CVE-2026-34225

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Versions 0.7.2 and below contain a Blind Server Side Request Forgery in the functionality that allows editing an image via a prompt. The affected function performs a GET request to a user-provided U...

CVE-2026-33234

CVE-2026-33234 affects AutoGPT versions 0.1.0–0.6.51, where SendEmailBlock accepts user-provided smtp_server and smtp_port and passes them to Python’s smtplib.SMTP() without IP address validation. This bypasses hardened SSRF protections (validate_url_host and BLOCKED_IP_NETWORKS) used by other bl...

Server-side Request Forgery (SSRF)

Overview ragas is an Evaluation framework for RAG and LLM applications Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via improper validation of URLs in the retrievedcontexts parameter when processing multimodal inputs. An attacker can access arbitrary files,...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004315)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004315 advisory. A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass...

HackTheBox-Penetration-Testing-Methodology

HackTheBox Penetration Testing Methodology by 9mmpterodacty...

EUVD-2001-0410

Malware in sbrugna...

EUVD-2002-2158

Malware in sbrugna...

EUVD-2001-1014

Malware in sbrugna...

EUVD-2004-2411

Malware in sbrugna...

EUVD-2001-0879

Malware in sbrugna...

EUVD-2002-0347

Malware in sbrugna...

EUVD-2020-18360

Malware in sbrugna...

EUVD-2003-0172

Malware in sbrugna...

EUVD-2002-0127

Malware in sbrugna...

EUVD-2004-1467

Malware in sbrugna...

EUVD-2001-1220

Malware in sbrugna...

EUVD-2001-0775

Malware in sbrugna...

EUVD-2002-2095

Malware in sbrugna...

EUVD-2008-1741

Malware in sbrugna...

EUVD-2023-57495

Malicious code in bioql PyPI...