Vexday
by TrueHacking
›
PT
ES
EN
Intelligence
▾
Intelligence
Exploit Timeline
risk queue
Threats
ransomware · malware
Overview
observatory
Triage Room
Threat Actors
Threats to Brazil
Explore
▾
Explore
CVEs
Technologies
Vendors
Weakness types
Briefing
X-Ray
Live
Home
/
Technologies
/
onyx-dot-app
Vulnerabilities in
onyx-dot-app
2 results
CVE-2026-42276
MEDIUM
Onyx: IDOR in /chat/stop-chat-session allows any authenticated user to interrupt other users chat sessions
EPSS
0.3%
CVE-2026-42277
MEDIUM
Onyx: IDOR in /chat/file/{file_id} allows any authenticated user to download other users files
EPSS
0.2%