Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:13 a.m.21 views

CVE-2022-31070

NestJS Proxy is a NestJS module to decorate and proxy calls. Prior to version 0.7.0, the nestjs-proxy library did not have a way to block sensitive cookies e.g. session cookies from being forwarded to backend services configured by the application developer. This could have led to sensitive cooki...

7.5CVSS6.5AI score0.00603EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 12:15 p.m.4 views

CVE-2025-31070

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in LambertGroup HTML5 Radio Player - WPBakery Page Builder Addon lbg-cleverbakery allows Path Traversal.This issue affects HTML5 Radio Player - WPBakery Page Builder Addon: from n/a through = 2.5...

7.5CVSS0.00475EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 11:28 a.m.18 views

CVE-2025-31070

CVE-2025-31070 is a path traversal vulnerability in the WordPress addon HTML5 Radio Player - WPBakery Page Builder Addon, allowing arbitrary file download. The issue stems from improper limitation of a pathname to a restricted directory, affecting addon versions up to and including 2.5. The provi...

7.5CVSS5.9AI score0.00475EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 11:28 a.m.3 views

CVE-2025-31070 WordPress HTML5 Radio Player - WPBakery Page Builder Addon plugin <= 2.5 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in LambertGroup HTML5 Radio Player - WPBakery Page Builder Addon lbg-cleverbakery allows Path Traversal.This issue affects HTML5 Radio Player - WPBakery Page Builder Addon: from n/a through = 2.5...

7.5CVSS5.2AI score0.00475EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 11:28 a.m.19 views

CVE-2025-31070 WordPress HTML5 Radio Player - WPBakery Page Builder Addon plugin <= 2.5 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in LambertGroup HTML5 Radio Player - WPBakery Page Builder Addon lbg-cleverbakery allows Path Traversal.This issue affects HTML5 Radio Player - WPBakery Page Builder Addon: from n/a through = 2.5...

7.5CVSS0.00475EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/07/11 8:2 a.m.6 views

WordPress HTML5 Radio Player - WPBakery Page Builder Addon plugin <= 2.5 - Arbitrary File Download vulnerability

WordPress HTML5 Radio Player - WPBakery Page Builder Addon plugin = 2.5 - Arbitrary File Download vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Plugin HTML5 Radio Player - WPBakery Page Builder Addon versions = 2.5...

7.5CVSS6.5AI score0.00475EPSS
Exploits0Affected Software1
Circl
Circl
added 2024/07/17 12:22 p.m.6 views

CVE-2024-31070

creationtimestamp| type| source ---|---|--- 2024-07-17 12:22:01+00:00| seen| https://t.me/cvedetector/1072...

9.1CVSS8.7AI score0.0075EPSS
Exploits0References1
OSV
OSV
added 2024/07/17 9:15 a.m.4 views

CVE-2024-31070

Initialization of a resource with an insecure default vulnerability in FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allows a remote unauthenticated attacker to access telnet service unlimitedly...

9.1CVSS5.8AI score0.0075EPSS
Exploits0References3
Circl
Circl
added 2023/05/25 12:49 p.m.5 views

CVE-2023-31070

creationtimestamp| type| source ---|---|--- 2023-05-25 12:49:50+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8362 2023-05-25 16:15:42+00:00| published-proof-of-concept| https://t.me/dilagrafie/3063...

4.8AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/06/15 7:5 p.m.7 views

CVE-2022-31070 Potential Sensitive Cookie Exposure in NPM Packages @finastra/nestjs-proxy, @ffdc/nestjs-proxy

NestJS Proxy is a NestJS module to decorate and proxy calls. Prior to version 0.7.0, the nestjs-proxy library did not have a way to block sensitive cookies e.g. session cookies from being forwarded to backend services configured by the application developer. This could have led to sensitive cooki...

5.8CVSS7.5AI score0.00603EPSS
Exploits0References2
CVE
CVE
added 2022/06/15 7:5 p.m.85 views

CVE-2022-31070

The CVE-2022-31070 issue affects the NestJS Proxy library. Prior to 0.7.0, nestjs-proxy could forward sensitive cookies (e.g., session cookies) to backend services, risking exposure. The fix is in @finastra/nestjs-proxy v0.7.0, which blocks cookies by default; an allowedCookies whitelist can be c...

7.5CVSS6.4AI score0.00603EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2021/08/24 6:52 p.m.8 views

CVE-2021-31070

...

Exploits0
CVE
CVE
added 2021/08/24 6:52 p.m.23 views

CVE-2021-31070

CVE-2021-31070 entry is rejected/not used; this CVE ID is not an active vulnerability entry.

7.4AI score
Exploits0
CNVD
CNVD
added 2019/08/21 12:0 a.m.1 views

VideoLAN VLC media player resource management error vulnerability (CNVD-2019-31070)

VideoLAN VLC media player is a free, open source cross-platform multimedia player also a multimedia framework organized by VideoLAN France. The product supports the playback of a variety of media files, CD-ROMs, etc., a variety of audio and video formats WMV, MP3, etc. and so on. A resource...

7.8CVSS6.9AI score0.01504EPSS
Exploits0References1
Rows per page
Query Builder