CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

149 matches found

Snyk•added 2026/05/21 9:35 p.m.•7 views

Server-side Request Forgery (SSRF)

Overview pydantic-ai-slim is an Agent Framework / shim to use Pydantic with LLMs, slim package Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via incomplete blocklist in isprivateip function when forcedownload='allow-local' is enabled. An attacker can access...

8.6CVSS6.6AI score0.00018EPSS

Exploits1References2

OSV•added 2026/05/21 9:35 p.m.•4 views

GHSA-CQP8-FCVH-X7R3 Pydantic AI: SSRF cloud-metadata blocklist bypass via IPv4-mapped IPv6 (Incomplete fix of CVE-2026-25580)

Summary When an application using Pydantic AI opts a URL into forcedownload='allow-local' which disables the default block on private/internal IPs, the cloud-metadata blocklist could be bypassed by encoding the metadata IP in an IPv6 transition form IPv4-mapped IPv6, 6to4, or NAT64. Dual-stack an...

6.8CVSS5.8AI score

Exploits0References3

OSV•added 2026/05/21 7:28 p.m.•5 views

GHSA-3R75-XC34-5F44 Crawlee for Python: SSRF via sitemap-derived URLs

Overview - Vulnerability type: Blind SSRF - Affected components: src/crawlee/utils/sitemap.py, src/crawlee/utils/robots.py, src/crawlee/requestloaders/sitemaprequestloader.py, and all built-in HTTP clients. - Trigger: an attacker-controlled sitemap or robots.txt containing a URL that points to an...

2.3CVSS6.4AI score

Exploits0References2

GithubExploit•added 2026/05/18 12:9 a.m.•37 views

sec-recon-agent

sec-recon-agent Type-safe security triage built on Pydantic A...

5.8AI score

Exploits0

NVD•added 2026/05/15 8:16 p.m.•7 views

CVE-2026-44550

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, FolderForm uses modelconfig = ConfigDictextra='allow', which permits arbitrary fields to pass through Pydantic validation and be included in modeldumpexcludeunset=True. In...

5CVSS0.00012EPSS

Exploits1References1

Cvelist•added 2026/05/15 8:0 p.m.•26 views

CVE-2026-44550 Open WebUI: Mass Assignment via Pydantic extra='allow' Allows Creating Folders in Other Users' Accounts

5CVSS0.00012EPSS

Exploits1References1

CVE•added 2026/05/15 8:0 p.m.•9 views

CVE-2026-44550

Open WebUI prior to 0.9.0 vulnerable to mass assignment via Pydantic extra='allow' in FolderForm. The server constructs a FolderModel by merging attacker-controlled extra fields (from form_data.model_dump(exclude_unset=True)) over a server-populated user_id, and because user_id is a real field, a...

5CVSS6AI score0.00012EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2026/05/15 8:0 p.m.•4 views

CVE-2026-44550 Open WebUI: Mass Assignment via Pydantic extra='allow' Allows Creating Folders in Other Users' Accounts

5CVSS6AI score0.00012EPSS

Exploits1References1

CNNVD•added 2026/05/15 12:0 a.m.•6 views

Open WebUI 安全漏洞

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted WebUI that is open source. Versions of Open WebUI prior to 0.9.0 contained security vulnerabilities. These vulnerabilities stemmed from FolderForm using modelconfig = ConfigDictextra=allow, which allowed arbitrary fields to ...

5CVSS5.9AI score0.00012EPSS

Exploits1References1

OSV•added 2026/05/08 7:38 p.m.•2 views

GHSA-HR43-RJMR-7WMM Open WebUI's Mass Assignment via Pydantic extra='allow' Allows Creating Folders in Other Users' Accounts

Mass Assignment via Pydantic extra='allow' Allows Creating Folders in Other Users' Accounts Affected Component Folder creation endpoint and form model: - backend/openwebui/models/folders.py lines 72-77, FolderForm with extra='allow' - backend/openwebui/models/folders.py lines 95-106,...

5CVSS6AI score0.00012EPSS

Exploits1References3

Github Security Blog•added 2026/05/08 7:38 p.m.•2 views

Open WebUI's Mass Assignment via Pydantic extra='allow' Allows Creating Folders in Other Users' Accounts

5CVSS6AI score0.00012EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•5 views

PT-2026-39267

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.0 Description Open WebUI is a self-hosted artificial intelligence platform. A mass assignment issue exists where the FolderForm uses a configuration that permits arbitrary fields to pass through Pydantic...

5CVSS5.9AI score0.00012EPSS

Exploits1References5

GithubExploit•added 2026/04/13 12:32 a.m.•59 views

blind-sqli-lab

🔬 Blind SQL Injection Lab — Time-Based PostgreSQL + FastAPI...

6AI score

Exploits0

Vulnrichment•added 2026/04/06 3:40 p.m.•2 views

CVE-2026-34756 vLLM Affected by Unauthenticated OOM Denial of Service via Unbounded `n` Parameter in OpenAI API Server

vLLM is an inference and serving engine for large language models LLMs. From 0.1.0 to before 0.19.0, a Denial of Service vulnerability exists in the vLLM OpenAI-compatible API server. Due to the lack of an upper bound validation on the n parameter in the ChatCompletionRequest and CompletionReques...

6.5CVSS5.9AI score0.00049EPSS

Exploits0References3

OSV•added 2026/03/19 9:17 p.m.•1 views

DEBIAN-CVE-2026-27953

ormar is a async mini ORM for Python. Versions 0.23.0 and below are vulnerable to Pydantic validation bypass through the model constructor, allowing any unauthenticated user to skip all field validation by injecting "pkonly": true into a JSON request body. By injecting "pkonly": true into a JSON...

9.8CVSS5.6AI score0.00489EPSS

Exploits1References1

NVD•added 2026/03/19 9:17 p.m.•0 views

CVE-2026-27953

9.8CVSS0.00489EPSS

Exploits1References9

Vulnrichment•added 2026/03/19 8:23 p.m.•1 views

CVE-2026-27953 ormar has a Pydantic Validation Bypass via Kwargs Injection in Model Constructor

7.1CVSS5.9AI score0.00489EPSS

Exploits1References9

CVE•added 2026/03/19 8:23 p.m.•6 views

CVE-2026-27953