Lucene search
K

8 matches found

Vulnrichment
Vulnrichment
added 2026/04/14 1:39 a.m.2 views

CVE-2026-34225 Open WebUI has Blind Server Side Request Forgery in its Image Edit Functionality

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Versions 0.7.2 and below contain a Blind Server Side Request Forgery in the functionality that allows editing an image via a prompt. The affected function performs a GET request to a user-provided U...

4.3CVSS5.7AI score0.00227EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-18953

Malicious code in bioql PyPI...

10CVSS8.2AI score0.14059EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-51562

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00546EPSS
Exploits1References2
OSV
OSV
added 2025/06/23 9:31 p.m.3 views

GHSA-H5GC-RM8J-5GPR LangChain Community SSRF vulnerability exists in RequestsToolkit component

A Server-Side Request Forgery SSRF vulnerability exists in the RequestsToolkit component of the langchain-community package specifically, langchaincommunity.agenttoolkits.openapi.toolkit.RequestsToolkit in langchain-ai/langchain version 0.0.27. This vulnerability occurs because the toolkit does n...

8.4CVSS5.8AI score0.14059EPSS
Exploits1References5
OSV
OSV
added 2025/06/23 9:15 p.m.3 views

PYSEC-2025-70

A Server-Side Request Forgery SSRF vulnerability exists in the RequestsToolkit component of the langchain-community package specifically, langchaincommunity.agenttoolkits.openapi.toolkit.RequestsToolkit in langchain-ai/langchain version 0.0.27. This vulnerability occurs because the toolkit does n...

10CVSS5.8AI score0.14059EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/06/23 12:0 a.m.6 views

PT-2025-26643 · Langchain Ai · Langchain

Name of the Vulnerable Software and Affected Versions: langchain-ai/langchain version 0.0.27 Description: A Server-Side Request Forgery SSRF vulnerability exists in the RequestsToolkit component of the langchain-community package. This vulnerability occurs because the toolkit does not enforce...

10CVSS8AI score0.14059EPSS
Exploits1References16
RedhatCVE
RedhatCVE
added 2025/05/22 11:43 p.m.5 views

CVE-2022-4201

A blind SSRF in GitLab CE/EE affecting all from 11.3 prior to 15.4.6, 15.5 prior to 15.5.5, and 15.6 prior to 15.6.1 allows an attacker to connect to local addresses when configuring a malicious GitLab Runner...

5.3CVSS6.2AI score0.00546EPSS
Exploits1References1
OSV
OSV
added 2023/01/27 10:15 p.m.3 views

UBUNTU-CVE-2022-4201

A blind SSRF in GitLab CE/EE affecting all from 11.3 prior to 15.4.6, 15.5 prior to 15.5.5, and 15.6 prior to 15.6.1 allows an attacker to connect to local addresses when configuring a malicious GitLab Runner...

5.3CVSS5.8AI score0.00546EPSS
Exploits1References2
Rows per page
Query Builder