VYPR

CVEs

345,119 total · page 59 of 6,903

  • CVE-2026-12515modJun 17, 2026
    risk 0.21cvss 4.3epss 0.00

    katello: missing repository authorization in content_uploads exposes cross-product content existence

  • CVE-2025-32748Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex rack, version(s) RCM 3.7/3.7, contain(s) a Host Header Injection vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability to trigger redirections.

  • CVE-2026-35069Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with adjacent network access could potentially exploit this vulnerability, leading to Script…

  • CVE-2026-35068Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with adjacent network access could potentially exploit this vulnerability, leading to…

  • CVE-2026-53875Jun 17, 2026
    risk 0.00cvss epss 0.00

    picklescan before 1.0.3 contains a scanning bypass vulnerability in the scan_pytorch function that allows attackers to embed malicious magic numbers via dynamic eval using the __reduce__ trick. Attackers can craft malicious PyTorch payloads that evade picklescan detection while…

  • CVE-2026-53874Jun 17, 2026
    risk 0.00cvss epss 0.01

    picklescan before 1.0.1 contains an unsafe deserialization vulnerability allowing unauthenticated users to execute arbitrary code by hiding eval calls nested under callable objects via getattr. Attackers can embed malicious code in pickle files that evades detection but executes…

  • CVE-2026-53873Jun 17, 2026
    risk 0.00cvss epss 0.00

    picklescan before 1.0.4 contains an incomplete blocklist for the profile module that fails to block the module-level profile.run() function, allowing attackers to achieve arbitrary code execution via exec(). Attackers can craft malicious pickle files calling…

  • CVE-2026-53872Jun 17, 2026
    risk 0.00cvss epss 0.01

    picklescan before 0.0.35 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to read arbitrary server files by chaining io.FileIO and urllib.request.urlopen. Attackers can bypass RCE-focused blocklists to exfiltrate sensitive data like…

  • CVE-2026-3490Jun 17, 2026
    risk 0.00cvss epss 0.01

    picklescan before 1.0.4 fails to block pkgutil.resolve_name, allowing attackers to bypass the entire blocklist by resolving any dangerous function through indirect REDUCE calls. Remote attackers can invoke any blocked function such as os.system, builtins.exec, or subprocess.call…

  • CVE-2025-71325Jun 17, 2026
    risk 0.00cvss epss 0.00

    picklescan before 0.0.27 contains a parsing logic error in the _list_globals function when handling STACK_GLOBAL opcodes, failing to track arguments in the correct range and allowing malicious pickle files to bypass detection. Attackers can craft pickle files with arguments at…

  • CVE-2025-71323Jun 17, 2026
    risk 0.00cvss epss 0.01

    picklescan before 0.0.33 fails to block the ctypes module, allowing attackers to achieve remote code execution by invoking direct syscalls and accessing raw memory. Attackers can craft malicious pickle files using ctypes.WinDLL to load kernel32.dll and execute arbitrary…

  • CVE-2025-71322Jun 17, 2026
    risk 0.00cvss epss 0.00

    PickleScan before 0.0.33 fails to include the pty.spawn function in its unsafe globals list, allowing attackers to bypass security checks. Malicious actors can craft pickle payloads using pty.spawn to achieve arbitrary code execution when files are processed by PickleScan.

  • CVE-2025-71321Jun 17, 2026
    risk 0.00cvss epss 0.01

    picklescan before 0.0.33 contains an arbitrary file writing vulnerability that allows attackers to bypass the dangerous blocklist by using distutils.file_util.write_file. Attackers can construct malicious pickle objects to overwrite critical system files and achieve denial of…

  • CVE-2025-71320Jun 17, 2026
    risk 0.00cvss epss 0.01

    picklescan before 0.0.33 contains an incomplete deny-list that fails to block pydoc.locate and operator.methodcaller functions, allowing attackers to bypass security checks. Remote attackers can craft malicious pickle files using these unblocked functions to achieve arbitrary…

  • CVE-2026-35066Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Access Control vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to denial of service.

  • CVE-2026-35067Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Access Control vulnerability. A low privileged attacker with adjacent network access could potentially exploit this vulnerability, leading to Elevation of privileges and Unauthorized access.

  • CVE-2026-35162Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Access Control vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to denial of service.

  • CVE-2026-35065Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Code execution, Denial of service,…

  • CVE-2026-10850Jun 17, 2026
    risk 0.00cvss epss 0.00

    Plane CE 1.3.1 allows a low-privileged project member to submit arbitrary HTML/JS in the description_html field when creating an intake work item through the API v1 intake endpoint.

  • CVE-2026-32804Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Unauthorized access.

  • CVE-2026-47103Jun 17, 2026
    risk 0.00cvss epss 0.01

    Python StateMachine versions 3.0.0 before 3.2.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary code by supplying malicious SCXML documents containing crafted `` attributes evaluated unsafely. The SCXMLProcessor passes…

  • CVE-2026-54016Jun 17, 2026
    risk 0.00cvss epss 0.00

    ## Summary Open WebUI has a Broken Object Level Authorization (BOLA) vulnerability in the builtin `search_knowledge_files` tool. When native function calling is enabled and the selected model has no attached knowledge bases, an authenticated user can call…

  • CVE-2026-49502Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure, Information tampering, and Unauthorized…

  • CVE-2026-54812Jun 17, 2026
    risk 0.00cvss epss 0.00

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes Motors allows Blind SQL Injection. This issue affects Motors: from n/a through 1.4.109.

  • CVE-2026-22283Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) Version prior to 4.8, contain(s) an Inclusion of Functionality from Untrusted Control Sphere vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.

  • CVE-2026-54810Jun 17, 2026
    risk 0.00cvss epss 0.00

    Missing Authorization vulnerability in Nexi Payments Nexi XPay allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Nexi XPay: from n/a through 8.3.1.

  • CVE-2026-40641Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, version(s) 4.6.0.1, contain(s) an Use of a Broken or Risky Cryptographic Algorithm vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and Information tampering.

  • CVE-2026-54015Jun 17, 2026
    risk 0.00cvss epss 0.00

    ## Summary Open WebUI's prompt version-history endpoints authorize the `prompt_id` in the URL but then act on caller-supplied history IDs without verifying that the history row belongs to that prompt (`history_entry.prompt_id == prompt.id`). Three operations are affected: -…

  • CVE-2026-54014Jun 17, 2026
    risk 0.00cvss epss 0.00

    ## Summary A path traversal vulnerability exists in open-webui's cache file serving endpoint that allows any authenticated user to read files from sibling directories outside the intended cache directory, by exploiting an incomplete `startswith` containment check that lacks a…

  • CVE-2026-54013higJun 17, 2026
    risk 0.38cvss epss 0.00

    # Stored XSS to Account Takeover via Model Profile Images in Open WebUI **Affected:** Open WebUI <= 0.9.5 **Bypass of:** GHSA-3wgj-c2hg-vm6q, GHSA-3856-3vxq-m6fc --- ## TL;DR Open WebUI patched SVG XSS in user profile images and webhook profile images but forgot to apply…

  • CVE-2026-54012higJun 17, 2026
    risk 0.45cvss epss 0.00

    ## Summary Open WebUI lets a user who can create, update, or import workspace models store arbitrary `meta.knowledge` entries on their model without checking whether they own or can read the referenced files. Open WebUI then treats `meta.knowledge` entries of type `file` as an…

  • CVE-2026-54011higJun 17, 2026
    risk 0.45cvss epss 0.00

    ## Summary Open WebUI renders Mermaid blocks from Markdown files in the file preview panel and inserts the generated SVG into the DOM using `innerHTML`. Because Mermaid is configured with `securityLevel: 'loose'`, attacker-controlled Mermaid content can be rendered unsafely in…

  • CVE-2026-54010higJun 17, 2026
    risk 0.38cvss epss 0.00

    ## Summary Open WebUI `v0.9.5` lets an authenticated user attach arbitrary `file_id` values to their own chat message without checking whether they own or can read those files. If the attacker then shares that chat and grants themselves read access, `has_access_to_file()`…

  • CVE-2026-55748modJun 17, 2026
    risk 0.39cvss 6.0epss 0.00

    OpenStack Horizon: OpenStack Horizon: Information disclosure or integrity compromise via crafted project name with shell metacharacters

  • CVE-2026-54009Jun 17, 2026
    risk 0.00cvss epss 0.00

    ## summary `POST /api/chat/completions` accepts an `image_url.url` value that, when it does NOT start with `http://`, `https://`, or `data:image/`, is interpreted as a file id and resolved against the global file table with no ownership check. An authenticated user can…

  • CVE-2024-47477Jun 17, 2026
    risk 0.00cvss epss 0.00

    Dell PowerFlex Manager, versions prior to 4.5.1.1, contain an improper certificate validation vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability leading to man-in-the-middle attack in tandem with DNS cache poisoning.

  • CVE-2026-54008higJun 17, 2026
    risk 0.38cvss epss 0.00

    ## Summary `backend/open_webui/utils/oauth.py::_process_picture_url` (v0.9.5, lines 1435-1470) calls `validate_url(picture_url)` on the initial URL only, then invokes `aiohttp.ClientSession.get(picture_url, ...)` without `allow_redirects=False`. aiohttp's default is…

  • CVE-2026-54007higJun 17, 2026
    risk 0.45cvss epss 0.00

    ### Summary The chat message listener allows non-same-origin `input:prompt` and `action:submit` messages, so an external site can set prompt text and trigger `submitPrompt()` in an authenticated victim session. I validated this with a cross-origin attacker page that auto-posted…

  • CVE-2026-54006Jun 17, 2026
    risk 0.00cvss epss 0.00

    ### Summary `POST /api/v1/calendars/events/{event_id}/update` validates that the caller has **write** access to the calendar the event *currently* belongs to, but does not validate the **destination** `calendar_id` supplied in the request body. The model layer then persists the…

  • CVE-2026-55743Jun 17, 2026
    risk 0.00cvss epss 0.01

    The shell tool command allowlist in the SecurityPolicy of OpenHuman desktop agent through 0.54.0 (default Supervised security policy) can be bypassed to execute arbitrary OS commands with the privileges of the desktop user. Two flaws in src/openhuman/security/policy.rs combine:…

  • CVE-2026-53931Jun 17, 2026
    risk 0.00cvss epss 0.00

    ### Summary The spreadsheet-import endpoint `axiosRequestMake` could be used as a generic HTTP proxy. Before the fix it was reachable unauthenticated, and its URL-extension allowlist was a regex tested against the full URL string, so URLs whose query string ended in `.csv` (for…

  • CVE-2026-53930Jun 17, 2026
    risk 0.00cvss epss 0.00

    ### Summary The base-migration endpoint accepted a caller-supplied URL that the migration worker dereferenced without enforcing protocol or destination, allowing scheme abuse (`file:`, `ftp:`, etc.) and probing of internal HTTP destinations. ### Details The `migrate` endpoint…

  • CVE-2026-53929Jun 17, 2026
    risk 0.00cvss epss 0.00

    ### Summary With `NC_SECURE_ATTACHMENTS=true`, an authenticated uploader could deliver `.html` or `.svg` attachments that the browser rendered inline from the NocoDB origin instead of forcing a download. ### Details The signed attachment handler stored response-header overrides…

  • CVE-2026-53928Jun 17, 2026
    risk 0.00cvss epss 0.00

    ### Summary A stolen refresh token survived a password-forgot flow and could be used to mint fresh JWTs even after the user reset their password. ### Details `passwordChange` and `passwordReset` deleted the user's refresh tokens, but `passwordForgot` only rotated…

  • CVE-2026-53927Jun 17, 2026
    risk 0.00cvss epss 0.00

    ### Summary The spreadsheet-fetch endpoint (`axiosRequestMake`) accepted URLs whose path contained a permitted extension anywhere in the string, and applied a hand-rolled regex blocklist that omitted `127.0.0.0/8` and `169.254.0.0/16`, allowing the cloud-metadata endpoint to be…

  • CVE-2026-54233Jun 17, 2026
    risk 0.00cvss epss 0.00

    ### Summary vLLM's `/v1/audio/transcriptions` endpoint limits compressed upload size but not decoded PCM output. A 25MB OPUS file expands to ~14.9GB of float32 PCM at decode time. Tested on vLLM v0.19.0. ### Details `SpeechToTextProcessor` rejects uploads over…

  • CVE-2026-54415Jun 17, 2026
    risk 0.00cvss epss 0.00

    Missing Authorization in the server management routes (routes/admin.php) in Azuriom Azuriom CMS before 1.2.11 on all platforms allows an authenticated attacker with the admin.access permission to create AzLink server tokens and take over non-admin user accounts by changing their…

  • CVE-2026-11311Jun 17, 2026
    risk 0.00cvss epss 0.01

    When NGINX Plus is configured as the data plane for NGINX Gateway Fabric, an injection vulnerability exists in the NGINX configuration generator component of NGINX Gateway Fabric. User-supplied string values from the NginxProxy Custom Resource Definition serverTokens field and…

  • CVE-2026-48142Jun 17, 2026
    risk 0.00cvss epss 0.00

    NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_charset_module module. When content is served or proxied through a location block with both source_charset utf-8; and a charset directive (for example, charset koi8-r;) configured, remote, unauthenticated…

  • CVE-2026-42055Jun 17, 2026
    risk 0.00cvss epss 0.04

    NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module modules. This vulnerability exists when the proxy_http_version to 2 or grpc_pass directives are used to proxy HTTP/2 traffic, the ignore_invalid_headers directive…