Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
Protection Mechanism FailureCVE-2026-54013
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- M
Authorization Bypass Through User-Controlled KeyCVE-2026-54006
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
UNIX Symbolic Link (Symlink) FollowingCVE-2026-55447
Affects lfx | Versions [,0.4.2)
Has fix
pipPublished 22 Jun 2026
- M
Directory TraversalCVE-2026-54014
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- M
Authorization Bypass Through User-Controlled KeyCVE-2026-54015
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
Authorization Bypass Through User-Controlled KeyCVE-2026-54009
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
Origin Validation ErrorCVE-2026-54007
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
Allocation of Resources Without Limits or ThrottlingCVE-2026-55446
Affects langflow-base | Versions [, 0.0.97)
Has fix
pipPublished 22 Jun 2026
- H
Missing AuthorizationCVE-2026-54012
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
Cross-site Scripting (XSS)CVE-2026-54011
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- M
Missing AuthorizationCVE-2026-54016
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- M
Insufficient Session ExpirationCVE-2026-55423
Affects lfx | Versions [,0.2.1)
Has fix
pipPublished 22 Jun 2026
- M
Insufficient Session ExpirationCVE-2026-55423
Affects langflow-base | Versions [,0.6.7)
Has fix
pipPublished 22 Jun 2026
- H
Missing AuthorizationCVE-2026-54010
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
Server-side Request Forgery (SSRF)CVE-2026-54008
Affects open-webui | Versions [,0.9.6)
Has fix
pipPublished 22 Jun 2026
- H
Uncontrolled RecursionCVE-2026-54297
Affects faraday | Versions <2.14.3
Has fix
RubyGemsPublished 22 Jun 2026
- L
Missing Release of Resource after Effective LifetimeCVE-2026-54786
Affects wasmtime-wasi | Versions <24.0.10>=25.0.0 <36.0.11>=37.0.0 <44.0.3>=45.0.0 <45.0.2
Has fix
CargoPublished 22 Jun 2026
- M
Cross-site Scripting (XSS)CVE-2026-55847
Affects io.qameta.allure:allure-generator | Versions [,2.39.0)
Has fix
MavenPublished 22 Jun 2026
- H
Missing Authentication for Critical FunctionCVE-2026-55450
Affects lfx | Versions [,0.4.2)
Has fix
pipPublished 22 Jun 2026
- H
Missing Authentication for Critical FunctionCVE-2026-55450
Affects langflow-base | Versions [,0.9.2)
Has fix
pipPublished 22 Jun 2026
- H
Command InjectionCVE-2026-48723
Affects browserstack-cypress-cli | Versions >=1.22.0 <1.36.6
Has fix
npmPublished 22 Jun 2026
- M
Directory TraversalCVE-2026-42867
Affects langflow-base | Versions [,0.9.2)
Has fix
pipPublished 22 Jun 2026
- H
Authorization Bypass Through User-Controlled KeyCVE-2026-33760
Affects langflow-base | Versions [,0.9.2)
Has fix
pipPublished 22 Jun 2026
- H
Arbitrary Code InjectionCVE-2026-48519
Affects langflow | Versions [,1.9.2)
Has fix
pipPublished 22 Jun 2026
- H
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-54777
Affects corewcf.netnamedpipe | Versions [1.4.0-preview1,1.8.1)[1.9.0, 1.9.1)
Has fix
NuGetPublished 22 Jun 2026
- M
External Control of File Name or PathCVE-2026-48520
Affects lfx | Versions [,1.10.0)
Has fix
pipPublished 22 Jun 2026
- M
Expired Pointer DereferenceCVE-2026-54778
Affects corewcf.unixdomainsocket | Versions [1.5.0-preview1,1.8.1)[1.9.0,1.9.1)
Has fix
NuGetPublished 22 Jun 2026
- M
Incorrect AuthorizationCVE-2026-32967
Affects org.apache.dolphinscheduler:dolphinscheduler-api | Versions [,3.4.2)
Has fix
MavenPublished 22 Jun 2026
- M
Incorrect AuthorizationCVE-2026-41280
Affects org.apache.dolphinscheduler:dolphinscheduler-api | Versions [,3.4.2)
Has fix
MavenPublished 22 Jun 2026