Known Vulnerabilities for products from Twenty
Listed below are 2 of the newest known vulnerabilities associated with the vendor "Twenty".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-46624 json | Twenty is an open source CRM. From 1.7.7 through 1.16.7, a critical Remote Code Execution (RCE) vulnerability exists in Twent... | Not Provided | 2026-05-26 | 2026-05-27 |
| CVE-2026-44729 json | Twenty is an open source CRM. In 1.18.0 and earlier, the file serving endpoints in Twenty CRM at /files/* and /file/:fileFold... | Not Provided | 2026-05-26 | 2026-05-27 |
| CVE-2026-35451 json | Not Provided | 2026-04-21 | 2026-04-21 | |
| CVE-2026-33975 json | Not Provided | 2026-05-05 | 2026-05-06 | |
| CVE-2023-5162 json | Not Provided | 2023-09-27 | 2026-04-08 |