Vulnerabilities in toeverything
4 resultsCVE-2026-21853HIGHAFFiNE: One-click Remote Code Execution through Custom URL HandlingEPSS 0.6%CVE-2026-7702MEDIUMtoeverything AFFiNE Public Markdown Preview Endpoint :docId allowDocPreview authorizationEPSS 0.3%CVE-2025-11945MEDIUMtoeverything AFFiNE Avatar Upload Image Endpoint cross site scriptingEPSS 0.3%CVE-2026-25477MEDIUMAFFiNE: Open Redirect via Regex Bypass in redirect-proxyEPSS 0.2%