CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-12363

Malicious code in bioql PyPI...

3.3CVSS6.4AI score0.00086EPSS

Exploits1References3

Snyk•added 2025/04/21 5:43 p.m.•2 views

Server-side Request Forgery (SSRF)

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Server-side Request Forgery SSRF through the verifyconnection function, by manipulating the backend requests to arbitrary systems. Remediation Upgrade open-webui to version 0.6.34 or higher. References - GitH...

10CVSS6.7AI score0.00086EPSS

Exploits1References2

OSV•added 2025/04/21 5:15 p.m.•1 views

CVE-2025-29446

open-webui v0.5.16 is vulnerable to SSRF in routers/ollama.py in function verifyconnection...

3.3CVSS7AI score

Exploits0References2

NVD•added 2025/04/21 5:15 p.m.•3 views

CVE-2025-29446

open-webui v0.5.16 is vulnerable to SSRF in routers/ollama.py in function verifyconnection...

3.3CVSS0.00086EPSS

Exploits1References2

Vulnrichment•added 2025/04/21 12:0 a.m.•6 views

CVE-2025-29446

open-webui v0.5.16 is vulnerable to SSRF in routers/ollama.py in function verifyconnection...

3.9AI score0.00086EPSS

Exploits1References2

Positive Technologies•added 2025/04/21 12:0 a.m.•3 views

PT-2025-17455 · Unknown · Open-Webui

Name of the Vulnerable Software and Affected Versions: open-webui version 0.5.16 Description: The issue concerns a Server-Side Request Forgery SSRF vulnerability. It is located in the routers/ollama.py file, specifically in the verify connection function. Recommendations: For open-webui version...

3.3CVSS6.5AI score0.00086EPSS

Exploits1References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by