Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/06/23 4:39 p.m.33 views

CVE-2026-54021 Open WebUI: Authenticated users can target arbitrary configured Ollama backends via unguarded url_idx path parameter

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several direct, index-addressed Ollama proxy routes accept a caller-supplied urlidx path parameter and use it as a raw index into the admin-configured OLLAMABASEURLS list. Access...

6.3CVSS0.0021EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-2464

Malware in sbrugna...

9.8CVSS9.3AI score0.07549EPSS
Exploits4References5
Cvelist
Cvelist
added 2019/03/31 1:14 p.m.40 views

CVE-2019-10664

Domoticz before 4.10578 allows SQL Injection via the idx parameter in CWebServer::GetFloorplanImage in WebServer.cpp...

9.9AI score0.07549EPSS
Exploits4References3
Veracode
Veracode
added 2018/09/07 5:59 a.m.35 views

Out-Of-Bounds Write

json-patch is affected by an out-of-bounds write vulnerability. This is due to a lack of index checking of the idx parameter in patch.go, which could allow an attacker to cause a denial of service condition...

7.7CVSS7.3AI score0.01952EPSS
Exploits0References8Affected Software1
0day.today
0day.today
added 2012/11/26 12:0 a.m.31 views

SmartCMS (index.php, idx parameter) SQL Injection Vulnerability

Exploit for php platform in category web applications ============================================================================================================= o SmartCMS = SQL Injection Vulnerability Software : SmartMS Vendor : http://smartcms.nl/ Author : NoGe Contact :...

7.1AI score
Exploits0
Rows per page
Query Builder