Khoj is an application that creates personal AI agents. The Automation feature allows a user to insert arbitrary HTML inside the task instructions, resulting in a Stored XSS. The q parameter for the / ...
Continue Reading
May 23, 2025
creation_timestamp| type| source ---|---|--- 2025-05-23 15:10:09+00:00| seen|...Read More ...
Continue Reading
May 23, 2025
creation_timestamp| type| source ---|---|--- 2025-05-23 11:32:23+00:00| seen|...Read More ...
Continue Reading
May 23, 2025
An issue was discovered in Bravura Security Fabric versions 12.3.x before 12.3.5.32784, 12.4.x before 12.4.3.35110, 12.5.x before 12.5.2.35950, 12.6.x before 12.6.2.37183, and 12.7.x before 12.7.1.382 ...
Continue Reading
May 23, 2025
Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset ...
Continue Reading
May 23, 2025
creation_timestamp| type| source ---|---|--- 2025-05-23 11:22:22+00:00| seen|...Read More ...
Continue Reading
May 23, 2025
Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role) because req.body.role can be used in updateMySelf in...Read More ...
Continue Reading
May 23, 2025
Nextcloud Server is a self hosted personal cloud system. After storing "Global credentials" on the server, the API returns them and adds them into the frontend again, allowing to rea ...
Continue Reading
May 23, 2025
Back to Main
