CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

Snyk•added 2026/05/14 8:24 p.m.•6 views

Authorization Bypass Through User-Controlled Key

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key through the chatcompletion process. An attacker can access and continue another user's conversation by supplying a known Chat ID in API requests. This is only...

7.1CVSS5.8AI score0.00039EPSS

Exploits1References2

Cvelist•added 2026/05/08 11:1 p.m.•29 views

CVE-2026-42456 AnythingLLM: Cross-User TTS Audio Disclosure via Chat ID (IDOR)

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to version 1.12.1, GET /api/workspace/:slug/tts/:chatId in AnythingLLM returns the text-to-speech audio for another user's chat response within the same workspace...

4.3CVSS0.0001EPSS

Exploits1References3

NVD•added 2026/03/12 7:16 p.m.•1 views

CVE-2026-32231

ZeptoClaw is a personal AI assistant. Prior to 0.7.6, the generic webhook channel trusts caller-supplied identity fields sender, chatid from the request body and applies authorization checks to those untrusted values. Because authentication is optional and defaults to disabled authtoken: None, an...

8.2CVSS0.00049EPSS

Exploits1References4

OSV•added 2026/03/12 6:22 p.m.•1 views

CVE-2026-32231 ZeptoClaw: Generic webhook channel trusts caller-supplied identity fields; allowlist is checked against untrusted payload data

8.2CVSS5.9AI score0.00049EPSS

Exploits1References6

ATTACKERKB•added 2026/03/12 6:22 p.m.•2 views

CVE-2026-32231

8.2CVSS5.9AI score0.00049EPSS

Exploits1References5Affected Software1

OSV•added 2026/03/12 4:36 p.m.•1 views

GHSA-46Q5-G3J9-WX5C ZeptoClaw: Generic webhook channel trusts caller-supplied identity fields; allowlist is checked against untrusted payload data

Summary The generic webhook channel trusts caller-supplied identity fields sender, chatid from the request body and applies authorization checks to those untrusted values. Because authentication is optional and defaults to disabled authtoken: None, an attacker who can reach POST /webhook can spoo...

8.2CVSS6AI score0.00049EPSS

Exploits1References6

Veracode•added 2025/10/31 9:34 a.m.•2 views

Improper Input Validation

flowise is vulnerable to improper input validation. The vulnerability is due to missing validation of chatflowId and chatId parameters, which allows an attacker to access arbitrary files through improper handling of file upload operations...

7.2AI score

Exploits0

Veracode•added 2025/10/30 10:15 a.m.•2 views

Arbitrary File Read

flowise is vulnerable to an arbitrary file read. The vulnerability is due to improper validation of the chatId parameter in the /api/v1/get-upload-file and /api/v1/openai-assistants-file/download endpoints, which allows an attacker to read unintended files on the local filesystem and potentially...

6.7AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-1844

Malicious code in bioql PyPI...

8.6CVSS6.6AI score0.00107EPSS

Exploits0References1

Github Security Blog•added 2025/09/15 8:11 p.m.•3 views

Flowise has arbitrary file access due to missing chat flow id validation

Summary Missing chat flow id validation allows an attacker to access arbitrary file. Details Commit https://github.com/FlowiseAI/Flowise/commit/8bd3de41533de78e4ef6c980e5704a1f9cb7ae6f and https://github.com/FlowiseAI/Flowise/commit/c2b830f279e454e8b758da441016b2234f220ac7 added check for filenam...

7AI score

Exploits0References4Affected Software1

OSV•added 2025/09/15 8:0 p.m.•2 views

GHSA-99PG-HQVX-R4GF Flowise has an Arbitrary File Read

Summary An arbitrary file read vulnerability in the chatId parameter supplied to both the /api/v1/get-upload-file and /api/v1/openai-assistants-file/download endpoints allows unauthenticated users to read unintended files on the local filesystem. In the default Flowise configuration this allows...

9.1CVSS6.9AI score

Exploits0References2

Positive Technologies•added 2025/01/30 12:0 a.m.•3 views

PT-2025-4030 · Embedai · Embedai

Name of the Vulnerable Software and Affected Versions: EmbedAI versions 2.1 and below Description: An Improper Access Control issue has been found, allowing an authenticated attacker to write messages into other users' chat by changing the chat id parameter of the POST request "/embedai/chats/sen...

5.8CVSS6.5AI score0.00086EPSS

Exploits0References5

Circl•added 2024/01/28 12:56 p.m.•0 views

GHSA-3J9P-Q7W7-2GCF

creationtimestamp| type| source ---|---|--- 2024-01-28 12:56:25+00:00| seen| https://t.me/arpsyndicate/3291...

4.8AI score

Exploits0References1

Circl•added 2023/10/12 10:33 p.m.•0 views

CVE-2023-27312

creationtimestamp| type| source ---|---|--- 2023-10-12 22:33:21+00:00| seen| https://t.me/cibsecurity/72197...

5.4CVSS4.7AI score0.00127EPSS

Exploits0References1

Positive Technologies•added 2020/12/12 12:0 a.m.•2 views

PT-2020-17288 · Ignite Realtime · Openfire

Name of the Vulnerable Software and Affected Versions: Ignite Realtime Openfire version 4.6.0 Description: The issue is related to a Stored XSS in the create-bookmark.jsp file, specifically with the groupchatJID parameter. This allows for potential malicious script execution. Recommendations: For...

5.4CVSS5.1AI score0.00281EPSS

Exploits1References6

Metasploit•added 2020/07/29 5:41 p.m.•334 views

Telegram Message Client

This module can be used to send a document and/or message to multiple chats on telegram. Please refer to the module documentation for info on how to retrieve the bot token and corresponding chat ID values. Module Options msf use auxiliary/client/telegram/sendmessage msf auxiliarysendmessage show...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by