Vulnerability Description
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.0, an unvalidated redirect (open redirect) vulnerability exists in NocoDB’s login flow due to missing validation of the `continueAfterSignIn` parameter. During authentication, NocoDB processes a user-controlled redirect value and conditionally performs client-side navigation without enforcing any restrictions on the destination’s origin, domain or protocol. This allows attackers to redirect authenticated users to arbitrary external websites after login. This vulnerability enables phishing attacks by leveraging user trust in the legitimate NocoDB login flow. While it does not directly expose credentials or bypass authentication, it increases the likelihood of credential theft through social engineering. The issue does not allow arbitrary code execution or privilege escalation, but it undermines authentication integrity. Version 0.301.0 fixes the issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nocodb | Nocodb | < 0.301.0 |
Related Weaknesses (CWE)
References
- https://github.com/nocodb/nocodb/security/advisories/GHSA-3hmw-8mw3-rmpjExploitVendor Advisory
FAQ
What is CVE-2026-24768?
CVE-2026-24768 is a vulnerability with a CVSS score of 6.1 (MEDIUM). NocoDB is software for building databases as spreadsheets. Prior to version 0.301.0, an unvalidated redirect (open redirect) vulnerability exists in NocoDB’s login flow due to missing validation of th...
How severe is CVE-2026-24768?
CVE-2026-24768 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-24768?
Check the references section above for vendor advisories and patch information. Affected products include: Nocodb Nocodb.