Lucene search
K

4976 matches found

Circl
Circl
added 2026/06/11 7:4 p.m.7 views

CVE-2026-54014

creationtimestamp| type| source ---|---|--- 2026-06-11 19:04:46+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-j2c8-v969-8r5c...

4.3CVSS5AI score0.00244EPSS
Exploits1References1
Circl
Circl
added 2026/06/11 7:2 p.m.8 views

CVE-2026-54013

creationtimestamp| type| source ---|---|--- 2026-06-11 19:02:12+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-v2qm-5wxj-qhj7...

7.6CVSS5AI score0.00174EPSS
Exploits1References1
Circl
Circl
added 2026/06/11 6:58 p.m.8 views

CVE-2026-54012

creationtimestamp| type| source ---|---|--- 2026-06-11 18:58:16+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-vjqm-6gcc-62cr...

7.1CVSS5AI score0.00198EPSS
Exploits1References1
Circl
Circl
added 2026/06/11 6:56 p.m.8 views

CVE-2026-54008

creationtimestamp| type| source ---|---|--- 2026-06-11 18:56:45+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-226f-f24g-524w...

8.5CVSS5AI score0.00203EPSS
Exploits1References1
Circl
Circl
added 2026/06/11 6:55 p.m.9 views

CVE-2026-54006

creationtimestamp| type| source ---|---|--- 2026-06-11 18:55:57+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-f3g7-59qc-pqg6...

4.3CVSS5AI score0.00179EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.18 views

Hermes Web UI 访问控制错误漏洞

Hermes Web UI is a lightweight, dark-themed web interface developed by Nathan Esquenazi. Versions of Hermes Web UI prior to 0.51.358 contained an access control vulnerability. This vulnerability stemmed from improper access control measures, allowing unauthorized remote attackers to initial...

9.4CVSS5.9AI score0.00543EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 9:1 p.m.39 views

CVE-2026-0273 PAN-OS: Authenticated Admin Command Injection Vulnerability via CLI or Web UI

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI or Web UI. The security risk posed...

8.6CVSS0.01193EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/10 12:0 a.m.20 views

Palo Alto Networks PAN-OS 10.2.x / 11.1.x / 11.2.x / 12.1.x Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is a vulnerable version of 10.2.x, 11.1.x, 11.2.x, or 12.1.x. It is, therefore, affected by a vulnerability. A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass...

8.6CVSS5.7AI score0.01193EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/10 12:0 a.m.7 views

agama-web-ui-21+360.16caae772-44.1 on GA media (moderate)

agama-web-ui-21+360.16caae772-44.1 on GA media Announcement ID: openSUSE-SU-2026:10979-1 Rating: moderate Cross-References: CVE-2026-6402 CVE-2026-9277 CVSS scores: CVE-2026-6402 SUSE : 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2026-6402 SUSE : 6...

9.2CVSS5.5AI score0.00848EPSS
Exploits1
CVE
CVE
added 2026/06/09 4:46 p.m.16 views

CVE-2026-49959

Hermes WebUI prior to 0.51.311 is affected by a remote code execution vulnerability. Authenticated attackers can trigger arbitrary commands by placing a malicious executable Git configuration in a workspace repo’s .git/config. The issue arises from Git subprocess invocations in api/workspace_git....

8.8CVSS6.7AI score0.00945EPSS
Exploits0References4
OSV
OSV
added 2026/06/09 12:0 a.m.5 views

OPENSUSE-SU-2026:10979-1 agama-web-ui-21+360.16caae772-44.1 on GA media

These are all security issues fixed in the agama-web-ui-21+360.16caae772-44.1 package on the GA media of openSUSE Tumbleweed...

9.2CVSS5.5AI score0.00848EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.9 views

Hermes Web UI 安全漏洞

Hermes Web UI is a lightweight, dark-themed web interface developed by Nathan Esquenazi. Versions of Hermes Web UI prior to 0.51.270 contained security vulnerabilities. These vulnerabilities were due to a resource exhaustion issue, which could allow unauthenticated remote attackers to reduce the...

6.9CVSS5.4AI score0.00586EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.17 views

Hermes Web UI 路径遍历漏洞

Hermes Web UI is a lightweight, dark-themed web interface developed by Nathan Esquenazi. Versions of Hermes Web UI prior to 0.51.269 contained a path traversal vulnerability. This vulnerability stemmed from an issue with bypassing workspace boundaries, which could allow authentication attackers t...

7.7CVSS5.4AI score0.00421EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.16 views

Hermes Web UI 安全漏洞

Hermes Web UI is a lightweight, dark-themed web interface developed by Nathan Esquenazi. Versions of Hermes Web UI prior to 0.51.303 contained security vulnerabilities, which were caused by a TOCTOU race condition in the gitdiscard function. This vulnerability could allow attackers to delete file...

5CVSS5.3AI score0.00081EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.10 views

Fedora 44 : pcs (2026-d420bebe72)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d420bebe72 advisory. - Updated standalone web UI and HA Cluster Management Cockpit application to pcs-web-ui 0.1.24.3 see CHANGELOGWUI.md - Fixed a crash when running pcs...

9.8CVSS6.8AI score0.01735EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.9 views

Fedora 43 : pcs (2026-c0f7d885ee)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-c0f7d885ee advisory. - Updated standalone web UI and HA Cluster Management Cockpit application to pcs-web-ui 0.1.24.3 see CHANGELOGWUI.md - Fixed a crash when running pcs...

9.8CVSS6.8AI score0.01735EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/09 12:0 a.m.13 views

Security update for agama-web-ui (moderate)

openSUSE security update: security update for agama-web-ui ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20919-1 Rating: moderate References: bsc1246678 bsc1264160 bsc1264802 bsc1266256 Cross-References: CVE-2025-7339 CVE-2026-42041 CVE-2026-42264...

9.2CVSS6.3AI score0.00848EPSS
Exploits3References4
OSV
OSV
added 2026/06/08 10:21 a.m.6 views

OPENSUSE-SU-2026:20919-1 Security update for agama-web-ui

This update for agama-web-ui fixes the following issues - CVE-2025-7339: on-headers: incorrect array handling may lead to HTTP response header manipulation bsc1246678. - CVE-2026-9277: shell-quote: improper escaping of newlines in object .op values by quote can lead to shell command injection...

9.2CVSS6.3AI score0.00848EPSS
Exploits3References8
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.17 views

PT-2026-47597

It was discovered that Transmission had a clickjacking weakness in the browser-facing WebUI and RPC response paths. An attacker could possibly use this issue to trick users into performing unintended actions...

5.3CVSS5.5AI score0.00305EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/07 4:58 a.m.10 views

CVE-2026-11105

An insufficient validation of untrusted input flaw was found in the WebUI component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500505339...

6.8CVSS5.4AI score0.00243EPSS
Exploits0References5
Rows per page
Query Builder