Primary

Context

NocoDB Plaintext Password Storage Vulnerability in Shared Views

Vulnerability

Patched

A vulnerability exists in NocoDB versions prior to 0.301.3, where shared view passwords were stored in plaintext in the database. This issue allows for direct string comparison of passwords, creating a risk if the database is compromised and passwords are reused in other contexts.

Impact

Exposed plaintext passwords for shared views, creating a risk in password reuse scenarios.

Remediation

Users can upgrade to NocoDB version 0.301.3 or later to address this vulnerability.

Added: Mar 2, 2026, 5:23 PM

Updated: Mar 2, 2026, 10:14 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

4.8

remediation

7.7

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

4.8

remediation

7.7

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NocoDB Plaintext Password Storage Vulnerability in Shared Views

Vulnerability

Impact

Remediation

Affected Products

NocoDB

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating