GHSA-gfq7-5x4g-3xhf

High

GHSA-gfq7-5x4g-3xhf

(CVE-2026-54353)

Published Jun 22, 2026

CVSS

8.5

HIGH

EPSS

Exploit Prediction Scoring System — the modeled probability of in-the-wild exploitation in the next 30 days.

—

Affected packages

Summary

@budibase/backend-core has potential SSRF DNS rebinding bypass in outbound fetch validation

Developer impact

Recommended action

Affected packages

Sources