Lucene search
K

1574 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/15 9:17 p.m.6 views

CVE-2026-45345

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.5.7, a user can modify another user's model even if its visibility is set to Private. By changing the access permissions during editing, unauthorized access can be gained. This...

6.5CVSS5.8AI score0.00226EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/15 9:3 p.m.7 views

CVE-2026-44569

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.19, there's an IDOR in the channels message management system that allows authenticated users to modify or delete any message within channels they have read access to. The vulnerability...

7.1CVSS5.8AI score0.00266EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/05/15 8:40 p.m.13 views

EUVD-2026-30636

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, a parsing difference between the urlparse and requests libraries led to an SSRF bypass vulnerability. This vulnerability is fixed in 0.9.5...

8.5CVSS5.8AI score0.00292EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/15 8:32 p.m.14 views

EUVD-2026-30628

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, when setting model permissions so that a group has read access to it, intending for other users to use it, those users also can read the model's system prompt. However users may...

4.3CVSS5.8AI score0.0022EPSS
Exploits1References1
NVD
NVD
added 2026/05/15 8:16 p.m.26 views

CVE-2026-45339

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, Open WebUI allows admins to restrict which API endpoints an API key can access. When an API key is restricted from /api/v1/messages, requests using the Authorization: Bearer sk-...

6.5CVSS0.00309EPSS
Exploits1References1
NVD
NVD
added 2026/05/15 8:16 p.m.43 views

CVE-2026-45399

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, any authenticated user with low privileges can enumerate active background tasks across the system and stop tasks belonging to other users via the GET /api/tasks and POST...

7.1CVSS0.0027EPSS
Exploits1References1
NVD
NVD
added 2026/05/15 8:16 p.m.14 views

CVE-2026-44561

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the isuserchannelmember function checks whether a ChannelMember row exists but does not check the isactive field. When a user is deactivated from a group or DM channel removed by the...

5.4CVSS0.00178EPSS
Exploits1References1
NVD
NVD
added 2026/05/15 8:16 p.m.34 views

CVE-2026-44553

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, administrative role changes and user deletions do not iterate SESSIONPOOL to disconnect affected sessions. As a result, a user whose admin role has been revoked retains admin...

8.1CVSS0.00284EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/15 7:40 p.m.22 views

EUVD-2026-30618

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the type: "file" non-full-context, type: "text" with collectionname, and bare collectionname/collectionnames paths in the getsourcesfromitems function perform vector store queries...

6.5CVSS5.8AI score0.00366EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/15 7:26 p.m.11 views

EUVD-2026-30616

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the ydoc:document:update Socket.IO event handler checks whether the sender is a member of the document's Socket.IO room line 678 but does not verify that the sender has write...

5.4CVSS5.8AI score0.0022EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/15 7:20 p.m.16 views

EUVD-2026-30605

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, a user just needs to use the API endpoint: /api/chat/completions with their own API key generated in OWUI and the Chat ID of another user to continue the conversation of the other...

7.1CVSS5.8AI score0.00231EPSS
Exploits1References1
NVD
NVD
added 2026/05/15 4:16 p.m.25 views

CVE-2026-45773

Turborepo is a high-performance build system for JavaScript and TypeScript codebases. Prior to 2.9.14, Turborepo's self-hosted login and SSO browser flows did not validate a CSRF state value on the localhost callback. While the CLI was waiting for authentication, a malicious web page could send a...

6.5CVSS0.00124EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/15 3:51 p.m.12 views

CVE-2026-45773

Turborepo is a high-performance build system for JavaScript and TypeScript codebases. Prior to 2.9.14, Turborepo's self-hosted login and SSO browser flows did not validate a CSRF state value on the localhost callback. While the CLI was waiting for authentication, a malicious web page could send a...

5.1CVSS5.9AI score0.00124EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/15 3:51 p.m.29 views

CVE-2026-45773

CVE-2026-45773 affects Turborepo’s self-hosted login and SSO browser flows. Before 2.9.14, the localhost callback did not validate the CSRF state value, allowing a malicious page to send a crafted request while the CLI waited for authentication. If accepted ahead of the legitimate callback, the C...

6.5CVSS5.9AI score0.00124EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/15 3:51 p.m.57 views

CVE-2026-45773 Turborepo: Login callback CSRF/session fixation

Turborepo is a high-performance build system for JavaScript and TypeScript codebases. Prior to 2.9.14, Turborepo's self-hosted login and SSO browser flows did not validate a CSRF state value on the localhost callback. While the CLI was waiting for authentication, a malicious web page could send a...

5.1CVSS0.00124EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.15 views

PT-2026-41312

Name of the Vulnerable Software and Affected Versions Turborepo versions prior to 2.9.14 Description Turborepo is a high-performance build system for JavaScript and TypeScript codebases. The self-hosted login and SSO browser flows fail to validate a CSRF Cross-Site Request Forgery state value on...

6.5CVSS5.8AI score0.00124EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.20 views

Turborepo 跨站请求伪造漏洞

Turborepo is a high-performance JavaScript and TypeScript build system open source by Vercel. Versions of Turborepo prior to 2.9.14 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from the lack of validation of the CSRF status value on the localhost callback in t...

6.5CVSS5.7AI score0.00124EPSS
Exploits0References1
NVD
NVD
added 2026/05/14 9:16 p.m.47 views

CVE-2026-44666

HRConvert2 is a self-hosted, drag-and-drop & nosql file conversion server & share tool. Prior to 3.3.8, the sanitizeString function in convertCore.php is missing backtick and tab \t from its strip list. User input then reaches shellexec, where the shell interprets these characters and commands...

9.3CVSS0.00297EPSS
Exploits0References2
NVD
NVD
added 2026/05/14 9:16 p.m.18 views

CVE-2026-44679

Tuist is a virtual platform team for Swift app devs. Prior to 1.180.10, the forgot password flow allows an unauthenticated attacker to repeatedly trigger password reset emails for a known account without server-side throttling. In self-hosted deployments, this can be abused to send large volumes ...

6.9CVSS0.00288EPSS
Exploits0References1
CVE
CVE
added 2026/05/14 8:40 p.m.20 views

CVE-2026-44679

CVE-2026-44679 affects Tuist. Before 1.180.10, the forgot-password flow allows an unauthenticated attacker to repeatedly trigger password-reset emails for a known account without server-side throttling, enabling potential email spamming and downstream resource consumption in self-hosted deploymen...

6.9CVSS5.8AI score0.00288EPSS
Exploits0References1
Rows per page
Query Builder