CNNVD-202601-3892 Information

CNNVD ID

CNNVD-202601-3892

Related CVE

CVE-2026-24042

• CNNVD Published: 2026-01-22

Description (Chinese)

Appsmith是Appsmith开源的一个用于构建、部署和维护内部应用程序的开源平台。 Appsmith 1.94及之前版本存在安全漏洞，该漏洞源于未经身份验证的用户可执行未发布的操作，可能导致敏感数据泄露、执行编辑模式查询和API以及触发副作用行为。

Description (English)

Appsmith is an open-source platform for building, deploying and maintaining internal applications. Appsmith 1.94 and previous versions have a security loophole, which stems from unpublished operations by uncertified users, which can lead to sensitive data leaks, editorial mode queries and API, and trigger side effects.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Appsmith

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/appsmithorg/appsmith/security/advisories/GHSA-j9qq-4fj9-9883

Patch

https://www.appsmith.com/