Known Vulnerabilities for Edx-enterprise by Openedx
Listed below are 10 of the newest known vulnerabilities associated with "Edx-enterprise" by "Openedx".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-62348 json | TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.15, TDengine Enterprise allowed a... | Not Provided | 2026-07-15 | 2026-07-16 |
| CVE-2026-57285 json | A missing permission check in Jenkins GitHub Branch Source Plugin 1967.1969.v205fd594c821 and earlier allows attackers with O... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57230 json | OpenReplay is a self-hosted session replay suite. Prior to 1.27.0, the session search and analytics API in enterprise edition... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-56775 json | n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization vulnerability in three mutating evaluation test-run endpoin... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-56313 json | Capgo before 12.128.2 contains a cross-organization account disruption vulnerability in the SSO prelink endpoint that allows ... | Not Provided | 2026-07-12 | 2026-07-13 |
| CVE-2026-56278 json | Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') for the express-... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-56271 json | Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses weak hardcoded default JWT secrets ('auth_token', 'refresh_t... | Not Provided | 2026-07-12 | 2026-07-13 |
| CVE-2026-56269 json | Flowise before 3.1.0 (npm package flowise, versions 3.0.13 and earlier) uses a weak hardcoded default value 'Secre$t' for the... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-56223 json | Capgo before 12.128.2 contains a cross-domain SSO account takeover vulnerability in the provision-user endpoint that allows a... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-55410 json | NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to 2.1... | Not Provided | 2026-07-15 | 2026-07-15 |