Lucene search
+L

4 matches found

EUVD
EUVD
added 2025/12/09 12:25 a.m.6 views

EUVD-2025-201843

DeepChat is an open-source AI chat platform that supports cloud models and LLMs. Versions 0.5.1 and below are vulnerable to XSS attacks through improperly sanitized Mermaid content. The recent security patch for MermaidArtifact.vue is insufficient and can be bypassed using unquoted HTML attribute...

9.6CVSS6.2AI score0.0049EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/09/17 12:0 a.m.5 views

Boost Note 注入漏洞

Boost Note is an open source developer-friendly workspace with IDE-like UX. it provides the following features focusing on information management and searchability. A security vulnerability exists in Boost Note versions prior to 0.22.0 that stems from a lack of effective filtering and validation ...

9.8CVSS8.5AI score0.02764EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2021/03/11 10:15 p.m.2 views

CVE-2021-28154

Camunda Modeler aka camunda-modeler through 4.6.0 allows arbitrary file access. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which manipulates the readFile and writeFile APIs. NOTE: the vendor states "The way we secured the app is that it...

9.1CVSS8.5AI score0.01481EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/03/11 12:0 a.m.9 views

PT-2021-17779 · Camunda · Camunda Modeler

Name of the Vulnerable Software and Affected Versions: Camunda Modeler versions through 4.6.0 Description: The issue allows arbitrary file access. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which manipulates the readFile and writeFile API...

9.1CVSS7.2AI score0.01481EPSS
Exploits1References5
Rows per page
Query Builder