3 matches found
CVE-2025-0740
creationtimestamp| type| source ---|---|--- 2025-01-30 11:16:00+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgxeajuefg2h 2025-01-30 11:30:26+00:00| seen| https://infosec.exchange/users/cve/statuses/113917075552632233 2025-01-30 12:59:36+00:00| seen|...
CVE-2025-0740
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This vulnerability allows an authenticated attacker to obtain chat messages belonging to other users by changing the “CHATID” of the endpoint "/embedai/chats/loadmessages?chatid="...
CVE-2025-0740 Improper Access Control vulnerability in EmbedAI
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This vulnerability allows an authenticated attacker to obtain chat messages belonging to other users by changing the “CHATID” of the endpoint "/embedai/chats/loadmessages?chatid="...