Vulnerabilities in onyx-dot-app

2 results

CVE-2026-42276MEDIUMOnyx: IDOR in /chat/stop-chat-session allows any authenticated user to interrupt other users chat sessionsEPSS 0.3%CVE-2026-42277MEDIUMOnyx: IDOR in /chat/file/{file_id} allows any authenticated user to download other users filesEPSS 0.2%