Search
Find a vulnerability
Search criteria
4 vulnerabilities by activepieces
CVE-2026-53536 (GCVE-0-2026-53536)
Vulnerability from nvd – Published: 2026-07-16 18:48 – Updated: 2026-07-16 18:48
VLAI
EPSS
VEX
Title
Activepieces: Cross-tenant file download via missing JWT audience check on step-files signed URL
Summary
Activepieces is an open source AI workflow automation platform. Prior to 0.83.0, the /v1/step-files/signed download endpoint verified the supplied JWT against the shared signing secret but did not check the token's audience, and combined with a missing null-check on the decoded fileId, this allowed any caller holding any valid Activepieces JWT (including a freshly created user's own access token) to receive a step-file belonging to another tenant. The file returned was whatever PostgreSQL happened to scan first for type = FLOW_STEP_FILE, varying over time as the database changed, so an authenticated user could obtain step-file attachments belonging to other tenants on the same instance; the attacker could not target a specific victim or file, and the access was read-only with no integrity or availability impact. This issue is fixed in version 0.83.0.
Severity
CWE
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://github.com/activepieces/activepieces/secu… | x_refsource_CONFIRM |
| https://github.com/activepieces/activepieces/comm… | x_refsource_MISC |
| https://github.com/activepieces/activepieces/comm… | x_refsource_MISC |
| https://github.com/activepieces/activepieces/rele… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| activepieces | activepieces |
Affected:
< 0.83.0
|
{
"containers": {
"cna": {
"affected": [
{
"product": "activepieces",
"vendor": "activepieces",
"versions": [
{
"status": "affected",
"version": "\u003c 0.83.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Activepieces is an open source AI workflow automation platform. Prior to 0.83.0, the /v1/step-files/signed download endpoint verified the supplied JWT against the shared signing secret but did not check the token\u0027s audience, and combined with a missing null-check on the decoded fileId, this allowed any caller holding any valid Activepieces JWT (including a freshly created user\u0027s own access token) to receive a step-file belonging to another tenant. The file returned was whatever PostgreSQL happened to scan first for type = FLOW_STEP_FILE, varying over time as the database changed, so an authenticated user could obtain step-file attachments belonging to other tenants on the same instance; the attacker could not target a specific victim or file, and the access was read-only with no integrity or availability impact. This issue is fixed in version 0.83.0."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"privilegesRequired": "LOW",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "NONE"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-345",
"description": "CWE-345: Insufficient Verification of Data Authenticity",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-639",
"description": "CWE-639: Authorization Bypass Through User-Controlled Key",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-16T18:48:30.875Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/activepieces/activepieces/security/advisories/GHSA-9723-fmff-mc24",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/activepieces/activepieces/security/advisories/GHSA-9723-fmff-mc24"
},
{
"name": "https://github.com/activepieces/activepieces/commit/2cb6148010a6c2a22900f4c8b08d75cc5c921d1c",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/commit/2cb6148010a6c2a22900f4c8b08d75cc5c921d1c"
},
{
"name": "https://github.com/activepieces/activepieces/commit/afe852f60e39fcc6273d41e11f0765586b5a0e49",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/commit/afe852f60e39fcc6273d41e11f0765586b5a0e49"
},
{
"name": "https://github.com/activepieces/activepieces/releases/tag/0.83.0",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/releases/tag/0.83.0"
}
],
"source": {
"advisory": "GHSA-9723-fmff-mc24",
"discovery": "UNKNOWN"
},
"title": "Activepieces: Cross-tenant file download via missing JWT audience check on step-files signed URL"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-53536",
"datePublished": "2026-07-16T18:48:30.875Z",
"dateReserved": "2026-06-09T18:13:07.262Z",
"dateUpdated": "2026-07-16T18:48:30.875Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-53535 (GCVE-0-2026-53535)
Vulnerability from nvd – Published: 2026-07-16 18:52 – Updated: 2026-07-16 18:52
VLAI
EPSS
VEX
Title
Activepieces: Arbitrary file write in git-sync via path traversal and symlinks
Summary
Activepieces is an open source AI workflow automation platform. Prior to 0.82.0, the git-sync feature clones a user-configured Git repository into a temporary directory on the server and then writes flow, table, and connection state into it before pushing back, and two separate weaknesses allowed those writes to escape the intended workspace and land on arbitrary paths on the host filesystem: Git's symbolic-link handling was not disabled on the clone, so an attacker who controlled the remote repository could include symlinks that redirected the writes, and several user-supplied identifiers used to build on-disk paths (the repository slug and the externalId of tables, flows, and connections) were not validated against directory-traversal sequences such as ../. On a self-hosted Enterprise Edition deployment, a user authorized to configure or push to a git-sync repository (holding the WRITE_PROJECT_RELEASE permission) could cause the server to overwrite files anywhere the Activepieces process user can write, which depending on host layout can be leveraged for tampering, denial of service, or remote code execution. This issue is fixed in version 0.82.0.
Severity
CWE
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://github.com/activepieces/activepieces/secu… | x_refsource_CONFIRM |
| https://github.com/activepieces/activepieces/pull/12711 | x_refsource_MISC |
| https://github.com/activepieces/activepieces/comm… | x_refsource_MISC |
| https://github.com/activepieces/activepieces/rele… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| activepieces | activepieces |
Affected:
< 0.82.0
|
{
"containers": {
"cna": {
"affected": [
{
"product": "activepieces",
"vendor": "activepieces",
"versions": [
{
"status": "affected",
"version": "\u003c 0.82.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Activepieces is an open source AI workflow automation platform. Prior to 0.82.0, the git-sync feature clones a user-configured Git repository into a temporary directory on the server and then writes flow, table, and connection state into it before pushing back, and two separate weaknesses allowed those writes to escape the intended workspace and land on arbitrary paths on the host filesystem: Git\u0027s symbolic-link handling was not disabled on the clone, so an attacker who controlled the remote repository could include symlinks that redirected the writes, and several user-supplied identifiers used to build on-disk paths (the repository slug and the externalId of tables, flows, and connections) were not validated against directory-traversal sequences such as ../. On a self-hosted Enterprise Edition deployment, a user authorized to configure or push to a git-sync repository (holding the WRITE_PROJECT_RELEASE permission) could cause the server to overwrite files anywhere the Activepieces process user can write, which depending on host layout can be leveraged for tampering, denial of service, or remote code execution. This issue is fixed in version 0.82.0."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"privilegesRequired": "HIGH",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "HIGH"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-22",
"description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-59",
"description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-16T18:52:43.462Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/activepieces/activepieces/security/advisories/GHSA-qqcr-rg2x-97mm",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/activepieces/activepieces/security/advisories/GHSA-qqcr-rg2x-97mm"
},
{
"name": "https://github.com/activepieces/activepieces/pull/12711",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/pull/12711"
},
{
"name": "https://github.com/activepieces/activepieces/commit/01bd4ef76fc1ad1bf7adc10c39ece4f624da6bf5",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/commit/01bd4ef76fc1ad1bf7adc10c39ece4f624da6bf5"
},
{
"name": "https://github.com/activepieces/activepieces/releases/tag/0.82.0",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/releases/tag/0.82.0"
}
],
"source": {
"advisory": "GHSA-qqcr-rg2x-97mm",
"discovery": "UNKNOWN"
},
"title": "Activepieces: Arbitrary file write in git-sync via path traversal and symlinks"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-53535",
"datePublished": "2026-07-16T18:52:43.462Z",
"dateReserved": "2026-06-09T17:30:33.457Z",
"dateUpdated": "2026-07-16T18:52:43.462Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-53535 (GCVE-0-2026-53535)
Vulnerability from cvelistv5 – Published: 2026-07-16 18:52 – Updated: 2026-07-16 18:52
VLAI
EPSS
VEX
Title
Activepieces: Arbitrary file write in git-sync via path traversal and symlinks
Summary
Activepieces is an open source AI workflow automation platform. Prior to 0.82.0, the git-sync feature clones a user-configured Git repository into a temporary directory on the server and then writes flow, table, and connection state into it before pushing back, and two separate weaknesses allowed those writes to escape the intended workspace and land on arbitrary paths on the host filesystem: Git's symbolic-link handling was not disabled on the clone, so an attacker who controlled the remote repository could include symlinks that redirected the writes, and several user-supplied identifiers used to build on-disk paths (the repository slug and the externalId of tables, flows, and connections) were not validated against directory-traversal sequences such as ../. On a self-hosted Enterprise Edition deployment, a user authorized to configure or push to a git-sync repository (holding the WRITE_PROJECT_RELEASE permission) could cause the server to overwrite files anywhere the Activepieces process user can write, which depending on host layout can be leveraged for tampering, denial of service, or remote code execution. This issue is fixed in version 0.82.0.
Severity
CWE
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://github.com/activepieces/activepieces/secu… | x_refsource_CONFIRM |
| https://github.com/activepieces/activepieces/pull/12711 | x_refsource_MISC |
| https://github.com/activepieces/activepieces/comm… | x_refsource_MISC |
| https://github.com/activepieces/activepieces/rele… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| activepieces | activepieces |
Affected:
< 0.82.0
|
{
"containers": {
"cna": {
"affected": [
{
"product": "activepieces",
"vendor": "activepieces",
"versions": [
{
"status": "affected",
"version": "\u003c 0.82.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Activepieces is an open source AI workflow automation platform. Prior to 0.82.0, the git-sync feature clones a user-configured Git repository into a temporary directory on the server and then writes flow, table, and connection state into it before pushing back, and two separate weaknesses allowed those writes to escape the intended workspace and land on arbitrary paths on the host filesystem: Git\u0027s symbolic-link handling was not disabled on the clone, so an attacker who controlled the remote repository could include symlinks that redirected the writes, and several user-supplied identifiers used to build on-disk paths (the repository slug and the externalId of tables, flows, and connections) were not validated against directory-traversal sequences such as ../. On a self-hosted Enterprise Edition deployment, a user authorized to configure or push to a git-sync repository (holding the WRITE_PROJECT_RELEASE permission) could cause the server to overwrite files anywhere the Activepieces process user can write, which depending on host layout can be leveraged for tampering, denial of service, or remote code execution. This issue is fixed in version 0.82.0."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"privilegesRequired": "HIGH",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "HIGH"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-22",
"description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-59",
"description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-16T18:52:43.462Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/activepieces/activepieces/security/advisories/GHSA-qqcr-rg2x-97mm",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/activepieces/activepieces/security/advisories/GHSA-qqcr-rg2x-97mm"
},
{
"name": "https://github.com/activepieces/activepieces/pull/12711",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/pull/12711"
},
{
"name": "https://github.com/activepieces/activepieces/commit/01bd4ef76fc1ad1bf7adc10c39ece4f624da6bf5",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/commit/01bd4ef76fc1ad1bf7adc10c39ece4f624da6bf5"
},
{
"name": "https://github.com/activepieces/activepieces/releases/tag/0.82.0",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/releases/tag/0.82.0"
}
],
"source": {
"advisory": "GHSA-qqcr-rg2x-97mm",
"discovery": "UNKNOWN"
},
"title": "Activepieces: Arbitrary file write in git-sync via path traversal and symlinks"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-53535",
"datePublished": "2026-07-16T18:52:43.462Z",
"dateReserved": "2026-06-09T17:30:33.457Z",
"dateUpdated": "2026-07-16T18:52:43.462Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-53536 (GCVE-0-2026-53536)
Vulnerability from cvelistv5 – Published: 2026-07-16 18:48 – Updated: 2026-07-16 18:48
VLAI
EPSS
VEX
Title
Activepieces: Cross-tenant file download via missing JWT audience check on step-files signed URL
Summary
Activepieces is an open source AI workflow automation platform. Prior to 0.83.0, the /v1/step-files/signed download endpoint verified the supplied JWT against the shared signing secret but did not check the token's audience, and combined with a missing null-check on the decoded fileId, this allowed any caller holding any valid Activepieces JWT (including a freshly created user's own access token) to receive a step-file belonging to another tenant. The file returned was whatever PostgreSQL happened to scan first for type = FLOW_STEP_FILE, varying over time as the database changed, so an authenticated user could obtain step-file attachments belonging to other tenants on the same instance; the attacker could not target a specific victim or file, and the access was read-only with no integrity or availability impact. This issue is fixed in version 0.83.0.
Severity
CWE
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://github.com/activepieces/activepieces/secu… | x_refsource_CONFIRM |
| https://github.com/activepieces/activepieces/comm… | x_refsource_MISC |
| https://github.com/activepieces/activepieces/comm… | x_refsource_MISC |
| https://github.com/activepieces/activepieces/rele… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| activepieces | activepieces |
Affected:
< 0.83.0
|
{
"containers": {
"cna": {
"affected": [
{
"product": "activepieces",
"vendor": "activepieces",
"versions": [
{
"status": "affected",
"version": "\u003c 0.83.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Activepieces is an open source AI workflow automation platform. Prior to 0.83.0, the /v1/step-files/signed download endpoint verified the supplied JWT against the shared signing secret but did not check the token\u0027s audience, and combined with a missing null-check on the decoded fileId, this allowed any caller holding any valid Activepieces JWT (including a freshly created user\u0027s own access token) to receive a step-file belonging to another tenant. The file returned was whatever PostgreSQL happened to scan first for type = FLOW_STEP_FILE, varying over time as the database changed, so an authenticated user could obtain step-file attachments belonging to other tenants on the same instance; the attacker could not target a specific victim or file, and the access was read-only with no integrity or availability impact. This issue is fixed in version 0.83.0."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"privilegesRequired": "LOW",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "NONE"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-345",
"description": "CWE-345: Insufficient Verification of Data Authenticity",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-639",
"description": "CWE-639: Authorization Bypass Through User-Controlled Key",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-16T18:48:30.875Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/activepieces/activepieces/security/advisories/GHSA-9723-fmff-mc24",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/activepieces/activepieces/security/advisories/GHSA-9723-fmff-mc24"
},
{
"name": "https://github.com/activepieces/activepieces/commit/2cb6148010a6c2a22900f4c8b08d75cc5c921d1c",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/commit/2cb6148010a6c2a22900f4c8b08d75cc5c921d1c"
},
{
"name": "https://github.com/activepieces/activepieces/commit/afe852f60e39fcc6273d41e11f0765586b5a0e49",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/commit/afe852f60e39fcc6273d41e11f0765586b5a0e49"
},
{
"name": "https://github.com/activepieces/activepieces/releases/tag/0.83.0",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/activepieces/activepieces/releases/tag/0.83.0"
}
],
"source": {
"advisory": "GHSA-9723-fmff-mc24",
"discovery": "UNKNOWN"
},
"title": "Activepieces: Cross-tenant file download via missing JWT audience check on step-files signed URL"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-53536",
"datePublished": "2026-07-16T18:48:30.875Z",
"dateReserved": "2026-06-09T18:13:07.262Z",
"dateUpdated": "2026-07-16T18:48:30.875Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}