Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/05/19 1:58 a.m.11 views

CVE-2026-45314

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.3, the channel webhook create/update flow accepts arbitrary profileimageurl values, including data:image/svg+xml;base64,... payloads. The profile image endpoint then decodes and serves...

7.4CVSS6AI score0.00212EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/26 12:34 a.m.8 views

CVE-2025-3855

A vulnerability was found in CodeCanyon RISE Ultimate Project Manager 3.8.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php/teammembers/saveprofileimage/ of the component Profile Picture Handler. The manipulation of the argument...

5.3CVSS7.1AI score0.00405EPSS
Exploits1References1
NVD
NVD
added 2025/04/22 1:15 a.m.7 views

CVE-2025-3855

A vulnerability was found in CodeCanyon RISE Ultimate Project Manager 3.8.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php/teammembers/saveprofileimage/ of the component Profile Picture Handler. The manipulation of the argument...

5.3CVSS0.00405EPSS
Exploits1References4
CNVD
CNVD
added 2017/09/28 12:0 a.m.4 views

Mojoomla Annual Maintenance Contract Management System Arbitrary File Upload Vulnerability

Mojoomla Annual Maintenance Contract AMC Management System is a contract document management system. An arbitrary file upload vulnerability exists in profilesetting image handling in the Mojoomla AMC Management System. A remote attacker can exploit this vulnerability to upload arbitrary files...

6.5CVSS7.2AI score0.02276EPSS
Exploits1References1
Rows per page
Query Builder