2 matches found
CVE-2025-69286
creationtimestamp| type| source ---|---|--- 2026-01-01 01:12:04+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbd74xcgal2u 2026-01-02 18:50:43+00:00| published-proof-of-concept| Telegram/yvEUayxcitdp3BxnZyJKKsx9SQ4slGt9KJm017IeBxHD9Y 2026-01-02 21:53:57+00:00|...
CVE-2025-69286
RAGFlow is an open-source RAG Retrieval-Augmented Generation engine. In versions prior to 0.22.0, the use of an insecure key generation algorithm in the API key and beta assistant/agent share auth token generation process allows these tokens to be mutually derivable. Specifically, both tokens are...