3 matches found
CVE-2025-0741
creationtimestamp| type| source ---|---|--- 2025-01-30 11:16:03+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgxeamhmyh2f 2025-01-30 11:30:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113917075587379126 2025-01-30 13:11:27+00:00| seen|...
CVE-2025-0741 Improper Access Control vulnerability in EmbedAI
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This vulnerability allows an authenticated attacker to write messages into other users chat by changing the parameter "chatid" of the POST request "/embedai/chats/sendmessage"...
CVE-2025-0741
EmbedAI versions 2.1 and below are affected by an improper access control vulnerability that lets an authenticated attacker write messages into other users’ chats by altering the chat_id parameter in the POST /embedai/chats/send_message endpoint. Affected component: EmbedAI chat messages API. Roo...