Security Advisories
Real-world vulnerabilities discovered and responsibly disclosed by turingpoint in widely used open-source and enterprise software.
Security Research
Published Advisories
turingpoint conducts active security research on widely used open-source and enterprise software. Many of these vulnerabilities surface directly during penetration tests for our clients. The following findings were identified by us, disclosed in coordination with the vendors (coordinated disclosure), and published as CVEs once a patch became available.
- WekanCVE-2026-52890Arbitrary file read + DoS via `versions.original.path` in attachments7.1 · High
- MastodonCVE-2026-50129Persistent federated DoS via unhandled `NoMethodError` in `MATH_TRANSFORMER`7.5 · High
- NocoDBCVE-2026-47387Stored XSS via a form view's `redirect_url` → account takeover8.7 · High
- HeadplaneCVE-2026-46484Path traversal + RBAC bypass in `renameNode`8.1 · High
- authentikCVE-2026-42849Reflected XSS in the SFE AutosubmitStage via OAuth2 redirect_uri/state9.3 · Critical
- Argo CDCVE-2026-45738Stored XSS via the link.argocd.argoproj.io/* annotation7.3 · High
- ILIASpendingBlind SQL injection in the MyStaff lists via `_table_nav` (whitelist bypass)9.3 · Critical
- Chamilo LMSCVE-2026-45143Student-to-admin stored XSS in private messages via `v-html`9.0 · Critical
Coordinated Disclosure
turingpoint follows the principle of coordinated disclosure: vulnerabilities we find are first reported confidentially to the affected vendor and only documented publicly once a patch is available. This gives users the opportunity to secure their systems before technical details become known.
This Expertise for Your Software
Our team finds critical vulnerabilities in production software before attackers do. Have your applications tested by the same specialists, with a penetration test from turingpoint.