Lucene search
K

47 matches found

CVE
CVE
added 2026/06/23 4:48 p.m.11 views

CVE-2026-54010

CVE-2026-54010 affects Open WebUI prior to version 0.9.6. An authenticated user could attach arbitrary file_id values to their own chat messages without ownership/read checks, and then leverage a forged chat-file link to access or delete the victim’s file via shared-chat authorization. The root c...

8.3CVSS6AI score0.00241EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/06/23 4:48 p.m.36 views

CVE-2026-54010 Open WebUI: Forged chat-file link allows cross-user file read and deletion

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI lets an authenticated user attach arbitrary fileid values to their own chat message without checking whether they own or can read those files. If the attacker then shares...

8.3CVSS0.00241EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvme-multipath: fixed the suspicious RCU usage warning When I run the NVME over TCP test in virtme-ng, I receive the following “suspicious RCU usage” warning in nvmempathaddsysfslink: ''' 5.024557 T44 nvmet: Created nvm...

5.5CVSS5.5AI score0.00129EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/20 6:13 a.m.6 views

Server-side Request Forgery (SSRF)

Overview agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the parseurl, prepareimage and openaiaudiototext functions. An attacker can access internal resources and potentially exfiltra...

7.5CVSS7.3AI score0.00284EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/20 4:15 a.m.34 views

CVE-2026-6604 modelscope agentscope Cloud Metadata Endpoint _openai_tools.py openai_audio_to_text server-side request forgery

A vulnerability was identified in modelscope agentscope up to 1.0.18. Affected by this issue is the function parseurl/prepareimage/openaiaudiototext of the file src/agentscope/tool/multimodality/openaitools.py of the component Cloud Metadata Endpoint. Such manipulation of the argument...

7.5CVSS0.00284EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/13 7:22 p.m.5 views

CVE-2026-21916

A UNIX Symbolic Link Symlink Following vulnerability in the CLI of Juniper Networks Junos OS allows a local, authenticated attacker with low privileges to escalate their privileges to root which will lead to a complete compromise of the system. When after a user has performed a specific 'file lin...

7.3CVSS5.8AI score0.00129EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/10 12:30 a.m.5 views

EUVD-2026-21080

A UNIX Symbolic Link Symlink Following vulnerability in the CLI of Juniper Networks Junos OS allows a local, authenticated attacker with low privileges to escalate their privileges to root which will lead to a complete compromise of the system. When after a user has performed a specific 'file lin...

7.3CVSS5.9AI score0.00129EPSS
Exploits0References2
CNVD
CNVD
added 2026/04/10 12:0 a.m.2 views

OpenClaw Sandbox Bypass Vulnerability

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a sandbox bypass vulnerability that can be exploited by an attacker to read arbitrary local files using mediaUrl and fileUrl alias parameters that bypass localRoots validation...

8.6CVSS5.5AI score0.00555EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.8 views

PT-2026-31745

A UNIX Symbolic Link Symlink Following vulnerability in the CLI of Juniper Networks Junos OS allows a local, authenticated attacker with low privileges to escalate their privileges to root which will lead to a complete compromise of the system. When after a user has performed a specific 'file lin...

7.3CVSS5.9AI score0.00129EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/27 6:31 p.m.7 views

EUVD-2026-16727

A security vulnerability has been detected in letta-ai letta 0.16.4. This vulnerability affects the function convertmessagecreatetomessage of the file letta/helpers/messagehelper.py of the component File URL Handler. Such manipulation of the argument ImageContent leads to server-side request...

6.5CVSS6.3AI score0.00327EPSS
Exploits1References5
EUVD
EUVD
added 2026/03/16 3:30 p.m.3 views

EUVD-2026-12107

In Bun before 1.3.5, the default trusted dependencies list aka trust allow list can be spoofed by a non-npm package in the case of a matching name for file, link, git, or github...

7.1CVSS5.8AI score0.00388EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2026/02/26 12:0 a.m.10 views

PT-2026-22222

Name of the Vulnerable Software and Affected Versions Initiative versions prior to 0.32.4 Description Initiative is a self-hosted project management platform vulnerable to Stored Cross-Site Scripting XSS in the document upload functionality. Users with upload permissions within the "Initiatives"...

8.7CVSS6.2AI score0.00551EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.5 views

PT-2026-20860

Name of the Vulnerable Software and Affected Versions RustDesk Client for Windows affected versions not specified Description A security issue exists in RustDesk Client for Windows related to the Transfer File feature. A local attacker with low-privileged code execution capabilities can disclose...

5.5CVSS6.1AI score0.00319EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/01/27 10:26 p.m.20 views

CVE-2026-24910

In Bun before 1.3.5, the default trusted dependencies list aka trust allow list can be spoofed by a non-npm package in the case of a matching name for file, link, git, or github...

5.9CVSS0.00108EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/27 10:26 p.m.5 views

CVE-2026-24910

In Bun before 1.3.5, the default trusted dependencies list aka trust allow list can be spoofed by a non-npm package in the case of a matching name for file, link, git, or github...

5.9CVSS5.9AI score0.00108EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 8:33 a.m.7 views

CVE-2024-39904

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS7.5AI score0.00657EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/02 12:0 a.m.2 views

Linkwarden 安全漏洞

Linkwarden is a self-hosted collaborative bookmark manager from Linkwarden Open Source. A security vulnerability exists in Linkwarden version 2.10.2, which stems from an unvalidated file:// link and could lead to a data leak...

8.7CVSS6.5AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:24 a.m.3 views

CVE-2024-1493

An issue was discovered in GitLab CE/EE affecting all versions starting from 9.2 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, with the processing logic for generating link in dependency files can lead to a regular expression DoS attack on the serve...

6.5CVSS6.3AI score0.0049EPSS
Exploits0References1
NCSC
NCSC
added 2025/05/13 6:58 p.m.6 views

Vulnerabilities fixed in Microsoft Office

Microsoft has fixed vulnerabilities in several Office products. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges and execute arbitrary code with the victim's privileges. Successful exploitation requires the malicious party to trick the victim into openi...

8.4CVSS9.8AI score0.03467EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/04 12:0 a.m.6 views

The vulnerability of Trend Micro Deep Security Agent lies in its improper handling of file access links, which allows attackers to escalate their privileges.

The vulnerability of the Trend Micro Deep Security Agent lies in the incorrect handling of the link before accessing a file. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.2AI score0.00152EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder