Lucene search
K

173 matches found

NVD
NVD
added 2022/02/28 4:15 p.m.21 views

CVE-2022-26158

An issue was discovered in the web application in Cherwell Service Management CSM 10.2.3. It accepts and reflects arbitrary domains supplied via a client-controlled Host header. Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlle...

6.1CVSS0.00713EPSS
Exploits0References2
Prion
Prion
added 2022/02/28 4:15 p.m.16 views

Design/Logic Flaw

An issue was discovered in the web application in Cherwell Service Management CSM 10.2.3. It accepts and reflects arbitrary domains supplied via a client-controlled Host header. Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlle...

5.8CVSS6.5AI score0.00713EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/02/28 3:25 p.m.101 views

CVE-2022-26158

CVE-2022-26158 affects Cherwell Service Management (CSM) 10.2.3 web application, where a client-controlled Host header is reflected and can trigger a 302 redirect to an attacker-controlled page by injecting a malicious URL in Host. This creates an indirect navigation/redirect vulnerability. Affec...

6.1CVSS6.4AI score0.00713EPSS
Exploits0References2Affected Software1
Huntr
Huntr
added 2022/02/25 5:2 a.m.19 views

Server-Side Request Forgery (SSRF)

Description The SSRF Protection is incomplete and can be bypassed via an HTTP redirect, the python-requests library will follow redirections by default can be disabled byallowredirects=False. An attacker can set up their HTTP server to respond with a 302 redirect to redirect the request to...

7.5CVSS0.4AI score0.00962EPSS
Exploits1References1
Huntr
Huntr
added 2022/01/02 5:58 a.m.33 views

Server-Side Request Forgery (SSRF) in dompdf/dompdf

Description DomPDF uses filegetcontents to obtain HTTP files when allowurlfopen is "On". On default contexts, filegetcontents will redirect whenever served with a 302 response. When developers use DomPDF with isRemoteEnabled set to "true" and allowurlfopen set to "true", but restrict IP addresses...

4.3CVSS4.6AI score0.00953EPSS
Exploits1
Huntr
Huntr
added 2021/06/20 9:50 a.m.7 views

None in babybuddy/babybuddy

✍️ Description Improper restriction at login portal which lets an attacker brute force user's accounts. 🕵️‍♂️ Proof of Concept Video POC: https://drive.google.com/file/d/1udzAGroSqDbEqPRYlUzv7bHgHq7oMNuk/view?usp=sharing You will get 200 for incorrect as it opens the same page for login and 302...

1AI score
Exploits0
Veracode
Veracode
added 2021/05/20 6:8 a.m.33 views

Open Redirection

github.com/prometheus/prometheus is vulnerable to open redirection. An attacker is able to redirect a user to a malicious endpoint via a HTTP 302 response...

6.5CVSS1.3AI score0.1956EPSS
Exploits0References3Affected Software2
Citrix
Citrix
added 2021/02/22 12:0 a.m.7 views

Microsoft Edge using MDX microVPN to connect to Citrix Gateway is seen to redirect many times unexpectedly

When using Microsoft Edge, you may experience random loading of Bookmarked websites, previously visited websites or other unexpected browser redirects HTTP 302, to websites which the user has not chosen to load at the time. Other errors found on closer log examination may appear similar to the...

7.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/09/20 12:30 a.m.5 views

bunker-302.de Cross Site Scripting vulnerability OBB-1349371

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
OSV
OSV
added 2020/08/26 7:15 p.m.6 views

CVE-2020-12855

A Host header injection vulnerability has been discovered in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can poison this header resulting in an adversary controlling the execution flow for the 302 HTTP status...

8.8CVSS7.3AI score0.02231EPSS
Exploits0References1
NVD
NVD
added 2020/08/11 5:15 p.m.11 views

CVE-2020-17466

Turcom TRCwifiZone through 2020-08-10 allows authentication bypass by visiting manage/control.php and ignoring 302 Redirect responses...

9.8CVSS9.7AI score0.01473EPSS
Exploits1References2
Prion
Prion
added 2020/08/11 5:15 p.m.13 views

Authentication flaw

Turcom TRCwifiZone through 2020-08-10 allows authentication bypass by visiting manage/control.php and ignoring 302 Redirect responses...

7.5CVSS9.6AI score0.01473EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/08/11 4:3 p.m.17 views

CVE-2020-17466

Turcom TRCwifiZone through 2020-08-10 allows authentication bypass by visiting manage/control.php and ignoring 302 Redirect responses...

9.8AI score0.01473EPSS
Exploits1References2
Veracode
Veracode
added 2020/04/30 1:44 a.m.13 views

Information Disclosure

@actions/http-client is vulnerable to information disclosure. When a request that results in a 302 redirect contains a Authorization header, the credentials is disclosed to the other domain...

7.5CVSS1.4AI score0.01737EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/04/29 6:0 p.m.19 views

CVE-2020-11021 HTTP request which redirect to another hostname do not strip authorization header in Actions Http-Client

Actions Http-Client NPM @actions/http-client before version 1.0.8 can disclose Authorization headers to incorrect domain in certain redirect scenarios. The conditions in which this happens are if consumers of the http-client: 1. make an http request with an authorization header 2. that request...

6.3CVSS7.4AI score0.01737EPSS
Exploits0References3
Hacker One
Hacker One
added 2020/03/15 5:10 p.m.13 views

Mail.ru: [api.33slona.ru] Доступ к API из за неправильной конфигурации сервера 302 редирет.

A 302 reply for non-authenticated request to api.33slona.ru could leak some static content with HTML body...

Exploits0
Hacker One
Hacker One
added 2020/01/15 10:33 p.m.345 views

Kubernetes: Half-Blind SSRF found in kube/cloud-controller-manager can be upgraded to complete SSRF (fully crafted HTTP requests) in vendor managed k8s service.

Hello, Who we are : We’re two French security researchers and our respective names are Brice Augras and Christophe Hauquiert, we worked and found the vulnerability together. Brice Augras from https://www.groupe-asten.fr/ company - https://hackerone.com/reeverzax Christophe Hauquiert -...

3.5CVSS6AI score0.03679EPSS
Exploits0
Kitploit
Kitploit
added 2019/12/15 8:30 p.m.242 views

Nginx Log Check - Nginx Log Security Analysis Script

Nginx Log Security Analysis Script Features Statistics Top 20 Address SQL injection analysis Scanner alert analysis Exploit detection Sensitive path access File contains attack Webshell Find URLs with response length Top 20 Looking for rare script file access Find script file for 302 redirect Usa...

8.4AI score
Exploits0References1
exploitpack
exploitpack
added 2019/11/05 12:0 a.m.29 views

SD.NET RIM 4.7.3c - idtyp SQL Injection

SD.NET RIM 4.7.3c - idtyp SQL Injection Exploit Title: SD.NET RIM 4.7.3c - 'idtyp' SQL Injection Date: 2019-11-05 Exploit Author: Fabian Mosch r-tec IT Security GmbH Vendor Homepage: https://www.sitzungsdienst.net/ Software Link:...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2019/11/05 12:0 a.m.362 views

SD.NET RIM 4.7.3c SQL Injection

Exploit Title: SD.NET RIM 4.7.3c - 'idtyp' SQL Injection Date: 2019-11-05 Exploit Author: Fabian Mosch r-tec IT Security GmbH Vendor Homepage: https://www.sitzungsdienst.net/ Software Link: https://www.sitzungsdienst.net/2018/12/sd-net-rim-4-7-3-veroeffentlicht/ Version: 4.7.3c Tested on: 4.7.3c...

0.1AI score
Exploits0
Rows per page
Query Builder