CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 6 days ago•4 views

EUVD-2026-33069

Cvelist•added 6 days ago•23 views

CVE-2026-47713 AnythingLLM: Legacy mobile device tokens bypass multi-user workspace scoping after mode migration

2CVSS0.00031EPSS

CVE•added 6 days ago•26 views

CVE-2026-47713

Summary of CVE-2026-47713 : AnythingLLM prior to version 1.13.0 allowed a mobile device token created in single-user mode to survive the migration to multi-user mode without an attached user. In multi-user mode, the mobile authentication middleware accepted this token, causing downstream handlers...

4.3CVSS5.8AI score0.00031EPSS

Exploits1References2Affected Software1

Vulnrichment•added 6 days ago•3 views

CVE-2026-47713 AnythingLLM: Legacy mobile device tokens bypass multi-user workspace scoping after mode migration

Positive Technologies•added 6 days ago•3 views

PT-2026-44551

CNNVD•added 6 days ago•3 views

Exploits1References3

AnythingLLM 安全漏洞

AnythingLLM is an integrated AI application open source by Mintplex. Versions of AnythingLLM prior to 1.13.0 contained a security vulnerability. This vulnerability stemmed from mobile device tokens created in single-user mode being accepted after migration to multi-user mode, without any user...

Packet Storm News•added 2026/05/22 12:0 a.m.•9 views

Security, Privacy, and Ethical Risks in OpenClaw

This paper systematically investigates the security, privacy, and ethical risks, as well as the traceability challenges of OpenClaw, a locally executable AI agent system for natural language interaction and real-world task completion. While OpenClaw shows strong potential for personal assistance,...

5.8AI score

Fedora•added 2026/05/21 3:17 a.m.•7 views

[SECURITY] Fedora 42 Update: mysql8.0-8.0.46-1.fc42

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

Fedora•added 2026/05/21 3:17 a.m.•11 views

[SECURITY] Fedora 42 Update: mysql8.4-8.4.9-1.fc42

Fedora•added 2026/05/21 1:28 a.m.•6 views

[SECURITY] Fedora 43 Update: mysql8.0-8.0.46-1.fc43

Fedora•added 2026/05/21 12:57 a.m.•9 views

[SECURITY] Fedora 44 Update: mysql8.4-8.4.9-1.fc44

RedhatCVE•added 2026/05/16 1:57 a.m.•7 views

CVE-2026-44504

Aegra is a drop-in replacement for LangSmith Deployments. Prior to 0.9.7, with multiple authenticated users on a shared instance are vulnerable to a cross-tenant IDOR. Any authenticated attacker, given another user's threadid, can execute graph runs against the user's thread, read the user's full...

8.6CVSS6AI score0.00014EPSS

Exploits0References1

NVD•added 2026/05/15 8:16 p.m.•7 views

CVE-2026-45399

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, any authenticated user with low privileges can enumerate active background tasks across the system and stop tasks belonging to other users via the GET /api/tasks and POST...

7.1CVSS0.00043EPSS

Exploits1References1

CVE•added 2026/05/15 7:18 p.m.•8 views

CVE-2026-45399

Open WebUI CVE-2026-45399 describes a broken authorization gap in multi-user deployments: before release 0.9.0, authenticated, low-privilege users could enumerate and stop global background tasks via GET /api/tasks and POST /api/tasks/stop/{task_id}, impacting integrity and availability across us...

Exploits1References1Affected Software1

EUVD•added 2026/05/15 7:18 p.m.•6 views

EUVD-2026-30608

ATTACKERKB•added 2026/05/15 7:18 p.m.•4 views

Exploits1References1

CVE-2026-45399

Exploits1References2Affected Software1

Positive Technologies•added 2026/05/14 12:0 a.m.•9 views

PT-2026-41194

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.0 Description An authorization issue allows any authenticated user with low privileges to enumerate active background tasks across the system and stop tasks belonging to other users. This occurs because the...