Lucene search
K

15988 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/06 5:30 p.m.2 views

CVE-2026-35050

text-generation-webui is an open-source web interface for running Large Language Models. Prior to 4.1.1, users can save extention settings in "py" format and in the app root directory. This allows to overwrite python files, for instance the "download-model.py" file could be overwritten. Then, thi...

9.1CVSS5.9AI score0.00438EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/04/06 5:30 p.m.24 views

CVE-2026-35050 text-generation-webui affected by Remote Code Execution (RCE) through Path Traversal at "Session -> Save extention settings to user_data/settings.yaml".

text-generation-webui is an open-source web interface for running Large Language Models. Prior to 4.1.1, users can save extention settings in "py" format and in the app root directory. This allows to overwrite python files, for instance the "download-model.py" file could be overwritten. Then, thi...

9.1CVSS0.00438EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/06 5:30 p.m.1 views

CVE-2026-35050 text-generation-webui affected by Remote Code Execution (RCE) through Path Traversal at "Session -> Save extention settings to user_data/settings.yaml".

text-generation-webui is an open-source web interface for running Large Language Models. Prior to 4.1.1, users can save extention settings in "py" format and in the app root directory. This allows to overwrite python files, for instance the "download-model.py" file could be overwritten. Then, thi...

9.1CVSS5.9AI score0.00438EPSS
Exploits1References1
NVD
NVD
added 2026/04/06 5:17 p.m.6 views

CVE-2026-35029

LiteLLM is a proxy server AI Gateway to call LLM APIs in OpenAI or native format. Prior to 1.83.0, the /config/update endpoint does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to modify proxy configuration and environment...

8.8CVSS0.26409EPSS
Exploits2References8
NVD
NVD
added 2026/04/06 5:17 p.m.8 views

CVE-2026-34976

Dgraph is an open source distributed GraphQL database. Prior to 25.3.1, the restoreTenant admin mutation is missing from the authorization middleware config admin.go, making it completely unauthenticated. Unlike the similar restore mutation which requires Guardian-of-Galaxy authentication,...

10CVSS0.00452EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/06 4:35 p.m.4 views

CVE-2026-35029 LiteLLM affected by privilege escalation via unrestricted proxy configuration endpoint

LiteLLM is a proxy server AI Gateway to call LLM APIs in OpenAI or native format. Prior to 1.83.0, the /config/update endpoint does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to modify proxy configuration and environment...

8.7CVSS6.3AI score0.26409EPSS
Exploits2References1
Cvelist
Cvelist
added 2026/04/06 4:12 p.m.18 views

CVE-2026-34976 Dgraph Affected by Pre-Auth Database Overwrite + SSRF + File Read via restoreTenant Missing Authorization

Dgraph is an open source distributed GraphQL database. Prior to 25.3.1, the restoreTenant admin mutation is missing from the authorization middleware config admin.go, making it completely unauthenticated. Unlike the similar restore mutation which requires Guardian-of-Galaxy authentication,...

10CVSS0.00452EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/06 4:12 p.m.1 views

CVE-2026-34976 Dgraph Affected by Pre-Auth Database Overwrite + SSRF + File Read via restoreTenant Missing Authorization

Dgraph is an open source distributed GraphQL database. Prior to 25.3.1, the restoreTenant admin mutation is missing from the authorization middleware config admin.go, making it completely unauthenticated. Unlike the similar restore mutation which requires Guardian-of-Galaxy authentication,...

10CVSS5.9AI score0.00452EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/06 4:12 p.m.5 views

EUVD-2026-19360

Dgraph is an open source distributed GraphQL database. Prior to 25.3.1, the restoreTenant admin mutation is missing from the authorization middleware config admin.go, making it completely unauthenticated. Unlike the similar restore mutation which requires Guardian-of-Galaxy authentication,...

10CVSS5.9AI score0.00452EPSS
Exploits1References3
CVE
CVE
added 2026/04/06 4:12 p.m.25 views

CVE-2026-34976

CVE-2026-34976 affects Dgraph prior to 25.3.1 where the restoreTenant admin mutation is missing from the authorization middleware, allowing an unauthenticated attacker to specify attacker-controlled backup locations (including file://), S3/MinIO credentials, encryption key paths, and Vault IDs. T...

10CVSS5.9AI score0.00452EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.7 views

WWBN AVideo 跨站请求伪造漏洞

WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 26.0 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from the lack of CSRF token verification for custom site endpoints, which could allow...

4.3CVSS5.7AI score0.00112EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.7 views

Text Generation Web UI 路径遍历漏洞

Text Generation Web UI is a local AI UI interface developed by oobabooga’s individual developer. Versions of Text Generation Web UI prior to 4.1.1 contained a path traversal vulnerability. This vulnerability stems from allowing extended settings to be saved in the py format, which can overwrite...

9.1CVSS6AI score0.00438EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2026/04/06 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2026:1177-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.1CVSS5.9AI score0.00433EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.8 views

PT-2026-30713

WWBN AVideo is an open source video platform. In versions 26.0 and prior, the site customization endpoint at admin/customize settings nativeUpdate.json.php lacks CSRF token validation and writes uploaded logo files to disk before the ORM's domain-based security check executes. Combined with...

4.3CVSS5.8AI score0.00112EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.12 views

Dgraph 安全漏洞

Dgraph is an open-source, horizontally scalable distributed GraphQL database with a graphical backend. Versions of Dgraph prior to 25.3.1 contained a security vulnerability. This vulnerability stemmed from a flaw in the restoreTenant management mechanism, which lacked an authorization middleware...

10CVSS7.4AI score0.00452EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/05 9:30 p.m.4 views

EUVD-2019-20058

Remote Process Explorer 1.0.0.16 contains a local buffer overflow vulnerability that allows attackers to cause a denial of service by sending a crafted payload to the Add Computer dialog. Attackers can paste a malicious string into the computer name textbox and trigger a crash by connecting to th...

6.9CVSS6.2AI score0.00146EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/05 9:30 p.m.4 views

EUVD-2018-21766

IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the 'From Addr' and 'To Addr' fields and trigger the crash by clicking the Start...

6.8CVSS6.2AI score0.00202EPSS
Exploits1References4
EUVD
EUVD
added 2026/04/05 9:30 p.m.5 views

EUVD-2019-20048

R i386 3.5.0 contains a local buffer overflow vulnerability in the GUI Preferences dialog that allows local attackers to trigger a structured exception handler SEH overwrite by supplying malicious input. Attackers can craft a payload string in the 'Language for menus and messages' field to...

8.6CVSS6.7AI score0.00159EPSS
Exploits0References5
NVD
NVD
added 2026/04/05 9:16 p.m.5 views

CVE-2019-25681

Xlight FTP Server 3.9.1 contains a structured exception handler SEH overwrite vulnerability that allows local attackers to crash the application and overwrite SEH pointers by supplying a crafted buffer string. Attackers can inject a 428-byte payload through the program execution field in virtual...

8.6CVSS0.00208EPSS
Exploits1References4
NVD
NVD
added 2026/04/05 9:16 p.m.8 views

CVE-2019-25656

R i386 3.5.0 contains a local buffer overflow vulnerability in the GUI Preferences dialog that allows local attackers to trigger a structured exception handler SEH overwrite by supplying malicious input. Attackers can craft a payload string in the 'Language for menus and messages' field to...

8.6CVSS0.00159EPSS
Exploits0References4
Rows per page
Query Builder