Lucene search
K

53 matches found

NVD
NVD
added 5 days ago9 views

CVE-2026-59212

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.9.6 before 0.10.0, verifyknowledgefileaccess only checked read access while file write and delete routes later trusted object-derived access through writable model meta.knowledge entries, allowing a user...

5.4CVSS0.00308EPSS
Exploits1References4
CVE
CVE
added 5 days ago16 views

CVE-2026-59212

Open WebUI vulnerability CVE-2026-59212 affects the Open WebUI platform. From version 0.9.6 up to, but not including, 0.10.0, verify_knowledge_file_access only checked read access; write and delete routes were later trusted via writable model.meta.knowledge entries. This allowed a user with read-...

5.4CVSS6AI score0.00308EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 5 days ago36 views

CVE-2026-59212 Open WebUI: Model meta.knowledge read-only file access can be upgraded to file write/delete

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.9.6 before 0.10.0, verifyknowledgefileaccess only checked read access while file write and delete routes later trusted object-derived access through writable model meta.knowledge entries, allowing a user...

5.4CVSS0.00308EPSS
Exploits1References4
EUVD
EUVD
added 5 days ago7 views

EUVD-2026-42634

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.9.6 before 0.10.0, verifyknowledgefileaccess only checked read access while file write and delete routes later trusted object-derived access through writable model meta.knowledge entries, allowing a user...

5.4CVSS6AI score0.00308EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 5 days ago10 views

CVE-2026-59212

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.9.6 before 0.10.0, verifyknowledgefileaccess only checked read access while file write and delete routes later trusted object-derived access through writable model meta.knowledge entries, allowing a user...

5.4CVSS6AI score0.00308EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.19 views

PT-2026-48461

🚨 CVE-2026-46558 Plane is an open-source project management tool. Prior to version 1.3.1, there is a cross-workspace asset authorization bypass lets any authenticated user read, copy, delete, and overwrite assets in other Plane workspaces. This issue has been patched in version 1.3.1. 🎖@cveNotify...

8.3CVSS5.2AI score0.0028EPSS
Exploits3References4
CNNVD
CNNVD
added 2026/06/05 12:0 a.m.11 views

Termix 安全漏洞

Termix is a server management platform developed by Karmaa’s individual developers. Versions of Termix prior to 2.3.2 contained security vulnerabilities. These vulnerabilities stemmed from the lack of verification by 16 file manager endpoints to ensure that the requesting user had an SSH session...

8.1CVSS5.5AI score0.00282EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/06/01 2:17 p.m.18 views

praisonai-platform: Project endpoints accept any project_id without workspace ownership check, cross-workspace read/update/delete IDOR

Summary Type: Insecure Direct Object Reference. The project CRUD endpoints GET / PATCH / DELETE /workspaces/workspaceid/projects/projectid and GET .../projectid/stats gate access on requireworkspacememberworkspaceid only, then resolve projectid through ProjectService.getprojectid / updateprojecti...

5.8AI score0.00032EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/13 3:33 p.m.13 views

Goobi viewer - Core: Unauthenticated Solr Streaming Expression Proxy

Summary The Goobi viewer REST endpoint POST /api/v1/index/stream accepted an arbitrary Solr streaming expression from unauthenticated network clients and forwarded it to the backend Solr server without restriction. An attacker could read the complete Solr index and, in default Solr deployments,...

9.8CVSS6AI score0.0041EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2026/04/01 5:28 p.m.6 views

CVE-2026-34603

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/cli recently added lexical path-traversal checks to the dev media routes, but the implementation still validates only the path string and does not resolve symlink or junction targets. If a link already exists under the...

8.3CVSS0.00408EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/01 4:8 p.m.2 views

CVE-2026-34603

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/cli recently added lexical path-traversal checks to the dev media routes, but the implementation still validates only the path string and does not resolve symlink or junction targets. If a link already exists under the...

7.1CVSS5.8AI score0.00408EPSS
Exploits0References3Affected Software1
Snyk
Snyk
added 2026/03/24 2:33 a.m.11 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the pathfor function in DiskService. An attacker can read, write, or delete arbitrary files on the server by supplying blob keys containing path traversal sequences like ../. Note: In most cases, blob keys are...

9.8CVSS6.4AI score0.00567EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.6 views

PT-2026-20382

The Brevo - Email, SMS, Web Push, Chat, and more. plugin for WordPress is vulnerable to authorization bypass due to type juggling in all versions up to, and including, 3.3.0. This is due to the use of loose comparison == instead of strict comparison === when validating the installation ID in the...

6.5CVSS5.5AI score0.00463EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/06 9:4 p.m.29 views

CVE-2026-25574 Payload Affected by Cross-Collection IDOR in payload-preferences Access Control (Multi-Auth Environments)

Payload is a free and open source headless content management system. Prior to 3.74.0, a cross-collection Insecure Direct Object Reference IDOR vulnerability exists in the payload-preferences internal collection. In multi-auth collection environments using Postgres or SQLite with default...

5.4CVSS0.00193EPSS
Exploits0References1
CVE
CVE
added 2026/02/06 9:4 p.m.21 views

CVE-2026-25574

Payload CMS prior to 3.74.0 is affected by a cross-collection IDOR in the payload-preferences internal collection. In multi-auth environments using Postgres or SQLite with default serial/auto-increment IDs, authenticated users from one auth collection can read and delete preferences belonging to ...

5.4CVSS5.3AI score0.00193EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/10/21 8:20 p.m.7 views

CVE-2025-62287

Vulnerability in the Oracle Life Sciences InForm product of Oracle Health Sciences Applications component: Web Server. The supported version that is affected is 7.0.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Life Science...

6.1CVSS5.8AI score0.00175EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.7 views

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management allows a perpetrator to gain access to read, modify, and delete information.

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management involves security segmentation flaws. Exploiting this vulnerability could allow an attacker to gain read, modify, and delete access to information...

5.5CVSS7.1AI score0.0021EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.10 views

The vulnerability of the Preferences component of the Oracle CRM system’s customer relationship management module. The Oracle E-Business Suite technical foundation for automating business processes, allowing attackers to gain access to read, modify, and delete information.

The vulnerability of the Preferences component of the Oracle CRM system’s customer relationship management module is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain read, modify, and delete access to information...

5.5CVSS7.2AI score0.0029EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.10 views

The vulnerability of the PIA Core Technology component of the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a hacker to gain read, modify, and delete access to data.

The vulnerability of the PIA Core Technology component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain read, modify, and delete access to data...

6.4CVSS7.2AI score0.00224EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/28 12:0 a.m.7 views

The vulnerability of the software for Hitachi Energy’s equipment control and management systems, Hitachi Energy MicroSCADA X SYS600 and Pro SYS600, arises from incorrect restrictions on the path name to the restricted-access catalog. This allows attackers to gain access to read, modify, and delete system files.

The vulnerability of the software for controlling and managing equipment in Hitachi Energy’s MicroSCADA X SYS600 and Pro SYS600 systems lies in improper restrictions on the path name to the restricted-access catalog. Exploiting this vulnerability could allow a malicious actor to gain read, modify...

9.9CVSS8AI score0.00611EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder