Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Positive Technologies
Positive Technologiesadded 2025/09/23 12:0 a.m.3 views

PT-2025-39160

Name of the Vulnerable Software and Affected Versions librechat versions prior to the fix Description An authorization bypass exists due to incorrect access control checks. The checkAccess function within api/server/middleware/roles/access.js utilizes permissions.some for permission validation,...

5.3CVSS5.4AI score0.00036EPSS
Exploits0References7
CNNVD
CNNVDadded 2025/09/23 12:0 a.m.2 views

LibreChat 访问控制错误漏洞

LibreChat is an enhanced ChatGPT clone by Danny Avila Personal Developer. LibreChat suffers from an Access Control Error vulnerability that stems from the checkAccess function in api/server/middleware/roles/access.js that uses permissions.some for permission validation, resulting in improper acce...

5.3CVSS5.5AI score0.00036EPSS
Exploits0References3
CVE
CVEadded 2004/09/01 4:0 a.m.40 views

CVE-2001-1367

The CVE-2001-1367 entry concerns PHPSlice, specifically the checkAccess function. Affected versions 0.1.1 through 0.1.6 (including 0.1.4) do not properly verify administrative access level, enabling remote attackers to gain privileges. Documented impact is privilege escalation. A temporary mitiga...

10CVSS7.3AI score0.00933EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder