Lucene search
+L

2362 matches found

CVE
CVE
added yesterday10 views

CVE-2026-14499

CVE-2026-14499 affects Langflow OSS 1.0.0–1.10.1. An authenticated user could execute arbitrary commands with elevated privileges due to improper validation of user-supplied input in the Python Interpreter component, resulting in OS command injection (CWE-78). IBM’s bulletin assigns CVSS v3.1 bas...

8.8CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday8 views

CVE-2026-14499 Langflow is affected by remote code execution, denial of service, path traversal, and exposed credentials due to multiple unauthenticated and insufficiently authorized API endpoints

IBM Langflow OSS 1.0.0 through 1.10.1 Langflow could allow an authenticated user to execute arbitrary commands with elevated privileges on the system due to improper validation of user supplied input in the Python Interpreter component...

8.8CVSS
Exploits0References1
RedhatCVE
RedhatCVE
added yesterday4 views

CVE-2026-13713

A flaw was found in YAML::Syck. This vulnerability allows a remote attacker to cause a denial of service DoS by providing a specially crafted YAML document. The flaw occurs due to a use-after-free and double-free condition when an anchor node is redefined while still on the parser's value stack,...

7.5CVSS6.1AI score0.00186EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 3 days ago4 views

The vulnerability of the ngx_http_js_module module in the NGINX JavaScript (njs) interpreter allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the ngxhttpjsmodule module in the NGINX JavaScript njs interpreter is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...

8.1CVSS6.4AI score0.00889EPSS
Exploits0References4Affected Software2
NVD
NVD
added 5 days ago7 views

CVE-2026-62199

OpenClaw versions before 2026.6.6 contain a flaw in host exec environment filtering that can miss interpreter startup variables. When the affected feature is enabled and reachable, a lower-trust caller or configured input path can supply crafted environment variables to execute or persist actions...

8.8CVSS0.00295EPSS
Exploits0References2
CVE
CVE
added 2026/07/09 4:48 p.m.11 views

CVE-2026-59216

Open WebUI prior to 0.10.0 is vulnerable to cross-user code execution via unvalidated Socket.IO event-caller session_id. The get_event_call path delivers execute:python and execute:tool events to a client-supplied session_id after only confirming the session is connected, enabling an attacker who...

9CVSS6AI score0.00308EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/07/09 4:48 p.m.32 views

CVE-2026-59216 Open WebUI: Cross-user code-interpreter and tool execution via unvalidated Socket.IO event-caller session_id

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, geteventcall delivered execute:python and execute:tool Socket.IO events to a client-supplied sessionid after checking only that the session was connected, allowing authenticated users who learne...

7.7CVSS0.00308EPSS
Exploits0References4
OSV
OSV
added 2026/07/09 4:48 p.m.4 views

CVE-2026-59216 Open WebUI: Cross-user code-interpreter and tool execution via unvalidated Socket.IO event-caller session_id

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, geteventcall delivered execute:python and execute:tool Socket.IO events to a client-supplied sessionid after checking only that the session was connected, allowing authenticated users who learne...

7.7CVSS6.1AI score0.00308EPSS
Exploits0References6
CVE
CVE
added 2026/07/09 12:37 p.m.21 views

CVE-2026-12116

CVE-2026-12116 affects Xerte Online Toolkits. The vulnerability allows remote code execution by editing the antivirus binary path in the tools server configuration to point to a PHP interpreter, causing any uploaded PHP data to execute. Affected product: Xerte Online Toolkits (open‑source e‑learn...

9.8CVSS5.9AI score0.0038EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/09 12:37 p.m.36 views

CVE-2026-12116 CVE-2026-12116

A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP data that will then be executed...

0.0038EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/09 12:37 p.m.7 views

EUVD-2026-42582

A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP data that will then be executed...

9.8CVSS5.9AI score0.0038EPSS
Exploits0References3
OSV
OSV
added 2026/07/09 12:37 p.m.3 views

CVE-2026-12116 CVE-2026-12116

A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP data that will then be executed...

9.8CVSS6.1AI score0.0038EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/07/09 12:0 a.m.8 views

PT-2026-56882

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.10.0 Description Authenticated users can execute Python code or tools within another user's session. This occurs because the get event call function delivers execute:python and execute:tool Socket.IO events to a...

7.7CVSS6.2AI score0.00308EPSS
Exploits0References8
CERT
CERT
added 2026/07/09 12:0 a.m.5 views

Xerte Online Toolkit contains an authentication bypass that allows for RCE

Overview Two vulnerabilities have been discovered in Xerte Online Toolkits, an open-source e-learning authoring toolsuite intended for the creation of learning materials within a web browser. CVE-2026-14261 tracks the persistence of the /setup/ directory after installation, which allows an...

9.8CVSS6.6AI score0.00571EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/07/02 7:27 p.m.7 views

Security Bulletin: Arbitrary Code Execution in Python Interpreter Component

Summary A vulnerability in the Python Interpreter component allowed authenticated users to execute arbitrary Python code and escalate privileges to superuser level. An attacker with valid credentials could bypass security controls through the PythonREPLComponent, directly access the database, and...

9.9CVSS6.1AI score
Exploits0Affected Software1
EUVD
EUVD
added 2026/07/01 12:34 a.m.9 views

EUVD-2025-210391

picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in reduce methods. Attackers can craft pickle payloads that bypass picklescan detection and execute arbitrary code when loaded via pickle.load...

8.1CVSS6.1AI score0.00499EPSS
Exploits0References3
Snyk
Snyk
added 2026/06/30 11:20 p.m.6 views

Deserialization of Untrusted Data

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the code.InteractiveInterpreter process in reduce methods. An attacker can execute arbitrary code by...

8.1CVSS6.1AI score0.00499EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:16 p.m.5 views

CVE-2025-71371

picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in reduce methods. Attackers can craft pickle payloads that bypass picklescan detection and execute arbitrary code when loaded via pickle.load...

8.1CVSS0.00499EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:8 p.m.13 views

CVE-2025-71371

CVE-2025-71371 affects picklescan

8.1CVSS6.1AI score0.00499EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 10:8 p.m.3 views

CVE-2025-71371 picklescan - Remote Code Execution via code.InteractiveInterpreter Detection Bypass

picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in reduce methods. Attackers can craft pickle payloads that bypass picklescan detection and execute arbitrary code when loaded via pickle.load...

7.6CVSS6.3AI score0.00499EPSS
Exploits0References4
Rows per page
Query Builder