Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
npm/@tinacms/cli — 6 CVEs · VulnScope
pkg:npm/
@tinacms/cli
6 total CVEs
CRITICAL
1
HIGH
3
MEDIUM
1
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
9.6
CVE-2026-28792
TinaCMS CLI Dev Server Vulnerable to Cross-Origin File Exfiltration via CORS Misconfiguration + Path Traversal in TinaCMS
from 0, < 2.1.8
HIGH
8.6
CVE-2023-25164
Sensitive Information leak via Script File in TinaCMS
>= 1.0.0, < 1.0.9
HIGH
8.4
CVE-2026-28793
TinaCMS Vulnerable to Path Traversal Leading to Arbitrary File Read, Write and Delete
from 0, < 2.1.8
HIGH
7.5
Tina search token leak via lock file in TinaCMS
from 0, < 1.6.2
MEDIUM
6.2
TinaCMS CLI has Arbitrary File Read via Disabled Vite Filesystem Restriction
from 0, < 2.1.8
—
tinacms is vulnerable to arbitrary code execution
from 0, < 2.0.4
CVE-2024-45391
CVE-2026-29066
CVE-2025-68278