14 matches found
CVE-2024-12534
In version v0.3.32 of open-webui/open-webui, the application allows users to submit large payloads in the email and password fields during the sign-in process due to the lack of character length validation on these inputs. This vulnerability can lead to a Denial of Service DoS condition when a us...
CVE-2024-12534
In version v0.3.32 of open-webui/open-webui, the application allows users to submit large payloads in the email and password fields during the sign-in process due to the lack of character length validation on these inputs. This vulnerability can lead to a Denial of Service DoS condition when a us...
CVE-2024-12534 Denial of Service (DoS) in open-webui/open-webui
In version v0.3.32 of open-webui/open-webui, the application allows users to submit large payloads in the email and password fields during the sign-in process due to the lack of character length validation on these inputs. This vulnerability can lead to a Denial of Service DoS condition when a us...
CVE-2024-12534 Denial of Service (DoS) in open-webui/open-webui
In version v0.3.32 of open-webui/open-webui, the application allows users to submit large payloads in the email and password fields during the sign-in process due to the lack of character length validation on these inputs. This vulnerability can lead to a Denial of Service DoS condition when a us...
CVE-2020-12534
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2021-27381
A vulnerability has been identified in Solid Edge SE2020 All Versions SE2020MP13, Solid Edge SE2021 All Versions SE2021MP3. Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds read past the end of an allocated structure...
CVE-2021-27381
A vulnerability has been identified in Solid Edge SE2020 All Versions SE2020MP13, Solid Edge SE2021 All Versions SE2021MP3. Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds read past the end of an allocated structure...
CVE-2021-27381
Solid Edge CVE-2021-27381 affects Solid Edge SE2020 (before MP13) and SE2021 (before MP3). The flaw is an out-of-bounds read when parsing PAR files, enabling an attacker to execute code in the current process. Remediation: update to Solid Edge SE2020 MP13 or later, and SE2021 MP3 or later (note: ...
CVE-2021-27381
A vulnerability has been identified in Solid Edge SE2020 All Versions SE2020MP13, Solid Edge SE2021 All Versions SE2021MP3. Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds read past the end of an allocated structure...
CVE-2018-12534
A SQL injection issue was discovered in the Quick Chat plugin before 4.00 for WordPress...
CVE-2018-12534
The CVE-2018-12534 entry describes a SQL injection vulnerability in the WordPress Quick Chat plugin, affecting versions prior to 4.00. Multiple sources (NVD/NVD-affiliates, CNVD) confirm an SQL injection that could allow a remote attacker to execute arbitrary SQL commands, with impact to confiden...
CVE-2017-12534
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...
CVE-2017-12534
CVE-2017-12534 is a remote code execution vulnerability in HPE Intelligent Management Center (iMC) PLAT 7.3 (E0504). The root cause, per SRC-2017-0017, is an Expression Language injection in ictExpertCSVDownload.xhtml (beanName handling) that allows code execution with SYSTEM context. It is fixed...
CVE-2020-12534
CVE-2020-12534 is rejected/not used per the description; not an active vulnerability entry.