Lucene search
K

569 matches found

NVD
NVD
added 2026/06/26 10:16 a.m.7 views

CVE-2026-6658

A vulnerability in jupyter/nbconvert versions tag. This vulnerability impacts any server using nbconvert to render notebooks as HTML, allowing attackers to execute arbitrary JavaScript in the context of users viewing the HTML export...

5.4CVSS0.00134EPSS
Exploits0References1
CVE
CVE
added 2026/06/26 9:40 a.m.8 views

CVE-2026-6658

The CVE-2026-6658 issue affects jupyter/nbconvert versions <= 7.17.0. The vulnerability arises because the data_mermaid block in share/templates/lab/base.html.j2 renders text/vnd.mermaid cell output directly into HTML without escaping, enabling Cross-site Scripting (XSS) by breaking out of the...

5.4CVSS6.3AI score0.00134EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/26 9:40 a.m.36 views

CVE-2026-6658 Cross-site Scripting (XSS) in jupyter/nbconvert

A vulnerability in jupyter/nbconvert versions tag. This vulnerability impacts any server using nbconvert to render notebooks as HTML, allowing attackers to execute arbitrary JavaScript in the context of users viewing the HTML export...

5.4CVSS0.00134EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/26 9:40 a.m.5 views

CVE-2026-6658

A vulnerability in jupyter/nbconvert versions = 7.17.0 allows for Cross-site Scripting XSS via unsanitized text/vnd.mermaid output in HTML exports. The datamermaid block in share/templates/lab/base.html.j2 renders text/vnd.mermaid cell output directly into HTML without escaping, enabling attacker...

5.4CVSS6.3AI score0.00134EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/26 9:40 a.m.6 views

EUVD-2026-39642

A vulnerability in jupyter/nbconvert versions tag. This vulnerability impacts any server using nbconvert to render notebooks as HTML, allowing attackers to execute arbitrary JavaScript in the context of users viewing the HTML export...

5.4CVSS6.3AI score0.00134EPSS
Exploits0References1
NVD
NVD
added 2026/06/23 6:18 p.m.14 views

CVE-2026-54011

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6,Open WebUI renders Mermaid blocks from Markdown files in the file preview panel and inserts the generated SVG into the DOM using innerHTML. Because Mermaid is configured with...

8.7CVSS0.002EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/23 4:47 p.m.33 views

CVE-2026-54011 Open WebUI: Stored XSS in Mermaid Markdown Preview

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6,Open WebUI renders Mermaid blocks from Markdown files in the file preview panel and inserts the generated SVG into the DOM using innerHTML. Because Mermaid is configured with...

8.7CVSS0.002EPSS
Exploits1References1
CVE
CVE
added 2026/06/23 4:47 p.m.10 views

CVE-2026-54011

Open WebUI vulnerability CVE-2026-54011 is a stored XSS in Mermaid Markdown Preview. Affected versions include main and 0.8.12; the Mermaid rendering uses securityLevel: 'loose' and injects SVG via innerHTML in the file preview path, enabling JavaScript execution in the app origin. The issue is c...

8.7CVSS6AI score0.002EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/23 4:47 p.m.6 views

CVE-2026-54011

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6,Open WebUI renders Mermaid blocks from Markdown files in the file preview panel and inserts the generated SVG into the DOM using innerHTML. Because Mermaid is configured with...

8.7CVSS6AI score0.002EPSS
Exploits1References2Affected Software1
Snyk
Snyk
added 2026/06/17 2:14 p.m.4 views

Cross-site Scripting (XSS)

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Cross-site Scripting XSS in the Markdown file preview process when rendering Mermaid blocks with a permissive security configuration. An attacker can execute arbitrary JavaScript in the context of the victim'...

8.7CVSS5.9AI score0.002EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/06/17 2:14 p.m.10 views

Open WebUI: Stored XSS in Mermaid Markdown Preview

Summary Open WebUI renders Mermaid blocks from Markdown files in the file preview panel and inserts the generated SVG into the DOM using innerHTML. Because Mermaid is configured with securityLevel: 'loose', attacker-controlled Mermaid content can be rendered unsafely in this flow. A working paylo...

8.7CVSS5.6AI score0.002EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.16 views

PT-2026-50483

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.6 Description The application renders Mermaid blocks from Markdown files in the file preview panel and inserts the generated SVG into the DOM using innerHTML. Because Mermaid is configured with securityLevel:...

8.7CVSS5.8AI score0.002EPSS
Exploits1References7
OSV
OSV
added 2026/06/11 12:41 a.m.10 views

MAL-2026-5539 Malicious code in mermaid-v11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 416d5c5ab1bc70076021520f20e67c3c52a81b74832379e19012fa2f6526c469 The package impersonates the legitimate mermaid diagramming library name mermaid-v11, bogus version 9999.0.2, description 'Mermaid v11 diagramming...

5.5AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/11 12:41 a.m.10 views

Malicious code in mermaid-v11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 416d5c5ab1bc70076021520f20e67c3c52a81b74832379e19012fa2f6526c469 The package impersonates the legitimate mermaid diagramming library name mermaid-v11, bogus version 9999.0.2, description 'Mermaid v11 diagramming...

5.5AI score
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/08 2:59 p.m.9 views

CVE-2026-41150

A flaw was found in Mermaid, a JavaScript tool used for creating diagrams and charts. This vulnerability allows a remote attacker to trigger a denial-of-service DoS condition. The attack occurs when a specially crafted gantt chart, which uses the excludes attribute to exclude all dates, is...

6.5CVSS5.1AI score0.00384EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/08 2:59 p.m.9 views

CVE-2026-41159

A flaw was found in Mermaid, a JavaScript tool for creating diagrams and charts. A remote attacker could exploit this vulnerability by injecting malicious Cascading Style Sheets CSS through specific configuration options, such as fontFamily, themeCSS, and altFontFamily. This injected CSS can bypa...

5.4CVSS5.3AI score0.00398EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/06/08 8:58 a.m.12 views

CVE-2026-11455

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function checkcmdexists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of...

5CVSS5.2AI score0.00936EPSS
Exploits0References1
NVD
NVD
added 2026/06/07 9:16 a.m.12 views

CVE-2026-11455

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function checkcmdexists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of...

5CVSS0.00936EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/07 7:0 a.m.11 views

EUVD-2026-34985

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function checkcmdexists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of...

5CVSS5.2AI score0.00936EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/06/07 7:0 a.m.9 views

CVE-2026-11455

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function checkcmdexists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of...

5CVSS5.2AI score0.00936EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder