VYPR

Shelf.nu

by Shelf Nu

Source repositories

CVEs (1)

  • CVE-2026-44204MedMay 12, 2026
    risk 0.35cvss 6.5epss 0.00

    Shelf is a platform for tracking physical assets. From 1.12 to before 1.20.1, a SQL injection vulnerability in the sortBy query parameter on the /assets route allows any authenticated user (any role) to execute arbitrary SQL and read data from any table in the database,…