cb
cvebase
.
~
/
products
/
hasura
/
graphql
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
hasura
/
Hasura Graphql
Hasura Graphql vulnerabilities
1 known vulnerability affecting
hasura/graphql
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2021-47748
P2
CRITICAL
CVSS 9.8
v1.3.3
2026-01-21
CVE-2021-47748 [CRITICAL] CWE-78 CVE-2021-47748: Hasura GraphQL 1.3.3 contains a remote code execution vulnerability that allows attackers to execute Hasura GraphQL 1.3.3 contains a remote code execution vulnerability that allows attackers to execute arbitrary shell commands through SQL query manipulation. Attackers can inject commands into the run_sql endpoint by crafting malicious GraphQL queries that execute system commands through PostgreSQL's COPY FROM PROGRAM functionality.
nvd
Hasura Graphql vulnerabilities | cvebase