Parisneo/lollms-webui

This hub aggregates every CVE we track for Parisneo/lollms-webui, a product in the ai ml space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Parisneo/lollms-webui.

• CVE-2024-2356Remote Code Execution due to LFI in '/reinstall_extension' in parisneo/lollms-webui9.6Feb 2, 2026
• CVE-2024-12766SSRF in parisneo/lollms-webui7.5Mar 20, 2025
• CVE-2024-8736Denial of Service (DoS) via Multipart Boundary in parisneo/lollms-webui6.5Mar 20, 2025
• CVE-2024-8898Path Traversal in parisneo/lollms-webui9.8Mar 20, 2025
• CVE-2025-1451Insufficient Patch Leading to DoS in parisneo/lollms-webui7.5Mar 20, 2025
• CVE-2024-6986Cross-site Scripting (XSS) in parisneo/lollms-webui5.4Mar 20, 2025
• CVE-2024-10019Path Traversal and OS Command Injection in parisneo/lollms-webui6.7Mar 20, 2025
• CVE-2024-9920Unrestricted File Upload and Execution in parisneo/lollms-webui8.8Mar 20, 2025
• CVE-2024-9919Missing Authentication Check in parisneo/lollms-webui8.4Mar 20, 2025
• CVE-2024-10047Directory Listing Vulnerability in parisneo/lollms-webui5.3Mar 20, 2025
• CVE-2024-8581Path Traversal in parisneo/lollms-webui9.1Mar 20, 2025
• CVE-2024-5125XSS and Open Redirect via SVG File Upload in parisneo/lollms-webui7.3Nov 14, 2024
• CVE-2024-6673CSRF Vulnerability in parisneo/lollms-webui6.5Oct 29, 2024
• CVE-2024-6674Data Leak through CORS Misconfiguration in parisneo/lollms-webui7.1Oct 29, 2024
• CVE-2024-6959Denial of Service (DOS) in multipart boundary while uploading file in parisneo/lollms-webui7.1Oct 13, 2024