Lucene search
+L

102 matches found

EUVD
EUVD
added 4 days ago5 views

EUVD-2026-43538

OpenClaw versions 2026.5.28 before 2026.6.6 contain an authorization bypass vulnerability in native web search that allows lower-trust callers to perform actions requiring stronger policy checks. Attackers can exploit misconfigured input paths to bypass intended authorization controls and execute...

5.3CVSS6.2AI score0.0016EPSS
Exploits0References3
NVD
NVD
added 5 days ago7 views

CVE-2026-62198

OpenClaw versions 2026.5.28 before 2026.6.6 contain an authorization bypass vulnerability in native web search that allows lower-trust callers to perform actions requiring stronger policy checks. Attackers can exploit misconfigured input paths to bypass intended authorization controls and execute...

5.4CVSS0.0016EPSS
Exploits0References2
Cvelist
Cvelist
added 5 days ago33 views

CVE-2026-62198 OpenClaw 2026.5.28 < 2026.6.6 Authorization Bypass via Web Search

OpenClaw versions 2026.5.28 before 2026.6.6 contain an authorization bypass vulnerability in native web search that allows lower-trust callers to perform actions requiring stronger policy checks. Attackers can exploit misconfigured input paths to bypass intended authorization controls and execute...

5.3CVSS0.0016EPSS
Exploits0References2
CVE
CVE
added 5 days ago14 views

CVE-2026-62198

OpenClaw 2026.5.28 before 2026.6.6 contains an authorization bypass in native web search that lets lower-trust callers perform actions requiring stronger policy checks. Exploitation would involve misconfigured input paths to bypass intended authorization controls and execute restricted operations...

5.4CVSS6.2AI score0.0016EPSS
Exploits0References2Affected Software1
OSV
OSV
added 5 days ago6 views

CVE-2026-62198 OpenClaw 2026.5.28 < 2026.6.6 Authorization Bypass via Web Search

OpenClaw versions 2026.5.28 before 2026.6.6 contain an authorization bypass vulnerability in native web search that allows lower-trust callers to perform actions requiring stronger policy checks. Attackers can exploit misconfigured input paths to bypass intended authorization controls and execute...

5.3CVSS6.2AI score0.0016EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/05 7:13 p.m.12 views

CVE-2026-40516

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the webfetch and websearch tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an...

8.3CVSS5.5AI score0.0018EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in web searches in Google Chrome before version 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption through profile destruction...

8.8CVSS7AI score0.0073EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/15 7:22 p.m.14 views

CVE-2026-45331 Open WebUI: Full SSRF Vulnerability in the RAG Web Search Feature

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, validateurl in backend/openwebui/retrieval/web/utils.py calls validators.ipv6ip, private=True, but the validators library does NOT implement the private keyword for IPv6 — the call...

8.5CVSS5.8AI score0.00286EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/15 7:22 p.m.50 views

CVE-2026-45331 Open WebUI: Full SSRF Vulnerability in the RAG Web Search Feature

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, validateurl in backend/openwebui/retrieval/web/utils.py calls validators.ipv6ip, private=True, but the validators library does NOT implement the private keyword for IPv6 — the call...

8.5CVSS0.00286EPSS
Exploits1References1
CVE
CVE
added 2026/05/15 7:22 p.m.28 views

CVE-2026-45331

CVE-2026-45331 concerns Open WebUI’s validate_url() in backend/open_webui/retrieval/web/utils.py, where a call to validators.ipv6(ip, private=True) raises a ValidationError due to the library not implementing the private keyword for IPv6. This causes IPv6 addresses to bypass the intended filter, ...

8.5CVSS5.8AI score0.00286EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/05/15 7:22 p.m.5 views

CVE-2026-45331 Open WebUI: Full SSRF Vulnerability in the RAG Web Search Feature

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, validateurl in backend/openwebui/retrieval/web/utils.py calls validators.ipv6ip, private=True, but the validators library does NOT implement the private keyword for IPv6 — the call...

8.5CVSS7.2AI score0.00286EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/05/12 2:9 p.m.57 views

CVE-2026-42260 Open-WebSearch: SSRF in `fetchWebContent` MCP tool: bracketed IPv6 literals and non-resolving hostname check bypass `isPrivateOrLocalHostname`

Open-WebSearch is a multi-engine MCP server, CLI, and local daemon for agent web search and content retrieval. Prior to 2.1.7, isPublicHttpUrl / assertPublicHttpUrl in src/utils/urlSafety.ts do not recognize bracketed IPv6 literals and do not resolve DNS, which combine to allow non-blind SSRF wit...

8.2CVSS0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/12 2:9 p.m.8 views

CVE-2026-42260 Open-WebSearch: SSRF in `fetchWebContent` MCP tool: bracketed IPv6 literals and non-resolving hostname check bypass `isPrivateOrLocalHostname`

Open-WebSearch is a multi-engine MCP server, CLI, and local daemon for agent web search and content retrieval. Prior to 2.1.7, isPublicHttpUrl / assertPublicHttpUrl in src/utils/urlSafety.ts do not recognize bracketed IPv6 literals and do not resolve DNS, which combine to allow non-blind SSRF wit...

8.2CVSS5.8AI score0.00215EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/17 6:31 p.m.7 views

EUVD-2026-23452

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the webfetch and websearch tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an...

8.3CVSS5.8AI score0.0018EPSS
Exploits1References4
CVE
CVE
added 2026/04/17 4:2 p.m.36 views

CVE-2026-40516

Technical details about CVE-2026-40516 are not publicly available in the provided Connected documents; the description exists but without explicit vendor/product/versions in this set. Monitor for updates.

8.3CVSS5.8AI score0.0018EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/17 4:2 p.m.5 views

CVE-2026-40516 OpenHarness SSRF via web_fetch and web_search

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the webfetch and websearch tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an...

8.3CVSS5.8AI score0.0018EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/04/17 4:2 p.m.5 views

CVE-2026-40516

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the webfetch and websearch tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an...

8.3CVSS5.8AI score0.0018EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/04/17 4:2 p.m.39 views

CVE-2026-40516 OpenHarness SSRF via web_fetch and web_search

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the webfetch and websearch tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an...

8.3CVSS0.0018EPSS
Exploits1References3
OSV
OSV
added 2026/04/17 4:2 p.m.3 views

CVE-2026-40516 OpenHarness SSRF via web_fetch and web_search

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the webfetch and websearch tools that allows attackers to access private and localhost HTTP services by manipulating tool parameters without proper validation of target addresses. Attackers can influence an...

7.8CVSS6AI score0.0018EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.11 views

OpenHarness 安全漏洞

OpenHarness is a lightweight development and runtime framework for Data Intelligence Lab@HKU, open-source in nature. OpenHarness has a security vulnerability, which stems from the lack of target address validation in the webFetch and webSearch tools. This vulnerability may lead to server-side...

8.3CVSS5.8AI score0.0018EPSS
Exploits1References1
Rows per page
Query Builder