Known Vulnerabilities for Graphql by Silverstripe
Listed below are 3 of the newest known vulnerabilities associated with "Graphql" by "Silverstripe".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57954 json | Elide through 7.1.17 fails to enforce @ReadPermission on client-supplied sort expressions in SortingImpl.getValidSortingRules... | Not Provided | 2026-06-29 | 2026-06-30 |
| CVE-2026-55455 json | Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the outbound HTTP host filter app... | Not Provided | 2026-06-24 | 2026-06-25 |
| CVE-2026-48529 json | GitHub MCP Server is GitHub's official MCP Server. From 0.22.0 until 1.1.2, when running in HTTP mode with --lockdown-mode en... | Not Provided | 2026-06-26 | 2026-06-27 |
| CVE-2026-47707 json | Strawberry GraphQL is a library for creating GraphQL APIs. In versions 0.172.0 through0.315.6, the MaxAliasesLimiter extensio... | Not Provided | 2026-06-04 | 2026-06-04 |
| CVE-2026-47706 json | Strawberry GraphQL is a library for creating GraphQL APIs. In versions 0.71.0 through 0.315.6, the QueryDepthLimiter extensio... | Not Provided | 2026-06-04 | 2026-06-04 |
| CVE-2026-47248 json | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6... | Not Provided | 2026-06-12 | 2026-06-12 |
| CVE-2026-46624 json | Twenty is an open source CRM. From 1.7.7 through 1.16.7, a critical Remote Code Execution (RCE) vulnerability exists in Twent... | Not Provided | 2026-05-26 | 2026-05-26 |
| CVE-2026-45739 json | Strawberry GraphQL is a library for creating GraphQL APIs. In versions 0.288.4 through 0.315.3, Strawberry's bundled GraphiQL... | Not Provided | 2026-06-04 | 2026-06-04 |
| CVE-2026-44349 json | Daptin is a GraphQL/JSON-API headless CMS. Prior to version 0.11.5, processFuzzySearch in server/resource/resource_findallpag... | Not Provided | 2026-05-07 | 2026-05-08 |
| CVE-2026-44224 json | Wiki.js is an open source wiki app built on Node.js. Prior to 2.5.313, the users.update GraphQL mutation accepts an arbitrary... | Not Provided | 2026-05-12 | 2026-05-13 |