CVE-2026-25083 | GROWI up to 7.4.5 OpenAI API Endpoint authorization

Inserito da Angelo Barbosa | Mar 16, 2026 | CVE

A vulnerability identified as critical has been detected in GROWI up to 7.4.5. Impacted is an unknown function of the component OpenAI API Endpoint. Performing a manipulation results in missing authorization.

This vulnerability was named CVE-2026-25083. The attack may be initiated remotely. There is no available exploit.

CVE-2026-25083 | GROWI up to 7.4.5 OpenAI API Endpoint authorization

Post correlati

CVE-2025-8752 | wangzhixuan spring-shiro-training up to 94812c1fd8f7fe796c931f4984ff1aa0671ab562 /role/add command injection (ICP2ME)

CVE-2024-10068 | OpenSight Software FlashFXP 5.4.0.3970 FlashFXP.exe uncontrolled search path

CVE-2024-39408 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 cross-site request forgery (apsb24-61)

CVE-2026-1739 | Free5GC pcf up to 1.4.1 smpolicy.go HandleCreateSmPolicyRequest null pointer dereference (Issue 803)