Lucene search
K

55998 matches found

Github Security Blog
Github Security Blog
added 2025/12/04 10:3 p.m.15 views

Open WebUI vulnerable to Server-Side Request Forgery (SSRF) via Arbitrary URL Processing in /api/v1/retrieval/process/web

Summary A Server-Side Request Forgery SSRF vulnerability in Open WebUI allows any authenticated user to force the server to make HTTP requests to arbitrary URLs. This can be exploited to access cloud metadata endpoints AWS/GCP/Azure, scan internal networks, access internal services behind...

8.5CVSS7.1AI score0.03965EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2025/12/04 8:16 p.m.6 views

CVE-2025-65958

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.37, a Server-Side Request Forgery SSRF vulnerability in Open WebUI allows any authenticated user to force the server to make HTTP requests to arbitrary URLs. This can be exploited to...

8.5CVSS0.03965EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/04 6:17 p.m.17 views

CVE-2025-66201

LibreChat is a ChatGPT clone with additional features. Prior to version 0.8.1-rc2, LibreChat is vulnerable to Server-side Request Forgery SSRF, by passing specially crafted OpenAPI specs to its "Actions" feature and making the LLM use those actions. It could be used by an authenticated user with...

8.6CVSS6.7AI score0.00255EPSS
Exploits1References1
CVE
CVE
added 2025/12/04 2:16 p.m.29 views

CVE-2024-45538

The CVE-2024-45538 issue affects Synology DiskStation Manager (DSM) WebAPI Framework and DSMUC, enabling a CSRF vulnerability that can lead to remote arbitrary code execution. Affected are DSM versions prior to 7.2.1-69057-2, 7.2.2-72806, and DSMUC prior to 3.1.4-23079. The vulnerability is categ...

9.6CVSS7.6AI score0.00301EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2025/12/04 2:16 p.m.8 views

CVE-2025-14004

A security flaw has been discovered in dayrui XunRuiCMS up to 4.7.1. Affected is an unknown function of the file /admind45f74adbd95.php?c=email&m=add of the component Email Setting Handler. Performing a manipulation results in server-side request forgery. Remote exploitation of the attack is...

9.8CVSS0.00362EPSS
Exploits1References4
CVE
CVE
added 2025/12/04 1:32 p.m.8 views

CVE-2025-14004

Dayrui XunRuiCMS is affected up to version 4.7.1. The vulnerability lies in the Email Setting Handler component, specifically the file /admind45f74adbd95.php?c=email&m=add, where manipulation enables server-side request forgery. Remote exploitation is possible and exploits have been released publ...

9.8CVSS4.7AI score0.00362EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/04 12:30 p.m.8 views

CVE-2025-12358

The ShopEngine Elementor WooCommerce Builder Addon plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.8.5. This is due to missing nonce validation on the "postaddtolist" function as well as an incorrect permissions callback in the "Api/init"...

4.3CVSS5.5AI score0.00104EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.6 views

xunruicms 代码问题漏洞

xunruicms is a website builder framework for XunRuiCMS individual developers. A code issue vulnerability exists in xunruicms 4.7.1 and earlier versions, which stems from incorrect manipulation of the component Email Setting Handler in the file /admind45f74adbd95.php, which can lead to server-side...

9.8CVSS5AI score0.00362EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.4 views

Open WebUI 代码问题漏洞

Open WebUI is an extensible, feature-rich, user-friendly self-hosted WebUI from Open WebUI open source. A code issue vulnerability exists in versions of Open WebUI prior to 0.6.37 that stems from server-side request forgery and could lead to access to internal networks and services...

8.5CVSS6.7AI score0.03965EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.8 views

PT-2025-49024

Name of the Vulnerable Software and Affected Versions Synology DiskStation Manager DSM versions prior to 7.2.1-69057-2 Synology DiskStation Manager DSM versions 7.2.1-69057-2 through 7.2.2-72806 Synology Unified Controller DSMUC versions prior to 3.1.4-23079 Description A Cross-Site Request Forge...

9.6CVSS7.5AI score0.00301EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.5 views

PT-2025-49128

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.6.37 Description Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. A Server-Side Request Forgery SSRF vulnerability in Open WebUI allows any authenticated user to...

8.5CVSS6.7AI score0.03965EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.4 views

PT-2025-49178

Name of the Vulnerable Software and Affected Versions kube-controller-manager affected versions not specified Description An issue exists in kube-controller-manager when utilizing the in-tree Portworx StorageClass, allowing authorized users to potentially leak information from unprotected endpoin...

9.8CVSS6.3AI score0.0063EPSS
Exploits3References221
Vulnrichment
Vulnrichment
added 2025/12/03 7:36 p.m.3 views

CVE-2025-65027 RomM Chained XSS and CSRF Vulnerabilities Enable Admin Account Takeover

RomM ROM Manager allows users to scan, enrich, browse and play their game collections with a clean and responsive interface. RomM contains multiple unrestricted file upload vulnerabilities that allow authenticated users to upload malicious SVG or HTML files. When these files are accessed the...

7.6CVSS5.5AI score0.00273EPSS
Exploits2References1
CVE
CVE
added 2025/12/03 7:36 p.m.27 views

CVE-2025-65027

RomM (ROM Manager) is affected by multiple unrestricted file upload flaws that allow authenticated users to upload malicious SVG/HTML files. When accessed, the embedded JavaScript enables stored XSS, and, due to a CSRF misconfiguration, can lead to full administrative account takeover (rogue admi...

7.6CVSS5.5AI score0.00273EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2025/12/03 6:48 p.m.3 views

DRUPAL-CONTRIB-2025-120

This module enables you to apply time-based login restrictions and display related warning or logout confirmation pages. The module doesn't sufficiently protect its confirmation routes from cross-site request forgery CSRF, allowing the logout confirmation route to be triggered without user...

8.1CVSS6.8AI score0.00135EPSS
Exploits0References1
CVE
CVE
added 2025/12/03 5:0 p.m.11 views

CVE-2025-20388

CVE-2025-20388 affects Splunk Enterprise and Splunk Cloud Platform. A user with a role that has the high-privilege capability change_authentication could enumerate internal IP addresses and network ports when adding new search peers to a Splunk search head in a distributed environment. Affected v...

2.7CVSS6.3AI score0.00315EPSS
Exploits0References1Affected Software2
Patchstack
Patchstack
added 2025/12/03 7:11 a.m.5 views

WordPress Chartify plugin <= 3.6.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Doan Dinh Van in WordPress Plugin Chartify versions = 3.6.3...

8.8CVSS7AI score0.00133EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.4 views

RockyLinux 8 : idm:DL1 (RLSA-2025:21140)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:21140 advisory. python-kdcproxy: Unauthenticated SSRF via Realm?Controlled DNS SRV CVE-2025-59088 python-kdcproxy: Remote DoS via unbounded TCP upstream buffering...

8.6CVSS5.6AI score0.00453EPSS
Exploits0References5
NVD
NVD
added 2025/12/02 10:16 a.m.5 views

CVE-2025-13871

Cross-Site Request Forgery CSRF in the resource-management feature of ObjectPlanet Opinio 7.26 rev12562 allows to upload files on behalf of the connected users and then access such files without authentication...

8.8CVSS0.00158EPSS
Exploits0References1
OSV
OSV
added 2025/12/02 10:16 a.m.2 views

CVE-2025-13871

Cross-Site Request Forgery CSRF in the resource-management feature of ObjectPlanet Opinio 7.26 rev12562 allows to upload files on behalf of the connected users and then access such files without authentication...

8.8CVSS5.8AI score0.00158EPSS
Exploits0References1
Rows per page
Query Builder