VYPR

CWE-807

Reliance on Untrusted Inputs in a Security Decision

BaseIncompleteLikelihood: High

Description

The product uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypasses the protection mechanism.

Hierarchy (View 1000)

CVEs mapped to this weakness (52)

page 1 of 3
  • CVE-2026-6213CriMay 8, 2026
    risk 0.65cvss epss 0.00

    A vulnerability in Remote Spark SparkView before build 1122 allows an attacker to bypasses the local connection check and achieve arbitrary code execution as root on the server side. Depending on implementation the vulnerability can be exploited by an unauthenticated…

  • CVE-2025-13926CriApr 9, 2026
    risk 0.64cvss 9.8epss 0.00

    An attacker could use data obtained by sniffing the network traffic to forge packets in order to make arbitrary requests to Contemporary Controls BASC 20T.

  • CVE-2025-1126CriFeb 11, 2025
    risk 0.60cvss 9.3epss 0.00

    A Reliance on Untrusted Inputs in a Security Decision vulnerability has been identified in the Lexmark Print Management Client.

  • CVE-2026-44649CriMay 29, 2026
    risk 0.57cvss 9.8epss 0.00

    SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User (Authelia) and X-Authentik-Username (Authentik)…

  • CVE-2025-12488CriNov 6, 2025
    risk 0.57cvss 9.8epss 0.01

    oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of oobabooga text-generation-webui. Authentication is not required…

  • CVE-2025-12487CriNov 6, 2025
    risk 0.57cvss 9.8epss 0.01

    oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of oobabooga text-generation-webui. Authentication is not required…

  • CVE-2024-55354HigApr 8, 2025
    risk 0.57cvss 8.8epss 0.00

    Lucee before 5.4.7.3 LTS and 6 before 6.1.1.118, when an attacker can place files on the server, is vulnerable to a protection mechanism failure that can let an attacker run code that would be expected to be blocked and access resources that would be expected to be protected.

  • CVE-2026-25931HigFeb 9, 2026
    risk 0.51cvss 7.8epss 0.00

    vscode-spell-checker is a basic spell checker that works well with code and documents. Prior to v4.5.4, DocumentSettings._determineIsTrusted treats the configuration value cSpell.trustedWorkspace as the authoritative trust flag. The value defaults to true (package.json) and is…

  • CVE-2026-29134HigApr 2, 2026
    risk 0.49cvss 7.5epss 0.00

    SEPPmail Secure Email Gateway before version 15.0.3 allows an external user to modify GINA webdomain metadata and bypass per-domain restrictions.

  • CVE-2025-10161HigNov 11, 2025
    risk 0.47cvss 7.3epss 0.00

    Improper Restriction of Excessive Authentication Attempts, Client-Side Enforcement of Server-Side Security, Reliance on Untrusted Inputs in a Security Decision vulnerability in Turkguven Software Technologies Inc. Perfektive allows Brute Force, Authentication Bypass,…

  • CVE-2025-47909HigAug 29, 2025
    risk 0.47cvss 7.3epss 0.00

    Hosts listed in TrustedOrigins implicitly allow requests from the corresponding HTTP origins, allowing network MitMs to perform CSRF attacks. After the CVE-2025-24358 fix, a network attacker that places a form at http://example.com can't get it to submit to https://example.com…

  • CVE-2026-43935HigMay 26, 2026
    risk 0.46cvss 8.1epss 0.00

    e107 is a content management system (CMS). Prior to 2.3.4, a Host Header Injection vulnerability in the password reset page allows attackers to manipulate the Host header to generate password reset links pointing to attacker-controlled domains. This can lead to phishing attacks,…

  • CVE-2025-0117HigMar 12, 2025
    risk 0.46cvss epss 0.00

    A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices potentially enables a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. GlobalProtect App on macOS, Linux, iOS, Android,…

  • CVE-2026-0390MedApr 14, 2026
    risk 0.44cvss 6.7epss 0.00

    Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feature locally.

  • CVE-2025-59152HigOct 6, 2025
    risk 0.42cvss 7.5epss 0.00

    Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. In version 2.17.0, rate limits can be completely bypassed by manipulating the X-Forwarded-For header. This renders IP-based rate limiting ineffective against determined attackers. Litestar's…

  • CVE-2026-41390HigApr 28, 2026
    risk 0.40cvss 7.3epss 0.00

    OpenClaw before 2026.3.28 contains an exec allowlist bypass vulnerability where allow-always persistence fails to unwrap /usr/bin/script and similar wrappers before storing trust decisions. Attackers can obtain user approval for one wrapped command to persist trust for wrapper…

  • CVE-2026-41380HigApr 28, 2026
    risk 0.40cvss 7.3epss 0.00

    OpenClaw before 2026.3.28 contains an execution approval vulnerability in exec-approvals-allowlist.ts that allows allow-always persistence to trust wrapper carrier executables instead of invoked targets. Attackers can exploit positional carrier executable routing through…

  • CVE-2019-25711MedApr 12, 2026
    risk 0.40cvss 6.2epss 0.00

    SpotFTP Password Recover 2.4.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an oversized buffer in the Name field during registration. Attackers can generate a 256-byte payload, paste it into the Name input field,…

  • CVE-2019-25594MedMar 22, 2026
    risk 0.40cvss 6.2epss 0.00

    ASPRunner.NET 10.1 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the table name field. Attackers can input a buffer of 10000 characters in the table name parameter during database table…

  • CVE-2019-25544MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    Pidgin 2.13.0 contains a denial of service vulnerability that allows local attackers to crash the application by providing an excessively long username string during account creation. Attackers can input a buffer of 1000 characters in the username field and trigger a crash when…