threat
engine
.sh
Back
·
··:··
Home
/
Product
/
okfn ckan
Product
okfn ckan
14 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-42032
< 2.10.10
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, a vulner
9.1
CRITICAL
CVE-2026-42031
< 2.10.10
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, a vulner
9.8
CRITICAL
CVE-2026-41255
< 2.10.10
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, Access t
6.1
MEDIUM
CVE-2026-41132
< 2.10.10
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, the conf
7.4
HIGH
CVE-2024-43371
< 2.10.5
CKAN is an open-source data management system for powering data hubs and data portals. There are a number of CKAN plugins, includi
4.5
MEDIUM
CVE-2024-41675
>= 2.7.0 and < 2.10.5
CKAN is an open-source data management system for powering data hubs and data portals. The Datatables view plugin did not properly
6.8
MEDIUM
CVE-2024-41674
>= 2.0 and < 2.10.5
CKAN is an open-source data management system for powering data hubs and data portals. If there were connection issues with the So
5.3
MEDIUM
CVE-2024-27097
>= 2.0 and < 2.9.11
A user endpoint didn't perform filtering on an incoming parameter, which was added directly to the application log. This could lea
4.3
MEDIUM
CVE-2023-50248
>= 2.0 and < 2.9.10
CKAN is an open-source data management system for powering data hubs and data portals. Starting in version 2.0.0 and prior to vers
4.5
MEDIUM
CVE-2023-32696
< 2.9.9
CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the `ck
8.8
HIGH
CVE-2023-32321
>= 2.9.0 and < 2.9.9
CKAN is an open-source data management system for powering data hubs and data portals. Multiple vulnerabilities have been discover
9.8
CRITICAL
CVE-2023-22746
< 2.8.12
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. When creating a new container based o
8.6
HIGH
CVE-2022-43685
< 2.8.12
CKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is sent via an HTTP POST request. This allo
8.8
HIGH
CVE-2021-25967
>= 2.9.0 and <= 2.9.3
In CKAN, versions 2.9.0 to 2.9.3 are affected by a stored XSS vulnerability via SVG file upload of users’ profile picture. This
5.4
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin