Question 1

What is CVE-2026-47380 — CVE-2026-47380?

Accepted Answer

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, sign-in response timing differed between known and unknown email addresses because the unknown-user branch returned without performing a password hash comparison. This vulnerability is fixed in 2026.04.1.

Question 2

What is the authoritative source for CVE-2026-47380?

Accepted Answer

CVE-2026-47380 (CVE-2026-47380) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2026-47380CVE-2026-47380

Description

Scoring