Vulnerabilities

CVE Alert: CVE-2024-47878

An Ad-Free Experience: No more interruptions like this.
Exclusive Perks: Access to special content.
Direct Support: Help us grow and improve by supporting our work directly.

October 25, 2024

Vulnerability Summary: CVE-2024-47878

OpenRefine is a free, open source tool for working with messy data. Prior to version 3.8.3, the `/extension/gdata/authorized` endpoint includes the `state` GET parameter verbatim in a `