Lucene search
K

23 matches found

Snyk
Snyk
added 2026/06/18 5:25 p.m.6 views

Server-side Request Forgery (SSRF)

Overview Crawl4AI is a 🚀🤖 Crawl4AI: Open-source LLM Friendly Web Crawler & scraper Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the handlestreamcrawlrequest process. An attacker can access internal-only services and cloud-metadata endpoints by sending...

8.7CVSS5.9AI score0.00262EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/18 5:25 p.m.4 views

Arbitrary Code Injection

Overview Crawl4AI is a 🚀🤖 Crawl4AI: Open-source LLM Friendly Web Crawler & scraper Affected versions of this package are vulnerable to Arbitrary Code Injection via the browserconfig.extraargs parameter in API requests. An attacker can execute arbitrary commands as the container's runtime user by...

10CVSS6.3AI score0.00523EPSS
Exploits0References3
Snyk
Snyk
added 2026/06/18 5:25 p.m.6 views

Symlink Attack

Overview Crawl4AI is a 🚀🤖 Crawl4AI: Open-source LLM Friendly Web Crawler & scraper Affected versions of this package are vulnerable to Symlink Attack via the download process. An attacker can overwrite arbitrary files with attacker-controlled content by supplying crafted filenames containing...

9.6CVSS6.3AI score0.00502EPSS
Exploits1References3
Snyk
Snyk
added 2026/05/16 12:0 a.m.10 views

Symlink Attack

Overview @boxlite-ai/boxlite is a BoxLite - Embeddable micro-VM runtime for secure, isolated code execution Affected versions of this package are vulnerable to Symlink Attack via improper path resolution during extraction of OCI image layer tarballs. An attacker can write arbitrary files to...

9.6CVSS6AI score0.00482EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/14 8:24 p.m.8 views

Authorization Bypass Through User-Controlled Key

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key through the chatcompletion process. An attacker can access and continue another user's conversation by supplying a known Chat ID in API requests. This is only...

7.1CVSS5.8AI score0.00231EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/14 8:18 p.m.9 views

Server-side Request Forgery (SSRF)

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Server-side Request Forgery SSRF through the validateurl function in the URL validation component. An attacker can bypass private-address checks by supplying a hostname that resolves to a private IPv6 address...

8.5CVSS5.8AI score0.00286EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/05/08 9:12 p.m.7 views

CVE-2026-42193

Plunk is an open-source email platform built on top of AWS SES. Prior to version 0.9.0, the /webhooks/sns endpoint accepts Amazon SNS notification payloads from unauthenticated requests without verifying the SNS signature, certificate, or topic ARN, meaning anyone can forge a valid-looking webhoo...

9.1CVSS5.7AI score0.00127EPSS
Exploits0References3Affected Software1
Snyk
Snyk
added 2026/05/08 7:51 p.m.8 views

Missing Authorization

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Missing Authorization via the validatecollectionaccess function. An attacker can obtain sensitive metadata, such as IDs, names, and descriptions of all knowledge bases across users, by sending crafted API...

5.3CVSS5.8AI score0.00221EPSS
Exploits1References2
RustSec
RustSec
added 2026/04/30 12:0 p.m.12 views

Unsound access to padding bytes while serializing date/time values using the Mysql backend

Diesel-async uses the mysql-async crate for interacting with Mysql compatible databases. This library already provides access to deserialized data for date/time releated types. Diesel-async then translated these deserialized data back to their serialized binary representation to hook into diesels...

5.8AI score
Exploits0Affected Software1
NVD
NVD
added 2026/04/29 7:16 p.m.10 views

CVE-2026-7397

A security flaw has been discovered in NousResearch hermes-agent 0.8.0. This affects the function checksensitivepath of the file tools/filetools.py. The manipulation results in symlink following. Attacking locally is a requirement. The exploit has been released to the public and may be used for...

4.8CVSS0.00138EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.11 views

PT-2026-35969

A security flaw has been discovered in NousResearch hermes-agent 0.8.0. This affects the function check sensitive path of the file tools/file tools.py. The manipulation results in symlink following. Attacking locally is a requirement. The exploit has been released to the public and may be used fo...

4.8CVSS4.7AI score0.00138EPSS
Exploits0References8
Snyk
Snyk
added 2026/03/27 1:23 a.m.2 views

Origin Validation Error

Overview Affected versions of this package are vulnerable to Origin Validation Error during the intra-handshake attestation.. An attacker can impersonate a trusted service endpoint and gain unauthorized access to sensitive data or operations by extracting the ephemeral TLS private key through...

7.8CVSS5.9AI score0.00062EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/27 1:23 a.m.3 views

Origin Validation Error

Overview Affected versions of this package are vulnerable to Origin Validation Error during the intra-handshake attestation.. An attacker can impersonate a trusted service endpoint and gain unauthorized access to sensitive data or operations by extracting the ephemeral TLS private key through...

7.8CVSS5.9AI score0.00062EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.4 views

CVE-2025-66249

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Livy. This issue affects Apache Livy: from 0.3.0 before 0.9.0. The vulnerability can only be exploited with non-default Apache Livy Server settings. If the configuration value...

6.3CVSS5.7AI score0.00597EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/13 9:31 p.m.5 views

EUVD-2025-208637

Malicious configuration can lead to unauthorized file access in Apache Livy. This issue affects Apache Livy 0.7.0 and 0.8.0 when connecting to Apache Spark 3.1 or later. A request that includes a Spark configuration value supported from Apache Spark version 3.1 can lead to users gaining access to...

6.3CVSS5.8AI score0.00488EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/03/13 9:31 p.m.8 views

Apache Livy: Restrict file access

Malicious configuration can lead to unauthorized file access in Apache Livy. This issue affects Apache Livy 0.7.0 and 0.8.0 when connecting to Apache Spark 3.1 or later. A request that includes a Spark configuration value supported from Apache Spark version 3.1 can lead to users gaining access to...

6.3CVSS5.8AI score0.00488EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/03/13 7:53 p.m.5 views

CVE-2025-60012

Malicious configuration can lead to unauthorized file access in Apache Livy. This issue affects Apache Livy 0.7.0 and 0.8.0 when connecting to Apache Spark 3.1 or later. A request that includes a Spark configuration value supported from Apache Spark version 3.1 can lead to users gaining access to...

6.3CVSS5.9AI score
Exploits0References2
Cvelist
Cvelist
added 2026/03/13 3:21 p.m.25 views

CVE-2025-66249 Apache Livy: Unauthorized directory access

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Livy. This issue affects Apache Livy: from 0.3.0 before 0.9.0. The vulnerability can only be exploited with non-default Apache Livy Server settings. If the configuration value...

0.00597EPSS
Exploits0References1
OSV
OSV
added 2026/03/13 3:21 p.m.4 views

CVE-2025-66249 Apache Livy: Unauthorized directory access

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Livy. This issue affects Apache Livy: from 0.3.0 before 0.9.0. The vulnerability can only be exploited with non-default Apache Livy Server settings. If the configuration value...

6.3CVSS5.9AI score0.00597EPSS
Exploits0References5
Snyk
Snyk
added 2026/01/01 6:47 a.m.3 views

Allocation of Resources Without Limits or Throttling

Overview tenso is a High-performance zero-copy tensor protocol Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to missing bounds checks during tensor deserialization. An attacker can exploit this by providing crafted serialized data tha...

7.1CVSS6.8AI score
Exploits0References3
Rows per page
Query Builder