@checkmarxzero.bsky.social on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Checkmarx Zero

checkmarxzero.bsky.social

did:plc:g56ew7bvddbxadkg26txrolr

🚨 CVE-2025-65958 | Open WebUI | Authenticated SSRF (High) Authenticated users can force the server to send HTTP requests to arbitrary URLs, enabling internal network scanning and access to internal services. Affects versions < 0.6.37. Patch: Upgrade to v0.6.37 buff.ly/1dg6IHi buff.ly/Yewlmqu https://devhub.checkmarx.com/cve-details/CVE-2025-65958

2025-12-08T21:52:43.646Z