CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mauriceboe: >> Trek Security Vulnerabilities

CVE-2026-40184

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2.

CVSS Score

3.7

EPSS Score

0.001

Published

2026-04-10

CVE-2026-40185

TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2.

CVSS Score

7.1

EPSS Score

0.0

Published

2026-04-10

Page 1

Vulnerabilities

Vulnerable Software

Mauriceboe: >> Trek Security Vulnerabilities

Products

Pricing

Contact Us