Lucene search
K

4 matches found

Snyk
Snyk
added 2026/05/08 7:38 p.m.10 views

Missing Authorization

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Missing Authorization via the createfolder process. An attacker can create unauthorized folders in another user's account, potentially flooding the victim's folder tree or planting phishing content, by...

5.3CVSS5.8AI score0.00287EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.7 views

PT-2026-28617

Name of the Vulnerable Software and Affected Versions AVideo versions up to and including 26.0 Description The plugin/Live/uploadPoster.php endpoint allows any authenticated user to overwrite the poster image for any scheduled live stream by supplying an arbitrary live schedule id. The endpoint...

5.4CVSS6AI score0.00243EPSS
Exploits1References7
OSV
OSV
added 2022/11/28 4:15 p.m.7 views

CVE-2021-45036

Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server...

7.4CVSS5.8AI score0.00705EPSS
Exploits0References7
Malwarebytes
Malwarebytes
added 2017/07/24 5:17 p.m.65 views

Bye, bye Petya! Decryptor for old versions released.

Following the outbreak of the Petya-based malware in Ukraine, the author of the original version, Janus, decided to release his master key, probably closing the project. You can read the full story here. Based on the released key, we prepared a decryptor that is capable of unlocking all the...

6.6AI score
Exploits0
Rows per page
Query Builder