Back to CVE List

CVE-2026-54350

CRITICAL SEVERITY

CVSS Score & Metrics

Base Score

10.0 / 10

Vulnerability Description

Budibase has nonymous NoSQL operator injection via published-app query templates

Vulnerability Details

Published Date

June 23, 2026

Last Modified

June 23, 2026

Source

GitHub

Vendor

npm

Product

@budibase/server

External References

Discussion (0)

Add Comment

No comments yet. Be the first!