CVE-2026-34163

creationtimestamp| type| source ---|---|--- 2026-03-31 15:42:13+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miejbtf5cj2h 2026-03-31 17:24:58+00:00| seen| Telegram/ky16Z8CpY9UfGCFQKDuXqskkeRzODLCHisg6zhKBGmfTV8 2026-04-06 01:00:14+00:00| seen|...

CVE-2026-34163 Server-Side Request Forgery via MCP Tools Endpoint in FastGPT

FastGPT is an AI Agent building platform. Prior to version 4.14.9.5, FastGPT's MCP Model Context Protocol tools endpoints /api/core/app/mcpTools/getTools and /api/core/app/mcpTools/runTool accept a user-supplied URL parameter and make server-side HTTP requests to it without validating whether the...

CVE-2024-34163

Improper input validation in firmware for some IntelR NUC may allow a privileged user to potentially enableescalation of privilege via local access...

CVE-2023-34163

Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally...

CVE-2024-34163

creationtimestamp| type| source ---|---|--- 2024-08-14 17:23:01+00:00| seen| https://t.me/cvedetector/3136...

CVE-2024-34163

Improper input validation in firmware for some IntelR NUC may allow a privileged user to potentially enableescalation of privilege via local access...

CVE-2023-34163

Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally...

CVE-2023-34163

CVE-2023-34163 is described as a permission-control vulnerability in the window management module. Affected: window management component; root cause and exact version/vendor mapping are not specified. Impact per sources: high availability impact (A:H) with no confidentiality or integrity impact; ...

CVE-2023-34163

Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally...

CVE-2023-34163

Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally...

Security Bulletin: IBM CICS TX Standard is vulnerable to HTTP header injection (CVE-2022-34163).

Summary IBM CICS TX could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. The fix removes this vulnerability CVE-2022-34163 from IBM CICS TX Standard. Vulnerability Details CVEID:CVE-2022-34163...

Security Bulletin: IBM CICS TX Advanced is vulnerable to HTTP header injection (CVE-2022-34163).

Summary IBM CICS TX could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. The fix removes this vulnerability CVE-2022-34163 from IBM CICS TX Advanced. Vulnerability Details CVEID:CVE-2022-34163...

CVE-2022-34163

creationtimestamp| type| source ---|---|--- 2022-08-01 20:17:03+00:00| seen| https://t.me/cibsecurity/47361...

CVE-2022-34163

The CVE-2022-34163 issue affects IBM CICS TX Standard/Advanced 11.1. Root cause is improper validation of input in the HOST header, causing HTTP header injection that can enable cross-site scripting, cache poisoning, or session hijacking. IBM provides fixes for 11.1 (defect 127639) via interim up...