Known Vulnerabilities for Hydra by Hydra Project
Listed below are 1 of the newest known vulnerabilities associated with "Hydra" by "Hydra Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39541 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themefic Hydra Booking ... | Not Provided | 2026-04-08 | 2026-04-10 |
| CVE-2026-33504 json | Ory Hydra is an OAuth 2.0 Server and OpenID Connect Provider. Prior to version 26.2.0, the listOAuth2Clients, listOAuth2Conse... | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2025-49323 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themefic Hydra Booking ... | Not Provided | 2025-06-06 | 2026-04-01 |
| CVE-2019-17502 json | Hydra through 0.1.8 has a NULL pointer dereference and daemon crash when processing POST requests that lack a Content-Length ... | 7.5 - HIGH | 2019-10-12 | 2019-10-17 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Hydra Project | Hydra | 0.1.8 |