📦 Neo4j

This vulnerability allows remote code execution on Neo4j databases with the shell server enabled. Attackers can exploit Java deserialization in the exposed RMI service to execute arbitrary code. Organ...

This vulnerability allows cross-site scripting (XSS) attacks when Neo4j query logs containing insufficiently escaped unicode characters are opened in tools that interpret them as HTML. It affects Neo4...

This vulnerability in Neo4j's Cypher component allows attackers with admin access to bypass IMMUTABLE privilege restrictions in certain situations. It affects Neo4j versions 5.0.0 through 5.18. The is...