Every CVE whose affected-product data names Inducer Relate, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2026-41588 — CVSS 9.0 (critical): RELATE is a web-based courseware package. Prior to commit 2f68e16, there is a timing attack vulnerability in course/auth.py —…
CVE-2024-32407 — CVSS 8.8 (high): An issue in inducer relate before v.2024.1 allows a remote attacker to execute arbitrary code via a crafted payload to the Page Sandbox…
CVE-2024-32406 — CVSS 7.5 (high): Server-Side Template Injection (SSTI) vulnerability in inducer relate before v.2024.1 allows a remote attacker to execute arbitrary code…
CVE-2024-32404 — CVSS 6.0 (medium): Server-Side Template Injection (SSTI) vulnerability in inducer relate before v.2024.1, allows remote attackers to execute arbitrary code…
CVE-2024-32405 — CVSS 2.6 (low): Cross Site Scripting vulnerability in inducer relate before v.2024.1 allows a remote attacker to escalate privileges via a crafted payload…