Lucene search
K

6 matches found

Snyk
Snyk
added 2026/05/14 8:21 p.m.10 views

Improper Authorization

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Improper Authorization in the model update process. An attacker can modify resources belonging to other users by sending crafted requests that bypass intended access controls. Remediation Upgrade open-webui t...

7.1CVSS5.8AI score0.00226EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2025/12/12 4:41 p.m.14 views

Vite Plugin React has a Source Code Exposure Vulnerability in React Server Components

Impact @vitejs/plugin-rsc vendors react-server-dom-webpack, which contained a vulnerability in versions prior to 19.2.3. See details in React repository's advisory https://github.com/facebook/react/security/advisories/GHSA-925w-6v3x-g4j4 Patches Upgrade immediately to @vitejs/[email protected] or...

6.9AI score
Exploits0References3Affected Software1
OSV
OSV
added 2025/12/12 4:41 p.m.4 views

GHSA-CPQF-F22C-R95X Vite Plugin React has a Denial of Service Vulnerability in React Server Components

Impact @vitejs/plugin-rsc vendors react-server-dom-webpack, which contained a vulnerability in versions prior to 19.2.3. See details in React repository's advisory https://github.com/facebook/react/security/advisories/GHSA-7gmr-mq3h-m5h9 Patches Upgrade immediately to @vitejs/[email protected] or...

7.5CVSS6.7AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/12/12 4:41 p.m.7 views

Vite Plugin React has a Denial of Service Vulnerability in React Server Components

Impact @vitejs/plugin-rsc vendors react-server-dom-webpack, which contained a vulnerability in versions prior to 19.2.3. See details in React repository's advisory https://github.com/facebook/react/security/advisories/GHSA-7gmr-mq3h-m5h9 Patches Upgrade immediately to @vitejs/[email protected] or...

6.9AI score
Exploits0References2Affected Software1
Snyk
Snyk
added 2025/12/12 12:3 a.m.9 views

Deserialization of Untrusted Data

Overview @vitejs/plugin-rsc is a React Server Components RSC support for Vite. Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to unsafe deserialization of payloads from HTTP requests to Server Function endpoints. An attacker can cause the server process ...

8.7CVSS6.9AI score0.65592EPSS
Exploits13References2
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.8 views

PT-2025-45167

Name of the Vulnerable Software and Affected Versions Youki versions 0.5.6 and below Description Youki, a container runtime written in Rust, has an issue with its apparmor handling. Insufficiently strict write-target validation, combined with path substitution during pathname resolution, can allo...

10CVSS6.6AI score0.00243EPSS
Exploits0References16
Rows per page
Query Builder