Lucene search
+L

5 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/09 4:43 p.m.9 views

CVE-2026-59219

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.9.0 before 0.10.0 with Redis configured, Socket.IO connect, user-join, join-channels, join-note, and the terminal websocket first-message authentication used decodetoken without the Redis-backed...

7.1CVSS5.9AI score0.00259EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.8 views

PT-2026-2113

Name of the Vulnerable Software and Affected Versions NiceGUI versions 2.10.0 through 3.4.1 Description NiceGUI is a Python-based UI framework. An unauthenticated attacker can exhaust Redis connections by repeatedly opening and closing browser tabs on any NiceGUI application using Redis-backed...

5.3CVSS6.6AI score0.0051EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-3287

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00514EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/12/22 8:10 p.m.4 views

CVE-2023-50727 Resque vulnerable to reflected XSS in Queue Endpoint

Resque is a Redis-backed Ruby library for creating background jobs, placing them on multiple queues, and processing them later. Reflected XSS issue occurs when /queues is appended with /". This issue has been patched in version 2.6.0...

6.3CVSS6.1AI score0.00514EPSS
Exploits0References3
OSV
OSV
added 2023/12/21 2:50 p.m.26 views

CVE-2023-50724 Resque vulnerable to reflected cross site scripting through pathname

Resque pronounced like "rescue" is a Redis-backed library for creating background jobs, placing those jobs on multiple queues, and processing them later. resque-web in resque versions before 2.1.0 are vulnerable to reflected XSS through the currentqueue parameter in the path of the queues endpoin...

6.3CVSS6AI score0.00484EPSS
Exploits1References5
Rows per page
Query Builder