Lucene search
K

37 matches found

OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-482 PraisonAI Platform has a cross-workspace IDOR + member-role privilege escalation

Summary The Platform server exposes resources under /api/v1/workspaces/workspaceid/... and protects them with a requireworkspacememberworkspaceid FastAPI dependency. The dependency only checks that the caller is a member of the workspaceid in the URL prefix. The route handlers then look up the...

9.4CVSS5.8AI score0.00043EPSS
Exploits0References5
OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-312 Ckan remote code execution and private information access via crafted resource ids

Specific vulnerabilities: Arbitrary file write in resourcecreate and packageupdate actions, using the ResourceUploader object. Also reachable via packagecreate, packagerevise, and packagepatch via calls to packageupdate. Remote code execution via unsafe pickle loading, via Beaker's session store...

9.8CVSS7.9AI score0.01684EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/23 4:41 p.m.5 views

CVE-2026-54019

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI added collection-level ACL checks, but the patch can still be bypassed when Milvus multitenancy mode is enabled. The ACL allows unknown non-KB collection names as...

6.5CVSS5.8AI score0.00281EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/06/23 4:41 p.m.28 views

CVE-2026-54019

Open WebUI CVE-2026-54019 describes an ACL bypass in Milvus multitenancy mode. Before version 0.9.6, collection-level ACL checks exist but can be bypassed when an attacker supplies user-controlled, unknown collection names, which Milvus treats as a resource_id and interpolates into an unsafe expr...

6.5CVSS5.8AI score0.00281EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/06/23 4:41 p.m.2 views

CVE-2026-54019 Open WebUI: RAG ACL Bypass in Milvus Multitenancy Mode

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI added collection-level ACL checks, but the patch can still be bypassed when Milvus multitenancy mode is enabled. The ACL allows unknown non-KB collection names as...

6.5CVSS5.9AI score0.00281EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/06/17 5:57 p.m.14 views

Open WebUI: RAG ACL Bypass in Milvus Multitenancy Mode

RAG ACL Bypass in Milvus Multitenancy Mode Summary This is a bypass of the fix for: - GHSA-h36f-rqpx-j5wx - CVE-2026-44560 - "Unauthorized File and Knowledge Base Content Access via RAG Vector Search" Open WebUI added collection-level ACL checks, but the patch can still be bypassed when Milvus...

6.5CVSS5.5AI score0.00366EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.16 views

PT-2026-45061

Name of the Vulnerable Software and Affected Versions PraisonAI Platform affected versions not specified Description The server contains multiple authorization flaws. First, a cross-tenant Insecure Direct Object Reference IDOR exists because the require workspace member dependency only validates...

9.4CVSS5.8AI score0.00043EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/28 7:0 p.m.10 views

CVE-2026-7303

A security flaw has been discovered in Xuxueli xxl-job up to 3.3.2. Impacted is the function logDetailCat of the file xxl-job-admin/src/main/java/com/xxl/job/admin/controller/biz/JobLogController.java of the component Execution Log Handler. The manipulation of the argument logId results in improp...

6.3CVSS4.3AI score0.00418EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/02/10 6:5 p.m.29 views

CVE-2026-25612 Internal ResourceId collision may affect unrelated collections

The internal locking mechanism of the MongoDB server uses an internal encoding of the resources in order to choose what lock to take. Collections may inadvertently collide with one another in this representation causing unavailability between them due to conflicting locks...

7.1CVSS0.00199EPSS
Exploits0References2
MongoDB
MongoDB
added 2026/02/10 6:5 p.m.13 views

Internal ResourceId collision may affect unrelated collections

The internal locking mechanism of the MongoDB server uses an internal encoding of the resources in order to choose what lock to take. Collections may inadvertently collide with one another in this representation causing unavailability between them due to conflicting locks...

7.1CVSS5.5AI score0.00199EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/07 4:2 p.m.3 views

CVE-2025-14197 Verysync 微力同步 Web Administration f96956469e7be39d information disclosure

A security vulnerability has been detected in Verysync 微力同步 up to 2.21.3. The impacted element is an unknown function of the file /rest/f/api/resources/f96956469e7be39d of the component Web Administration Module. Such manipulation leads to information disclosure. The attack can be executed...

6.9CVSS6AI score0.00352EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/11/03 2:47 p.m.6 views

CVE-2025-63562

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters e.g.,...

6.3CVSS7AI score0.00178EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/31 9:31 p.m.5 views

EUVD-2025-37391

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters e.g.,...

6.3CVSS6.5AI score0.00178EPSS
Exploits0References2
OSV
OSV
added 2025/10/31 8:15 p.m.5 views

CVE-2025-63562

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters e.g.,...

6.3CVSS5.9AI score0.00178EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/31 12:0 a.m.3 views

CVE-2025-63562

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters e.g.,...

6.3CVSS6.6AI score0.00178EPSS
Exploits0References1
CVE
CVE
added 2025/10/31 12:0 a.m.13 views

CVE-2025-63562

The CVE describes a vulnerability in Summer Pearl Group Vacation Rental Management Platform prior to version 1.0.2 where server-side authorization is insufficient. Authenticated attackers can manipulate request parameters (e.g., owner or resource id) to call endpoints and perform create, update, ...

6.3CVSS6.6AI score0.00178EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/20 11:32 p.m.3 views

CVE-2025-9264 Xuxueli xxl-job Jobs JobInfoController.java remove resource injection

A vulnerability was found in Xuxueli xxl-job up to 3.1.1. Affected by this issue is the function remove of the file /src/main/java/com/xxl/job/admin/controller/JobInfoController.java of the component Jobs Handler. Performing manipulation of the argument ID results in improper control of resource...

5.5CVSS7.2AI score0.00314EPSS
Exploits1References5
NVD
NVD
added 2025/05/06 9:15 a.m.21 views

CVE-2024-45578

Memory corruption while acquire and update IOCTLs during IFE output resource ID validation...

7.8CVSS0.00095EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/06 8:32 a.m.29 views

CVE-2024-45578 Improper Validation of Array Index in Camera Driver

Memory corruption while acquire and update IOCTLs during IFE output resource ID validation...

7.8CVSS0.00095EPSS
Exploits0References1
CVE
CVE
added 2025/05/06 8:32 a.m.66 views

CVE-2024-45578

CVE-2024-45578 concerns memory corruption in Qualcomm chipsets caused by improper handling during acquisition and update of IOCTLs while validating the IFE output resource ID. The vulnerability affects the IOCTL path used for IFE output resource ID validation, with a local attack vector and high ...

7.8CVSS7.9AI score0.00095EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder