Known vulnerabilities in strapi.io strapi 4.15.1

Known vulnerabilities in strapi.io strapi 4.15.1

Vendor: strapi.io

Website: https://strapi.io/

Total Security Bulletins: 8

Security bulletins (8)

Secuity bulletin	Severity	Status	Published
SB2026051394: SQL injection in strapi	Low	Patched	13.05.2026
SB2026051393: Multiple vulnerabilities in strapi	Low	Patched	13.05.2026
SB2026051392: Improper Neutralization of Special Elements in Data Query Logic in strapi	High	Patched	13.05.2026
SB2026042379: Weak Encoding for Password in strapi	Low	Patched	23.04.2026
SB2026042377: Overly permissive cross-domain whitelist in strapi	Medium	Patched	23.04.2026
SB2024061246: Open redirect in strapi	Medium	Patched	12.06.2024
SB2024061245: Uncaught Exception in strapi	Low	Patched	12.06.2024
SB2024061244: Improper access control in strapi	Low	Patched	12.06.2024