Lucene search
K

9920 matches found

Microsoft Security Update
Microsoft Security Update
added yesterday2 views

2026-07 .NET 8.0.29 Security Update for x86 Client (KB5104032)

2026-07 .NET 8.0.29 Security Update for x86 Client KB5104032...

6.1AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added yesterday2 views

2026-07 Cumulative Update for Windows 10 Version 22H2 for x86-based Systems (KB5099539)

2026-07 Cumulative Update for Windows 10 Version 22H2 for x86-based Systems KB5099539...

6.1AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added yesterday2 views

2026-07 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5099535)

2026-07 Cumulative Update for Windows Server 2016 for x64-based Systems KB5099535...

6.1AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added yesterday7 views

2026-07 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5099538)

2026-07 Cumulative Update for Windows 10 Version 1809 for x64-based Systems KB5099538...

6.1AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added yesterday2 views

2026-07 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB5099538)

2026-07 Cumulative Update for Windows 10 Version 1809 for x86-based Systems KB5099538...

6.1AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added yesterday2 views

2026-07 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB5099535)

2026-07 Cumulative Update for Windows 10 Version 1607 for x86-based Systems KB5099535...

6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added yesterday8 views

July 14, 2026—KB5099444 (Monthly Rollup)

None None...

9.9CVSS6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added yesterday4 views

July 14, 2026—KB5099539 (OS Builds 19045.7548 and 19044.7548)

None None...

9.6CVSS6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added yesterday6 views

July 14, 2026—KB5099538 (OS Build 17763.9020)

None None...

9.8CVSS6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added yesterday6 views

July 14, 2026—KB5099414 (OS Build 22631.7376)

None None...

9.8CVSS6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added yesterday7 views

July 14, 2026—KB5101649 (OS Build 28000.2525)

None None...

9.8CVSS6.1AI score
Exploits0
Patchstack
Patchstack
added 6 days ago5 views

WordPress BetterDocs – AI Documentation, Knowledge Base, Docs, Wikis, FAQ with Chatbot plugin <= 4.6.0 - Authenticated (Custom+) SQL Injection vulnerability

Authenticated Custom+ SQL Injection vulnerability discovered by PRISM in WordPress Plugin BetterDocs versions = 4.6.0...

6.5CVSS6AI score0.0026EPSS
Exploits0References1Affected Software1
NVD
NVD
added 6 days ago8 views

CVE-2026-59217

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, the file upload path accepted metadata.knowledgeid and auto-linked uploaded files to a target knowledge base without applying the write-access check used by /api/v1/knowledge//file/add, allowing...

4.3CVSS0.00272EPSS
Exploits1References4
OSV
OSV
added 6 days ago3 views

CVE-2026-59217 Open WebUI: Upload `metadata.knowledge_id` bypasses the knowledge-base write-access check (read-only users can add files to KB)

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, the file upload path accepted metadata.knowledgeid and auto-linked uploaded files to a target knowledge base without applying the write-access check used by /api/v1/knowledge//file/add, allowing...

4.3CVSS6.2AI score0.00272EPSS
Exploits1References6
Cvelist
Cvelist
added 6 days ago30 views

CVE-2026-59217 Open WebUI: Upload `metadata.knowledge_id` bypasses the knowledge-base write-access check (read-only users can add files to KB)

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, the file upload path accepted metadata.knowledgeid and auto-linked uploaded files to a target knowledge base without applying the write-access check used by /api/v1/knowledge//file/add, allowing...

4.3CVSS0.00272EPSS
Exploits1References4
CVE
CVE
added 6 days ago8 views

CVE-2026-59217

Open WebUI prior to version 0.10.0 allowed a metadata.knowledge_id value in file uploads to auto-link files to a knowledge base, bypassing the write-access check on /api/v1/knowledge//file/add. This enabled read-only knowledge-base users to add arbitrary files. The issue is fixed in version 0.10....

4.3CVSS6AI score0.00272EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2026/07/02 7:42 p.m.8 views

EUVD-2026-41429

LobeChat through 2.2.9 contains a broken access control vulnerability in the retrieval-augmented-generation semantic search functionality that allows authenticated attackers to access other users' data by exploiting missing user-identifier predicates in the chunk model semanticSearch method...

7.1CVSS5.9AI score0.00238EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/07/02 7:42 p.m.9 views

CVE-2026-59098

LobeChat through 2.2.9 contains a broken access control vulnerability in the retrieval-augmented-generation semantic search functionality that allows authenticated attackers to access other users' data by exploiting missing user-identifier predicates in the chunk model semanticSearch method...

7.1CVSS5.9AI score0.00238EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/07/02 7:42 p.m.37 views

CVE-2026-59098 LobeChat 2.2.9 - Cross-User Document Disclosure via Unscoped RAG Semantic Search

LobeChat through 2.2.9 contains a broken access control vulnerability in the retrieval-augmented-generation semantic search functionality that allows authenticated attackers to access other users' data by exploiting missing user-identifier predicates in the chunk model semanticSearch method...

7.1CVSS0.00238EPSS
Exploits0References4
OSV
OSV
added 2026/07/02 7:42 p.m.2 views

CVE-2026-59098 LobeChat 2.2.9 - Cross-User Document Disclosure via Unscoped RAG Semantic Search

LobeChat through 2.2.9 contains a broken access control vulnerability in the retrieval-augmented-generation semantic search functionality that allows authenticated attackers to access other users' data by exploiting missing user-identifier predicates in the chunk model semanticSearch method...

7.1CVSS6.1AI score0.00238EPSS
Exploits0References7
Rows per page
Query Builder