Brainstorm Force Ottokit vulnerabilities
3 known vulnerabilities affecting brainstorm_force/ottokit.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-27007P1CRITICALCVSS 9.8ExploitedPoC≤ 1.0.822025-05-01
CVE-2025-27007 [CRITICAL] CWE-266 CVE-2025-27007: Incorrect Privilege Assignment vulnerability in Brainstorm Force OttoKit suretriggers allows Privile
Incorrect Privilege Assignment vulnerability in Brainstorm Force OttoKit suretriggers allows Privilege Escalation.This issue affects OttoKit: from n/a through <= 1.0.82.
nvd
CVE-2026-49781P2CRITICALCVSS 9.8≥ n/a, ≤ 1.1.272026-06-15
CVE-2026-49781 [CRITICAL] CWE-502 CVE-2026-49781: Unauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.
Unauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.
nvd
CVE-2026-39479P3HIGHCVSS 7.6≤ 1.1.202026-04-08
CVE-2026-39479 [HIGH] CWE-89 CVE-2026-39479: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Brainstorm Force OttoKit suretriggers allows Blind SQL Injection.This issue affects OttoKit: from n/a through <= 1.1.20.
nvd