authentication vulnerability in the /api/v1/loginmethod... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-48245 json | Open ISES Tickets before 3.44.2 embeds a hardcoded Google Maps API key in tables.php that is committed to the public source r... | Not Provided | 2026-05-21 | 2026-05-21 |
| CVE-2026-48244 json | Open ISES Tickets before 3.44.2 embeds a hardcoded Google Maps API key in settings.inc.php that is committed to the public so... | Not Provided | 2026-05-21 | 2026-05-21 |
| CVE-2026-42811 json | In plain terms, Apache Polaris is supposed to issue short-lived GCS credentials that only work for one table's files, but a c... | Not Provided | 2026-05-04 | 2026-05-04 |
| CVE-2026-40981 json | When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft a request to the config ... | Not Provided | 2026-05-07 | 2026-06-30 |
| CVE-2026-28367 json | A flaw was found in Undertow. A remote attacker can exploit this vulnerability by sending `\r\r\r` as a header block terminat... | Not Provided | 2026-03-27 | 2026-06-29 |
| CVE-2026-12047 json | HTML injection in pgAdmin 4's cloud deployment module. The verify_credentials, deploy, regions, and update-server endpoints u... | Not Provided | 2026-06-19 | 2026-06-22 |
| CVE-2026-8934 json | A Missing Authorization vulnerability in a GraphQL private API operation of the Google App Engine section of the Cloud Consol... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-7624 json | The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to authorization bypass in all versions up to, and includin... | Not Provided | 2026-06-06 | 2026-06-06 |
| CVE-2026-7428 json | Prior to 2025-11-03, well-intended users of Terraform or REST API for Google Cloud AlloyDB for PostgreSQL could have created... | Not Provided | 2026-05-12 | 2026-05-12 |