Lucene search
+L

7293 matches found

EUVD
EUVD
added 2026/07/10 12:31 a.m.8 views

EUVD-2026-42726

Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remote attackers to circumvent local-origin IP restrictions on onboarding endpoints by supplying a spoofed X-Forwarded-For header with a loopback address. Attackers can exploit this bypass to...

9.3CVSS6AI score0.00293EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/07/09 10:33 p.m.6 views

CVE-2026-44342

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Prior to 0.12.0-alpha.1, the email and WeChat account binding endpoints GET /api/oauth/email/bind and GET /api/oauth/wechat/bind used GET requests for state-changing account operations, allowing a...

5.3CVSS5.8AI score0.00187EPSS
Exploits0References4Affected Software1
Chainguard
Chainguard
added 2026/07/09 8:31 p.m.8 views

GHSA-XCGV-8MV7-V8C7 vulnerabilities

Vulnerabilities for packages: etcd-fips, mattermost-fips, telegraf, ingress-nginx-controller-fips, azuredisk-csi, atlantis-fips, opentelemetry-collector-k8s, caddy, docker-cli-fips, dask-gateway, docker-cli-buildx-fips, mattermost, fleet-server, pulumi-language-yaml, dataplaneapi-fips, zitadel,...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2026/07/09 8:30 p.m.7 views

GHSA-FF52-PH69-CF7X vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter-fips, crossplane-provider-aws-lakeformation-fips, cluster-api-provider-vsphere, docker-machine-driver-linode, harbor-registry-fips, mattermost, ginkgo, prometheus, livekit-server, yace-fips, wavefront-collector-for-kubernetes, hugo-fips,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/07/09 8:23 p.m.10 views

GHSA-FF52-PH69-CF7X vulnerabilities

Vulnerabilities for packages: descheduler, docker-compose, nri-mysql, dagger, kubernetes-dashboard-metrics-scraper, q, otel-cli, rancher, conjur-cli, cloudnative-pg, controller-gen, kapp-controller, timestamp-authority, smokescreen, boring-registry, traefik, litestream, gobuster, datadog-agent,...

5.3AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/07/09 5:31 p.m.6 views

CVE-2026-59726

Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed the MCP bridge POST /mcp and POST /mcp/:group endpoints without authentication, allowing an unauthenticated network attacker to invoke tools/call to terminalexecute, obtain...

10CVSS6AI score0.00442EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/07/09 5:31 p.m.8 views

EUVD-2026-42656

Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed the MCP bridge POST /mcp and POST /mcp/:group endpoints without authentication, allowing an unauthenticated network attacker to invoke tools/call to terminalexecute, obtain...

10CVSS6AI score0.00442EPSS
Exploits0References4
OSV
OSV
added 2026/07/09 5:31 p.m.3 views

CVE-2026-59726 Ruflo: Unauthenticated RCE in MCP bridge default docker-compose deployment

Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed the MCP bridge POST /mcp and POST /mcp/:group endpoints without authentication, allowing an unauthenticated network attacker to invoke tools/call to terminalexecute, obtain...

10CVSS6.1AI score0.00442EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/07/09 5:31 p.m.33 views

CVE-2026-59726 Ruflo: Unauthenticated RCE in MCP bridge default docker-compose deployment

Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed the MCP bridge POST /mcp and POST /mcp/:group endpoints without authentication, allowing an unauthenticated network attacker to invoke tools/call to terminalexecute, obtain...

10CVSS0.00442EPSS
Exploits0References4
NVD
NVD
added 2026/07/09 5:17 p.m.9 views

CVE-2026-59227

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.11 before 0.10.0, POST /api/v1/images/edit required only a verified account and did not enforce the global image-edit switch or the per-user image-generation permission, allowing a non-admin user to...

5.4CVSS0.00259EPSS
Exploits1References4
OSV
OSV
added 2026/07/09 3:56 p.m.3 views

CVE-2026-59227 Open WebUI: POST /api/v1/images/edit bypasses the global image-edit switch and the per-user image-generation permission

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.11 before 0.10.0, POST /api/v1/images/edit required only a verified account and did not enforce the global image-edit switch or the per-user image-generation permission, allowing a non-admin user to...

4.3CVSS6.1AI score0.00259EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/07/09 3:56 p.m.7 views

CVE-2026-59227

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.11 before 0.10.0, POST /api/v1/images/edit required only a verified account and did not enforce the global image-edit switch or the per-user image-generation permission, allowing a non-admin user to...

4.3CVSS6AI score0.00259EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/07/09 3:56 p.m.10 views

CVE-2026-59227

Vulnerability summary: CVE-2026-59227 affects Open WebUI prior to 0.10.0. Affected endpoint: POST /api/v1/images/edit. The issue allowed a non-admin user with a verified account to bypass the global image-edit switch and per-user image-generation permissions, enabling server-side image editing wi...

5.4CVSS6AI score0.00259EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/07/09 7:12 a.m.4 views

CVE-2026-59269 Privilege Escalation via Active Directory LDAP injection in Pinniped Supervisor can be executed by an attacker who can edit LDAP Group DN entries

A user authenticating to Kubernetes clusters via the Pinniped Supervisor could potentially gain elevated permissions in the clusters, only if all the following conditions were true: the Pinniped Supervisor server is running with an ActiveDirectoryIdentityProvider resource configured; the...

3.8CVSS6.1AI score0.0017EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/07/09 12:0 a.m.8 views

PT-2026-56898

Name of the Vulnerable Software and Affected Versions Ruflo versions prior to 3.16.3 Description The default docker-compose deployment exposes the MCP bridge endpoints 'POST /mcp' and 'POST /mcp/:group' without authentication. This allows an unauthenticated network attacker to invoke the terminal...

10CVSS6.1AI score0.00442EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/07/09 12:0 a.m.16 views

PT-2026-56988

Name of the Vulnerable Software and Affected Versions Hermes WebUI versions prior to 0.51.307 Description An authentication bypass exists that allows unauthenticated remote attackers to circumvent local-origin IP restrictions on onboarding endpoints. This is achieved by supplying a spoofed...

9.3CVSS6.2AI score0.00293EPSS
Exploits0References8
NVD
NVD
added 2026/07/08 11:16 p.m.13 views

CVE-2026-59723

Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Prior to 3.0.30, the Cline Hub dashboard server launched by the cline dashboard command accepts WebSocket connections on the /browser endpoint without validating the Origin header, and when ROOMSECRET is unset for loc...

8.8CVSS0.00145EPSS
Exploits0References4
OSV
OSV
added 2026/07/08 10:25 p.m.2 views

CVE-2026-59723 Cline: Cross-Origin WebSocket Hijacking in Cline Hub Dashboard (`/browser` endpoint)

Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Prior to 3.0.30, the Cline Hub dashboard server launched by the cline dashboard command accepts WebSocket connections on the /browser endpoint without validating the Origin header, and when ROOMSECRET is unset for loc...

8.8CVSS6.2AI score0.00145EPSS
Exploits0References6
NVD
NVD
added 2026/07/08 9:16 p.m.9 views

CVE-2026-55596

Plate is a rich-text editor with AI and shadcn/ui. From 53.0.0 until 53.1.4, the media embed renderer trusts serialized provider or sourceUrl metadata in useMediaState and skips parseMediaUrl protocol validation, allowing a crafted Plate document to set a known video provider while keeping url as...

8.7CVSS0.00241EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/07/08 8:27 p.m.8 views

CVE-2026-55596

Plate is a rich-text editor with AI and shadcn/ui. From 53.0.0 until 53.1.4, the media embed renderer trusts serialized provider or sourceUrl metadata in useMediaState and skips parseMediaUrl protocol validation, allowing a crafted Plate document to set a known video provider while keeping url as...

8.7CVSS6AI score0.00241EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder