Deserialization of Untrusted Data vulnerability in Themeton The Barber Shop allows Object Injection. This issue affects The Barber Shop: from n/a through 1.9.
Deserialization of Untrusted Data vulnerability in Themeton Lagom allows Object Injection. This issue affects Lagom: from n/a through 2.0.
Unauthenticated SQL Injection in Advanced Ads โ Tracking < 3.0.7 versions.
Unauthenticated Insecure Direct Object References (IDOR) in School Management <= 93.1.0 versions.
Open WebUI Prompt history IDOR: unbound history_id allows cross-prompt read and deletion
Open WebUI: Sibling-Prefix Path Traversal via /cache/{path}
Open WebUI: Stored XSS to Account Takeover via Model Profile Images
Open WebUI: Forged model meta.knowledge allows cross-user file read and deletion
Open WebUI: Stored XSS in Mermaid Markdown Preview
Open WebUI: Forged chat-file link allows cross-user file read and deletion
Open WebUI: Cross-user file disclosure via /api/chat/completions image_url field
Open WebUI: Redirect-Bypass SSRF in OAuth `_process_picture_url` (incomplete-fix sibling of CVE-2026-45401)
Open WebUI: Cross-origin postMessage confirmation bypass via action:submit
Open WebUI IDOR: Calendar event re-parenting allows writing events into another user's calendar
NocoDB: Server-Side Request Forgery via Spreadsheet Import Endpoint
NocoDB: Server-Side Request Forgery via Base Migration URL
NocoDB: Stored Cross-Site Scripting via Secure Attachment
NocoDB: Refresh Tokens Persist Through Password Recovery
NocoDB: Server-Side Request Forgery via Spreadsheet Fetch URL
vLLM: OOM Denial of Service via Audio Decompression Bomb