| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-7990 | Stored Cross-Site Scripting in open-webui/open-webui | open-webui | open-webui/open-webui | 高危 | - | 2025-03-20 10:08:56 | Deep Dive |
| CVE-2024-12374 | Stored XSS in automatic1111/stable-diffusion-webui | automatic1111 | automatic1111/stable-diffusion-webui | 中危 | - | 2025-03-20 10:08:50 | Deep Dive |
| CVE-2024-5125 | XSS and Open Redirect via SVG File Upload in parisneo/lollms-webui | parisneo | parisneo/lollms-webui | 高危 | - | 2024-11-14 17:36:05 | Deep Dive |
| CVE-2024-6673 | CSRF Vulnerability in parisneo/lollms-webui | parisneo | parisneo/lollms-webui | - | - | 2024-10-29 12:50:21 | Deep Dive |
| CVE-2024-6674 | Data Leak through CORS Misconfiguration in parisneo/lollms-webui | parisneo | parisneo/lollms-webui | - | - | 2024-10-29 12:46:45 | Deep Dive |
| CVE-2024-6959 | Denial of Service (DOS) in multipart boundary while uploading file in parisneo/lollms-webui | parisneo | parisneo/lollms-webui | 中危 | - | 2024-10-13 12:28:19 | Deep Dive |
| CVE-2024-7049 | Exposure of Token in open-webui/open-webui | open-webui | open-webui/open-webui | - | - | 2024-10-10 07:15:55 | Deep Dive |
| CVE-2024-7048 | IDOR in open-webui/open-webui | open-webui | open-webui/open-webui | - | - | 2024-10-10 01:22:17 | Deep Dive |
| CVE-2024-7041 | IDOR in open-webui/open-webui | open-webui | open-webui/open-webui | - | - | 2024-10-09 19:57:41 | Deep Dive |
| CVE-2024-7037 | Arbitrary File Write/Delete Leading to RCE in open-webui/open-webui | open-webui | open-webui/open-webui | - | - | 2024-10-09 19:52:22 | Deep Dive |
| CVE-2024-7038 | Information Disclosure in open-webui/open-webui | open-webui | open-webui/open-webui | - | - | 2024-10-09 18:26:39 | Deep Dive |
| CVE-2024-6394 | Local File Inclusion in parisneo/lollms-webui | parisneo | parisneo/lollms-webui | 高危 | - | 2024-09-30 08:09:10 | Deep Dive |
| CVE-2024-42469 | CometVisu Backend for openHAB affected by RCE through path traversal | openhab | openhab-webui | Critical | 9.8 | 2024-08-09 18:12:12 | Deep Dive |
| CVE-2024-42468 | Path traversal (CometVisu) | openhab | openhab-webui | Medium | 5.3 | 2024-08-09 18:10:21 | Deep Dive |
| CVE-2024-42467 | CometVisu Backend for openHAB affected by SSRF/XSS | openhab | openhab-webui | Critical | 10.0 | 2024-08-09 18:06:34 | Deep Dive |
| CVE-2024-42470 | CometVisu Backend for openHAB has a sensitive information disclosure vulnerability | openhab | openhab-webui | Medium | 6.5 | 2024-08-09 18:02:12 | Deep Dive |
| CVE-2024-6707 | Open WebUI Arbitrary File Upload + Path Traversal | Open WebUI | Open WebUI | - | - | 2024-08-07 23:04:45 | Deep Dive |
| CVE-2024-6706 | Open WebUI Stored Cross-Site Scripting | Open WebUI | Open WebUI | - | - | 2024-08-07 23:01:15 | Deep Dive |
| CVE-2024-4897 | Remote Code Execution in parisneo/lollms-webui | parisneo | parisneo/lollms-webui | - | - | 2024-07-02 14:37:36 | Deep Dive |
| CVE-2024-5933 | Cross-site Scripting (XSS) in parisneo/lollms-webui | parisneo | parisneo/lollms-webui | - | - | 2024-06-27 18:46:18 | Deep Dive |