5 matches found
CVE-2026-54021 Open WebUI: Authenticated users can target arbitrary configured Ollama backends via unguarded url_idx path parameter
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several direct, index-addressed Ollama proxy routes accept a caller-supplied urlidx path parameter and use it as a raw index into the admin-configured OLLAMABASEURLS list. Access...
EUVD-2019-2464
Malware in sbrugna...
CVE-2019-10664
Domoticz before 4.10578 allows SQL Injection via the idx parameter in CWebServer::GetFloorplanImage in WebServer.cpp...
Out-Of-Bounds Write
json-patch is affected by an out-of-bounds write vulnerability. This is due to a lack of index checking of the idx parameter in patch.go, which could allow an attacker to cause a denial of service condition...
SmartCMS (index.php, idx parameter) SQL Injection Vulnerability
Exploit for php platform in category web applications ============================================================================================================= o SmartCMS = SQL Injection Vulnerability Software : SmartMS Vendor : http://smartcms.nl/ Author : NoGe Contact :...