VIR Vulnerability Intelligence Relay

Search

Found 69,866 results in 2888ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2021-47957 medium 6.4 6.4 22d ago Cookie Law Bar 1.2.1 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting unsanitized input to the Bar Message field. Att…
CVE-2021-47956 high 8.2 8.2 22d ago EgavilanMedia PHPCRUD 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the firstname parameter. Attackers…
CVE-2021-47955 medium 5.4 5.4 22d ago CouchCMS 2.2.1 contains a cross-site scripting vulnerability that allows authenticated attackers to execute arbitrary JavaScript by uploading malicious SVG files through the file upload functionality…
CVE-2021-47954 high 8.2 8.2 22d ago LayerBB 1.1.4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the search_query parameter. Attackers can send…
CVE-2021-47942 high 7.5 7.5 hacs 22d ago Home Assistant Community Store (HACS) prior to 1.10.0 contains a path traversal vulnerability that allows unauthenticated attackers to read sensitive files by traversing directories via the /hacsfile…
CVE-2021-47934 medium 5.3 5.3 22d ago MyBB Timeline Plugin 1.0 contains cross-site scripting vulnerabilities that allow attackers to inject malicious scripts through thread titles, post content, and user profile fields like Location and …
CVE-2020-37247 high 7.8 7.8 22d ago Kite 4.2.0.1 U1 contains an unquoted service path vulnerability in the KiteService Windows service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers …
CVE-2020-37246 medium 6.2 6.2 22d ago Supsystic Backup 2.3.9 contains a local file inclusion vulnerability that allows unauthenticated attackers to read and delete arbitrary files by manipulating the download path parameter. Attackers ca…
CVE-2020-37245 high 7.5 7.5 22d ago Supsystic Digital Publications 1.6.9 contains a path traversal vulnerability in the Folder input field that allows attackers to access files outside the web root by injecting directory traversal sequ…
CVE-2020-37244 high 8.2 8.2 22d ago Supsystic Membership 1.4.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'search' and 'sidx' p…
CVE-2020-37243 high 8.2 8.2 22d ago Supsystic Pricing Table 1.8.7 contains an SQL injection vulnerability in the 'sidx' GET parameter that allows unauthenticated attackers to execute arbitrary SQL queries through the getListForTbl acti…
CVE-2020-37242 high 8.2 8.2 22d ago Supsystic Ultimate Maps 1.1.12 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'sidx' GET parame…
CVE-2020-37241 medium 5.3 5.3 22d ago bloofoxCMS 0.5.2.1 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions by tricking logged-in users into visiting malicious pages. Attackers can…
CVE-2020-37240 medium 6.4 6.4 22d ago Queue Management System 4.0.0 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through user creation fields. Attackers can ins…
CVE-2020-37238 medium 6.4 6.4 22d ago CMS Made Simple 2.2.15 contains a stored cross-site scripting vulnerability that allows authenticated users with Content Manager access to inject malicious scripts through SVG file uploads. Attackers…
CVE-2020-37237 medium 6.4 6.4 22d ago Composr CMS 10.0.34 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the banner management interface. Attackers wi…
CVE-2020-37236 medium 6.4 6.4 22d ago NewsLister contains an authenticated persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the title parameter in the news additio…
CVE-2020-37235 medium 6.4 6.4 22d ago WordPress Theme Wibar 1.1.8 contains a stored cross-site scripting vulnerability in the Brand component that allows authenticated users to inject malicious scripts by manipulating the Logo URL parame…
CVE-2020-37234 medium 6.2 6.2 22d ago Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can …
CVE-2020-37233 medium 6.4 6.4 22d ago WordPress Plugin Buddypress 6.2.0 contains a persistent cross-site scripting vulnerability that allows authenticated attackers with moderator privileges to inject malicious script code through the fi…
CVE-2020-37232 high 7.8 7.8 22d ago Advanced System Care Service 13.0.0.157 contains an unquoted service path vulnerability in the AdvancedSystemCareService13 service binary path that allows local attackers to escalate privileges. Atta…
CVE-2020-37231 high 7.8 7.8 22d ago Privacy Drive 3.17.0 contains an unquoted service path vulnerability in the pdsvc.exe service binary that allows local attackers to escalate privileges by exploiting the service startup process. Atta…
CVE-2020-37230 high 7.8 7.8 22d ago Syncplify.me Server! 5.0.37 contains an unquoted service path vulnerability in the SMWebRestServicev5 service that allows local attackers to escalate privileges by exploiting the unquoted binary path…
CVE-2020-37229 high 7.8 7.8 22d ago OKI sPSV Port Manager 1.0.41 contains an unquoted service path vulnerability in the sPSVOpLclSrv service that allows local attackers to escalate privileges by inserting executable files into the unqu…
CVE-2020-37227 high 8.8 8.8 22d ago HS Brand Logo Slider 2.1 contains an unrestricted file upload vulnerability that allows authenticated users to bypass client-side file extension validation by uploading arbitrary files. Attackers can…
CVE-2026-46719 medium 6.5 6.5 22d ago Net::Statsd::Lite versions before 0.9.0 for Perl allowed metric injections. The metric names were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject add…
CVE-2025-4202 medium 4.3 4.3 22d ago The Multicollab: Content Team Collaboration and Editorial Workflow plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'cf_add_comment' fu…
CVE-2026-8657 high 8.2 8.2 22d ago Versions of the package jsondiffpatch before 0.7.6 are vulnerable to Prototype Pollution via the jsondiffpatch.patch() and jsondiffpatch/formatters/jsonpatch.patch() APIs. An attacker can perform pro…
CVE-2026-8656 medium 6.1 6.1 22d ago Versions of the package jsondiffpatch before 0.7.6 are vulnerable to Cross-site Scripting (XSS) via the annotated formatter due to improper sanitization of JSON values and property names. If an appli…
CVE-2026-8681 medium 5.3 5.3 22d ago The Essential Chat Support plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.0.1. This is due to the plugin not properly verifying that a user is auth…
CVE-2026-8704 medium 6.5 6.5 FIX debian debian 23d ago Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified.
CVE-2026-8700 high 7.3 7.3 FIX debian debian 23d ago Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage.
CVE-2026-45667 medium 6.5 6.5 openwebui 23d ago Open WebUI: Unauthenticated endpoint can trigger embedding generation (cost/DoS)
CVE-2026-45666 medium 6.5 6.5 openwebui 23d ago Open WebUI has an Indirect Object Reference (IDOR) in user notes
CVE-2026-45665 high 8.1 8.1 openwebui 23d ago Open WebUI has Stored XSS in Banner Component via Improper Sanitization Order
CVE-2026-45365 medium 5.4 5.4 openwebui 23d ago Open WebUI: Authenticated users can bypass model access control via exposed query parameter [AI-ASSISTED]
CVE-2026-45351 medium 6.5 6.5 openwebui 23d ago Open WebUI Exposes System Prompt to Regular User [Non-Admin]
CVE-2026-45347 medium 5.4 5.4 openwebui 23d ago Open WebUI vulnerable to blind server side request forgery (SSRF) via the PDF generate function
CVE-2026-45346 medium 5.4 5.4 openwebui 23d ago Open WebUI Has Stored Cross-Site Scripting in SVG Renderer
CVE-2026-45345 medium 6.5 6.5 openwebui 23d ago Open WebUI missing authorization check at the model update function - models from other users can be updated
CVE-2026-45318 medium 5.4 5.4 openwebui 23d ago Open WebUI has stored XSS via unsanitized Office/Excel/DOCX file preview rendering ({@html} without DOMPurify)
CVE-2026-45317 medium 4.6 4.6 openwebui 23d ago Open WebUI Vulnerable to Cross-Site Request Forgery (CSRF) via Image URL Manipulation
CVE-2026-45315 high 8.7 8.7 openwebui 23d ago Open WebUI has stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions
CVE-2026-45301 high 8.1 8.1 openwebui 23d ago Open WebUI: Missing permission check in files API allows authenticated users to list, access and delete every uploaded file
CVE-2026-44571 medium 6.5 6.5 openwebui 23d ago Open WebUI's Improper Authorization in Standard Channels Allows Message Updates with Read Permission
CVE-2026-44570 high 8.3 8.3 openwebui 23d ago Open WebUI has inconsistent authorization controls within memories API
CVE-2026-44569 high 7.1 7.1 openwebui 23d ago Open WebUI's Insecure Message Access Breaks Authorization
CVE-2026-44565 high 8.1 8.1 openwebui 23d ago Open WebUI Arbitrary File Write, Delete via Path Traversal
CVE-2026-44549 high 8.7 8.7 openwebui 23d ago Open WebUI has stored XSS in Excel file preview
CVE-2026-46367 high 7.6 7.6 23d ago phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in Utils::parseUrl() that allows authenticated users to inject JavaScript via malformed URLs in comments. Attackers can craf…
CVE-2026-46365 medium 5.4 5.4 23d ago phpMyFAQ before 4.1.2 contains a missing authorization vulnerability in the DELETE /admin/api/content/tags/{tagId} endpoint that allows any authenticated user to delete tags. Any logged-in user, incl…
CVE-2026-46363 medium 5.4 5.4 23d ago phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in FAQ creation and update endpoints that bypass sanitization through encode-decode cycles. The vulnerability allows authent…
CVE-2026-46360 medium 5.4 5.4 23d ago phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in SvgSanitizer::decodeAllEntities() that limits recursive entity decoding to 5 iterations, allowing attackers to bypass san…
CVE-2026-45009 medium 4.3 4.3 23d ago phpMyFAQ before 4.1.2 contains an insufficient authorization vulnerability in admin-api routes that allows authenticated ordinary users to access administrative endpoints by only checking login statu…
CVE-2026-45008 medium 6.5 6.5 23d ago phpMyFAQ before 4.1.2 contains a path traversal vulnerability in Client::deleteClientFolder that allows admins with INSTANCE_DELETE permission to delete arbitrary directories. Attackers can submit tr…
CVE-2026-45402 high 8.1 8.1 openwebui 23d ago Open WebUI: Cross-User File Access via Unchecked file_id in Folder Knowledge and Knowledge-Base Attach Endpoints
CVE-2026-45401 high 8.5 8.5 openwebui 23d ago Open WebUI has a SSRF Bypass via HTTP Redirect Following in Web-Fetch and Image-Load Endpoints (not addressed by CVE-2025-65958)
CVE-2026-45400 high 8.5 8.5 openwebui 23d ago Open WebUI has a Server-Side Request Forgery (SSRF) bypass in `validate_url`
CVE-2026-45396 medium 5.4 5.4 openwebui 23d ago Open WebUI: Mass Assignment via FeedbackForm extra=allow Allows Feedback User ID Spoofing and Evaluation Data Manipulation
CVE-2026-45395 high 7.2 7.2 openwebui 23d ago Open WebUI: Missing `workspace.tools` Authorization Check on Tool Update Endpoint Allows Privilege Escalation to Code Execution
CVE-2026-45387 medium 4.3 4.3 openwebui 23d ago Open WebUI: Sharing models for others to use (read permission) also exposes model details (system prompt leakage)
CVE-2026-45385 medium 4.3 4.3 openwebui 23d ago Open WebUI has an IDOR vulnerability in the update_message_by_id API endpoint
CVE-2026-44721 high 7.3 7.3 openwebui 23d ago open-webui Vulnerable to Stored XSS via Model Description
CVE-2026-45675 high 8.1 8.1 openwebui 23d ago Open WebUI: LDAP and OAuth First-User Race Condition Allows Multiple Admin Accounts
CVE-2026-45399 high 7.1 7.1 openwebui 23d ago Open WebUI: Low-privilege authenticated users can enumerate and stop global background tasks, causing system-wide chat disruption
CVE-2026-45349 high 7.1 7.1 openwebui 23d ago Open WebUI has Broken Access Control for Completions API
CVE-2026-44568 medium 4.8 4.8 openwebui 23d ago Open WebUI has Stored XSS in Pending User Overlay via Incorrect DOMPurify Application Order
CVE-2026-44564 medium 5.4 5.4 openwebui 23d ago Read-Only Open WebUI Users Can Modify Collaborative Documents via Socket.IO
CVE-2026-44563 medium 5.4 5.4 openwebui 23d ago Open WebUI's Ollama Model Access Control Bypass via /api/generate, /api/embed, /api/embeddings, and /api/show
CVE-2026-44562 medium 6.5 6.5 openwebui 23d ago Open WebUI's Model Import Overwrites Any Model Without Ownership Check
CVE-2026-44561 medium 5.4 5.4 openwebui 23d ago Open WebUI: Deactivated Channel Members Retain Full Access to Group/DM Channels
CVE-2026-44560 medium 6.5 6.5 openwebui 23d ago Open WebUI has Unauthorized File and Knowledge Base Content Access via RAG Vector Search
CVE-2026-44559 medium 4.3 4.3 openwebui 23d ago Open WebUI Missing Access Check on Channel Members Endpoint for Standard Channels
CVE-2026-44558 medium 5.4 5.4 openwebui 23d ago Open WebUI's Channel Access Grants Bypass filter_allowed_access_grants
CVE-2026-44556 high 7.1 7.1 openwebui 23d ago Open WebUI's responses passthrough endpoint lacks access control authorization
CVE-2026-44555 high 7.6 7.6 openwebui 23d ago Open WebUI's Base Model Routing Bypasses Access Control via Model Chaining
CVE-2026-44554 high 8.1 8.1 openwebui 23d ago Open WebUI has Knowledge Base Destruction and RAG Poisoning via Unauthorized Collection Overwrite
CVE-2026-44550 medium 5.0 5.0 openwebui 23d ago Open WebUI's Mass Assignment via Pydantic extra='allow' Allows Creating Folders in Other Users' Accounts
CVE-2025-67031 medium 6.3 6.3 23d ago ORSEE (Online Recruitment System for Economic Experiments) 3.1.0 contains an authenticated Remote Code Execution vulnerability in the participant profile field processing subsystem. Certain field con…
CVE-2026-4054 medium 6.5 6.5 mattermost 23d ago Mattermost doesn't validate the response body of proxied images
CVE-2026-4053 medium 4.3 4.3 mattermost 23d ago Mattermost doesn't enforce the PostEditTimeLimit on non-message post fields
CVE-2026-46408 high 7.6 7.6 23d ago Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, the checkout endpoint accepts a user-controlled cart_id and uses it to enter …
CVE-2026-46407 high 8.1 8.1 23d ago Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, the backend admin/auth-token endpoint allows an authenticated administrator t…
CVE-2026-46366 high 7.5 7.5 23d ago phpMyFAQ before 4.1.2 contains an information disclosure vulnerability in the getIdFromSolutionId() method that lacks permission filtering, allowing unauthenticated attackers to enumerate restricted …
CVE-2026-46362 medium 6.5 6.5 23d ago phpMyFAQ before 4.1.2 contains an authorization bypass vulnerability in AbstractAdministrationController::userHasPermission() that fails to terminate execution after sending a forbidden response. Att…
CVE-2026-46361 medium 6.9 6.9 23d ago phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in search.twig where result.question and result.answerPreview are rendered with the raw filter, disabling autoescape protect…
CVE-2026-46359 high 7.5 7.5 23d ago phpMyFAQ before 4.1.2 contains a sql injection vulnerability in CurrentUser::setTokenData that allows authenticated attackers to execute arbitrary SQL by injecting malicious OAuth token claims. Attac…
CVE-2026-45007 medium 4.3 4.3 23d ago phpMyFAQ before 4.1.2 contains missing permission checks in ConfigurationTabController.php where 12 endpoints use userIsAuthenticated() instead of userHasPermission(CONFIGURATION_EDIT). Any authentic…
CVE-2026-44826 high 7.5 7.5 23d ago Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.2, Vvveb CMS does not validate the sign of the quantity parameter on the cart-ad…
CVE-2026-44366 medium 6.1 6.1 23d ago Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.1, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Vvveb CMS com…
CVE-2021-47968 medium 6.4 6.4 23d ago Podcast Generator 3.1 is vulnerable to persistent cross-site scripting, allowing authenticated attackers to inject malicious scripts by submitting unfiltered JavaScript code in the long_description p…
CVE-2021-47967 medium 6.1 6.1 23d ago PHP Timeclock 1.04 contains multiple cross-site scripting vulnerabilities that allow unauthenticated attackers to inject arbitrary JavaScript by manipulating URL paths and POST parameters. Attackers …
CVE-2021-47966 high 8.2 8.2 23d ago PHP Timeclock 1.04 contains time-based and boolean-based blind SQL injection vulnerabilities in the login_userid parameter of login.php that allows unauthenticated attackers to extract database conte…
CVE-2021-47964 high 8.8 8.8 23d ago Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager…
CVE-2021-47963 high 7.2 7.2 23d ago Anote 1.0 contains a persistent cross-site scripting vulnerability that allows attackers to execute arbitrary code by injecting malicious payloads into markdown files stored within the application. A…
CVE-2021-47962 medium 6.4 6.4 23d ago Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account settings page that allows authenticated attackers to inject malicious HTML and JavaScript code. Attackers…
CVE-2021-47959 high 7.5 7.5 23d ago WordPress Plugin WPGraphQL 1.3.5 contains a denial of service vulnerability that allows unauthenticated attackers to exhaust server resources by sending batched GraphQL queries with duplicated fields…
CVE-2021-47958 medium 4.3 4.3 23d ago CouchCMS 2.2.1 contains a server-side request forgery vulnerability that allows authenticated attackers to make arbitrary HTTP requests by uploading malicious SVG files. Attackers can upload SVG file…
CVE-2026-45619 medium 6.5 6.5 wwbn 23d ago WWBN AVideo is an open source video platform. In 29.0 and earlier, EpgParser.php, plugin/AI/receiveAsync.json.php, and other locations do not use the $resolvedIP out-param of isSSRFSafeURL() for DNS …
CVE-2026-45610 medium 6.5 6.5 wwbn 23d ago WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a cross-site request forgery vulnerability on the 2FA toggle. plugin/LoginControl/set.json.php accepts POST type=set2FA val…