Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.5 views

CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS6.8AI score0.01193EPSS
Exploits0References1
Circl
Circl
added 2020/12/31 7:27 p.m.4 views

CVE-2020-25788

creationtimestamp| type| source ---|---|--- 2020-12-31 19:27:18+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1810...

8.1CVSS7.9AI score0.01193EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/10/01 12:0 a.m.39 views

FreeBSD : tt-rss -- multiple vulnerabilities (2eec1e85-faf3-11ea-8ac0-4437e6ad11c4)

tt-rss project reports : The cachedurl feature mishandles JavaScript inside an SVG document. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST'url' in an error message. It does not validate all URLs before requesting them. Allows remote attackers to execute arbitrary PHP code via a...

10CVSS8.1AI score0.1966EPSS
Exploits8References7
OSV
OSV
added 2020/09/19 9:15 p.m.7 views

CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS8AI score
Exploits0References3
OSV
OSV
added 2020/09/19 9:15 p.m.3 views

UBUNTU-CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS7.3AI score0.01193EPSS
Exploits0References4
CVE
CVE
added 2020/09/19 8:18 p.m.57 views

CVE-2020-25788

Tiny Tiny RSS (tt-rss) before 2020-09-16 contains a vulnerability in imgproxy (plugins/af_proxy_http/init.php) where $_REQUEST["url"] is mishandled in an error message. Root cause: improper handling of the URL parameter in error output. Impact indicators in the provided data show high severity (C...

8.1CVSS7.9AI score0.01193EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/04/03 12:0 a.m.1 views

Extreme PDF Reader suffers from memory corruption vulnerability (CNVD-2020-25788)

Extreme PDF Reader is a simple, small, efficient and effective PDF reader developed by Beijing Haiteng Times Technology Co. Extreme PDF Reader has a memory corruption vulnerability that can be exploited by attackers to cause a denial of service...

6.9AI score
Exploits0
Rows per page
Query Builder