Maven/org.openrefine:main — 4 CVEs

HIGH7.6CVE-2024-47879OpenRefine's PreviewExpressionCommand, which is eval, lacks protection against cross-site request forgery (CSRF)

from 0, < 3.8.3

MEDIUM6.5CVE-2022-41401OpenRefine Server-Side Request Forgery vulnerability

from 0, < 3.6.0

MEDIUM6.5CVE-2018-19859OpenRefine Directory Traversal

from 0, < 3.2-beta

MEDIUM5.5OpenRefine vulnerable to zip slip in project import

from 0, < 3.7.4

pkg:Maven/org.openrefine:main