Lucene search
K

7 matches found

EUVD
EUVD
added 2026/06/22 12:31 a.m.9 views

EUVD-2026-38199

A vulnerability was detected in activepieces up to 0.83.0. This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/lib/variables/processors/file.ts of the component File URL Handler. The manipulation results in server-side request forgery. The attack can be...

6.5CVSS6.2AI score0.00201EPSS
Exploits0References6
NVD
NVD
added 2026/06/21 11:16 p.m.12 views

CVE-2026-12813

A vulnerability was detected in activepieces up to 0.83.0. This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/lib/variables/processors/file.ts of the component File URL Handler. The manipulation results in server-side request forgery. The attack can be...

6.5CVSS0.00201EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/21 10:30 p.m.5 views

CVE-2026-12813

A vulnerability was detected in activepieces up to 0.83.0. This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/lib/variables/processors/file.ts of the component File URL Handler. The manipulation results in server-side request forgery. The attack can be...

6.5CVSS6.2AI score0.00201EPSS
Exploits0References5
CVE
CVE
added 2026/06/21 10:30 p.m.12 views

CVE-2026-12813

Affected software: activepieces (

6.5CVSS6.2AI score0.00201EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/21 10:30 p.m.29 views

CVE-2026-12813 activepieces File URL file.ts handleUrlFile server-side request forgery

A vulnerability was detected in activepieces up to 0.83.0. This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/lib/variables/processors/file.ts of the component File URL Handler. The manipulation results in server-side request forgery. The attack can be...

6.5CVSS0.00201EPSS
Exploits0References5
Snyk
Snyk
added 2026/03/27 7:26 p.m.5 views

Server-side Request Forgery (SSRF)

Overview letta is a Create LLM agents with long-term memory and custom tools Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the convertmessagecreatetomessage function in the File URL Handler component when processing the ImageContent argument. An attacker...

6.5CVSS6.6AI score0.00327EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/27 5:5 p.m.3 views

CVE-2026-4964

A security vulnerability has been detected in letta-ai letta 0.16.4. This vulnerability affects the function convertmessagecreatetomessage of the file letta/helpers/messagehelper.py of the component File URL Handler. Such manipulation of the argument ImageContent leads to server-side request...

6.5CVSS6.3AI score0.00327EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder