Lucene search
K

7 matches found

Circl
Circl
added 2024/08/08 2:11 a.m.6 views

CVE-2024-6706

creationtimestamp| type| source ---|---|--- 2024-08-08 02:11:02+00:00| seen| https://t.me/cvedetector/2737...

6.3CVSS6.1AI score0.0062EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2024/08/08 12:0 a.m.581 views

Open WebUI 0.1.105 Persistent Cross Site Scripting

KL-001-2024-005: Open WebUI Stored Cross-Site Scripting Title: Open WebUI Stored Cross-Site Scripting Advisory ID: KL-001-2024-005 Publication Date: 2024.08.06 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-005.txt 1. Vulnerability Details Affected Vendor: Open WebUI...

6.3CVSS7.1AI score0.0062EPSS
Exploits3
0day.today
0day.today
added 2024/08/08 12:0 a.m.211 views

Open WebUI 0.1.105 Persistent Cross Site Scripting Vulnerability

Title: Open WebUI Stored Cross-Site Scripting Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-005.txt 1. Vulnerability Details Affected Vendor: Open WebUI Affected Product: Open WebUI Affected Version: 0.1.105 Platform: Debian 12 CWE Classification: CWE-79: Improper...

6.1CVSS7AI score0.0062EPSS
Exploits3
NVD
NVD
added 2024/08/07 11:15 p.m.18 views

CVE-2024-6706

Attackers can craft a malicious prompt that coerces the language model into executing arbitrary JavaScript in the context of the web page...

6.3CVSS0.0062EPSS
Exploits3References3
Vulnrichment
Vulnrichment
added 2024/08/07 11:1 p.m.18 views

CVE-2024-6706 Open WebUI Stored Cross-Site Scripting

Attackers can craft a malicious prompt that coerces the language model into executing arbitrary JavaScript in the context of the web page...

6.9AI score0.0062EPSS
Exploits3References1
Cvelist
Cvelist
added 2024/08/07 11:1 p.m.31 views

CVE-2024-6706 Open WebUI Stored Cross-Site Scripting

Attackers can craft a malicious prompt that coerces the language model into executing arbitrary JavaScript in the context of the web page...

0.0062EPSS
Exploits3References1
KoreLogic Security
KoreLogic Security
added 2024/08/07 12:0 a.m.19 views

Open WebUI Stored Cross-Site Scripting

Vulnerability Details Affected Vendor: Open WebUI Affected Product: Open WebUI Affected Version: 0.1.105 Platform: Debian 12 CWE Classification: CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' CVE ID: CVE-2024-6706 2. Vulnerability Description Attackers...

6.3CVSS7AI score0.0062EPSS
Exploits3Affected Software1
Rows per page
Query Builder