Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2982 matches found

Chainguard
Chainguardadded 2025/10/27 8:11 p.m.10 views

CVE-2025-62708 vulnerabilities

Vulnerabilities for packages: nemo, open-webui...

8.7CVSS5.8AI score0.00402EPSS
Exploits0
Wolfi
Wolfiadded 2025/10/27 2:47 p.m.3 views

GHSA-VR63-X8VC-M265 vulnerabilities

Vulnerabilities for packages: open-webui...

7AI score
Exploits0
Wolfi
Wolfiadded 2025/10/27 2:47 p.m.5 views

GHSA-JFX9-29X2-RV3J vulnerabilities

Vulnerabilities for packages: open-webui...

7AI score
Exploits0
Wolfi
Wolfiadded 2025/10/27 2:47 p.m.9 views

CVE-2025-62708 vulnerabilities

Vulnerabilities for packages: open-webui...

8.7CVSS7AI score0.00402EPSS
Exploits0
Wolfi
Wolfiadded 2025/10/27 2:47 p.m.13 views

CVE-2025-62707 vulnerabilities

Vulnerabilities for packages: open-webui...

8.7CVSS7AI score0.00402EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/10/24 9:32 p.m.5 views

CVE-2025-4106 WatchGuard Firebox leftover debug code vulnerability

An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0...

8.9CVSS6.5AI score0.00293EPSS
Exploits0References1
CNVD
CNVDadded 2025/10/21 12:0 a.m.4 views

Unspecified Vulnerability in HCL BigFix WebUI

HCL BigFix WebUI is a web based administration page of HCL India. A security vulnerability exists in HCL BigFix WebUI, which stems from an improper response to the HOST information in the HTTP header field, and can be exploited by an attacker to cause a host header poisoning attack...

6.1CVSS6.7AI score0.00177EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/10/14 8:34 p.m.4 views

CVE-2025-62364

text-generation-webui is an open-source web interface for running Large Language Models. In versions through 3.13, a Local File Inclusion vulnerability exists in the character picture upload feature. An attacker can upload a text file containing a symbolic link to an arbitrary file path. When the...

6.2CVSS7AI score0.0052EPSS
Exploits0References1
NVD
NVDadded 2025/10/13 9:15 p.m.4 views

CVE-2025-62364

text-generation-webui is an open-source web interface for running Large Language Models. In versions through 3.13, a Local File Inclusion vulnerability exists in the character picture upload feature. An attacker can upload a text file containing a symbolic link to an arbitrary file path. When the...

6.2CVSS0.0052EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/10/13 8:30 p.m.8 views

CVE-2025-62364 text-generation-webui allows arbitrary file read via symbolic link upload

text-generation-webui is an open-source web interface for running Large Language Models. In versions through 3.13, a Local File Inclusion vulnerability exists in the character picture upload feature. An attacker can upload a text file containing a symbolic link to an arbitrary file path. When the...

6.2CVSS0.0052EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/10/13 8:30 p.m.4 views

CVE-2025-62364 text-generation-webui allows arbitrary file read via symbolic link upload

text-generation-webui is an open-source web interface for running Large Language Models. In versions through 3.13, a Local File Inclusion vulnerability exists in the character picture upload feature. An attacker can upload a text file containing a symbolic link to an arbitrary file path. When the...

6.2CVSS6.6AI score0.0052EPSS
Exploits0References2
CVE
CVEadded 2025/10/13 8:30 p.m.17 views

CVE-2025-62364

The CVE-2025-62364 issue affects text-generation-webui (up to version 3.13). A Local File Inclusion exists in the character picture upload feature: an attacker can upload a text file containing a symbolic link to an arbitrary file path, and when processed the app follows the link and serves the t...

6.2CVSS6.6AI score0.0052EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/10/13 5:29 a.m.7 views

CVE-2025-52647

The BigFix WebUI application responds with HOST information from the HTTP header field making it vulnerable to Host Header Poisoning Attacks...

6.1CVSS6.7AI score0.00177EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/13 12:0 a.m.8 views

PT-2025-41812

Name of the Vulnerable Software and Affected Versions text-generation-webui versions through 3.13 Description text-generation-webui is a web interface for running Large Language Models. A Local File Inclusion issue exists in the character picture upload feature. An attacker can upload a text file...

6.2CVSS6.9AI score0.0052EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/11 12:30 a.m.6 views

EUVD-2025-33794

The BigFix WebUI application responds with HOST information from the HTTP header field making it vulnerable to Host Header Poisoning Attacks...

6.1CVSS6.2AI score0.00177EPSS
Exploits0References2
NVD
NVDadded 2025/10/10 11:15 p.m.10 views

CVE-2025-52647

The BigFix WebUI application responds with HOST information from the HTTP header field making it vulnerable to Host Header Poisoning Attacks...

6.1CVSS0.00177EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/10/10 10:14 p.m.10 views

CVE-2025-52647 HCL BigFix WebUI is affected by a host header poisoning vulnerability

The BigFix WebUI application responds with HOST information from the HTTP header field making it vulnerable to Host Header Poisoning Attacks...

6.1CVSS0.00177EPSS
Exploits0References1
CVE
CVEadded 2025/10/10 10:14 p.m.11 views

CVE-2025-52647

CVE-2025-52647 affects HCL BigFix WebUI and is described as a host header poisoning vulnerability where the application responds with HOST information from HTTP header fields. Connected sources consistently reference this issue in BigFix WebUI across multiple ecosystems (Red Hat, CNVD, NVD, CVE l...

6.1CVSS6.3AI score0.00177EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/10/10 10:14 p.m.4 views

CVE-2025-52647 HCL BigFix WebUI is affected by a host header poisoning vulnerability

The BigFix WebUI application responds with HOST information from the HTTP header field making it vulnerable to Host Header Poisoning Attacks...

6.1CVSS6.3AI score0.00177EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/10 12:0 a.m.4 views

PT-2025-41612

Name of the Vulnerable Software and Affected Versions BigFix WebUI affected versions not specified Description The BigFix WebUI application is susceptible to Host Header Poisoning Attacks. The application responds with HOST information from the HTTP header field. Recommendations At the moment,...

6.1CVSS6.4AI score0.00177EPSS
Exploits0References6
Rows per page
Query Builder