Talelin
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in any Talelin product.
RSS Feeds for Talelin security vulnerabilities
Create a CVE RSS feed including security vulnerabilities found in Talelin products with stack.watch. Just hit watch, then grab your custom RSS feed url.
Products by Talelin Sorted by Most Security Vulnerabilities since 2018
By the Year
In 2026 there have been 1 vulnerability in Talelin with an average score of 6.3 out of ten. Last year, in 2025 Talelin had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Talelin in 2026 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2026 is greater by 2.60.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 1 | 6.30 |
| 2025 | 1 | 3.70 |
| 2024 | 1 | 7.50 |
| 2023 | 0 | 0.00 |
| 2022 | 1 | 7.50 |
| 2021 | 3 | 0.00 |
It may take a day or so for new Talelin vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Talelin Security Vulnerabilities
| CVE | Date | Vulnerability | Products |
|---|---|---|---|
| CVE-2026-10152 | May 30, 2026 |
TaleLin lin-cms-spring-boot <0.2.1: Improper Access Control in Book EndpointA vulnerability was detected in TaleLin lin-cms-spring-boot up to 0.2.1. This issue affects some unknown processing of the file src/main/java/io/github/talelin/latticy/controller/v1/BookController.java of the component book Endpoint. The manipulation results in improper access controls. The attack may be launched remotely. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet. |
Lin Cms Spring Boot
|
| CVE-2025-15151 | Dec 28, 2025 |
A vulnerability was determined in TaleLin Lin-CMS up to 0.6.0A vulnerability was determined in TaleLin Lin-CMS up to 0.6.0. This affects an unknown part of the file /tests/config.py of the component Tests Folder. This manipulation of the argument username/password causes password in configuration file. The attack is possible to be carried out remotely. The complexity of an attack is rather high. It is indicated that the exploitability is difficult. The exploit has been publicly disclosed and may be utilized. |
|
| CVE-2024-41600 | Jul 19, 2024 |
lin-CMS Springboot <0.2.1 Insecure Permissions in UserControllerInsecure Permissions vulnerability in lin-CMS Springboot v.0.2.1 and before allows a remote attacker to obtain sensitive information via the login method in the UserController.java component. |
Lin Cms Spring Boot
|
| CVE-2022-32430 | Jul 21, 2022 |
An access control issue in Lin CMS Spring Boot v0.2.1An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application. |
Lin Cms Spring Boot
|
| CVE-2020-18701 | Aug 16, 2021 |
Incorrect Access Control in Lin-CMS-Flask v0.1.1Incorrect Access Control in Lin-CMS-Flask v0.1.1 allows remote attackers to obtain sensitive information and/or gain privileges due to the application not invalidating a user's authentication token upon logout, which allows for replaying packets. |
Lin Cms Flask
|
| CVE-2020-18699 | Aug 16, 2021 |
Cross Site Scripting (XSS) in Lin-CMS-Flask v0.1.1Cross Site Scripting (XSS) in Lin-CMS-Flask v0.1.1 allows remote attackers to execute arbitrary code by entering scripts in the the 'Username' parameter of the in component 'app/api/cms/user.py'. |
Lin Cms Flask
|
| CVE-2020-18698 | Aug 16, 2021 |
Improper Authentication in Lin-CMS-Flask v0.1.1Improper Authentication in Lin-CMS-Flask v0.1.1 allows remote attackers to launch brute force login attempts without restriction via the 'login' function in the component 'app/api/cms/user.py'. |
Lin Cms Flask
|