Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 6 days ago5 views

CVE-2026-55611

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. From 1.11.1 until 1.14.1, userId/workspaceId scoping to the parsed-files read/delete paths was added. However, the POST /api/workspace/:slug/embed-parsed-file/:fileId flow...

0.00236EPSS
Exploits0References3
EUVD
EUVDadded 6 days ago4 views

EUVD-2026-39009

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. From 1.11.1 until 1.14.1, userId/workspaceId scoping to the parsed-files read/delete paths was added. However, the POST /api/workspace/:slug/embed-parsed-file/:fileId flow...

5.9AI score0.00236EPSS
Exploits0References3
CVE
CVEadded 6 days ago8 views

CVE-2026-55611

CVE-2026-55611 affects AnythingLLM. The vulnerability allows cross-tenant IDOR deletion of parsed-files via the endpoint POST /api/workspace/:slug/embed-parsed-file/:fileId. From 1.11.1 to 1.14.1, ownership-scoped access was added for parsed-files reads/deletes, but the delete path still removes ...

5.9AI score0.00236EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 6 days ago5 views

PT-2026-52036

Name of the Vulnerable Software and Affected Versions AnythingLLM versions 1.11.1 through 1.14.0 Description An issue exists where the application fails to perform ownership checks when deleting parsed files. Specifically, the 'POST /api/workspace/:slug/embed-parsed-file/:fileId' endpoint deletes...

5.8AI score0.00236EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/05/23 3:12 a.m.2 views

CVE-2023-24563

A vulnerability has been identified in Solid Edge SE2022 All versions V222.0MP12, Solid Edge SE2023 All versions V223.0Update2. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execut...

7.8CVSS7.3AI score0.00217EPSS
Exploits0References1
OSV
OSVadded 2023/11/16 3:15 p.m.2 views

CVE-2023-47043

Adobe Media Encoder version 24.0.2 and earlier and 23.6 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the...

7.8CVSS5.9AI score0.00364EPSS
Exploits0References1
OSV
OSVadded 2023/01/10 12:15 p.m.3 views

CVE-2022-47935

A vulnerability has been identified in JT Open All versions V11.1.1.0, JT Utilities All versions V13.1.1.0, Solid Edge All versions V2023. The Jt1001.dll contains a memory corruption vulnerability while parsing specially crafted JT files. An attacker could leverage this vulnerability to execute...

7.8CVSS5.9AI score0.00279EPSS
Exploits0References1
CNVD
CNVDadded 2016/07/09 12:0 a.m.3 views

Android Mediaserver Remote Code Execution Vulnerability (CNVD-2016-04641)

Android is a Linux-based open source operating system, and Mediaserver is one of its multimedia service components. A security vulnerability in Mediaserver on Android allows remote attackers to exploit the vulnerability to build special files that can be parsed by the user, which can be used to...

9.8CVSS7.7AI score0.01075EPSS
Exploits0References1
Rows per page
Query Builder