CVE-2023-43795

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

EUVD-2022-43795

Malicious code in bioql PyPI...

EUVD-2024-43795

Malicious code in bioql PyPI...

CVE-2025-43795

creationtimestamp| type| source ---|---|--- 2025-09-12 23:04:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyoeqq4r752c...

CVE-2025-43795

Open redirect vulnerability in the System Settings in Liferay Portal 7.1.0 through 7.4.3.101, and Liferay DXP 2023.Q3.1 through 2023.Q3.4 , 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via t...

CVE-2025-43795

Open redirect vulnerability in the System Settings in Liferay Portal 7.1.0 through 7.4.3.101, and Liferay DXP 2023.Q3.1 through 2023.Q3.4 , 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via t...

CVE-2023-43795

creationtimestamp| type| source ---|---|--- 2025-01-31 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-01-31 2025-02-22 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-22 2025-03-08 00:00:00+00:00| exploited| The...

CVE-2024-43795

creationtimestamp| type| source ---|---|--- 2024-10-02 23:03:34+00:00| seen| https://t.me/cvedetector/6881...

CVE-2024-43795 OpenC3 COSMOS vulnerable to cross-site scripting in Login functionality (`GHSL-2024-128`)

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. The login functionality contains a reflected cross-site scripting XSS vulnerability. This vulnerability is fixed in 5.19.0. Note: This CVE only affects Open Source Edition, and...

CVE-2023-43795 WPS Server Side Request Forgery in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

CVE-2023-43795 WPS Server Side Request Forgery in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

CVE-2023-43795 WPS Server Side Request Forgery in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

CVE-2023-43795

CVE-2023-43795 concerns GeoServer, where the Web Processing Service (WPS) vulnerability allows unauthenticated SSRF via GET/POST requests. The issue stems from how WPS processes external URLs, enabling an attacker to make arbitrary HTTP requests and reach internal resources. Patched in GeoServer ...

CVE-2021-43795

creationtimestamp| type| source ---|---|--- 2021-12-02 20:37:02+00:00| seen| https://t.me/cibsecurity/33275...

CVE-2021-43795

Armeria (an open source microservice framework) is affected by a path traversal issue where an HTTP request containing %2F (encoded slash) in the path can bypass path validation and access the server’s local filesystem beyond its restricted directory (e.g., /files/..%2Fsecrets.txt). The vulnerabi...

CVE-2021-43795 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in com.linecorp.armeria:armeria

Armeria is an open source microservice framework. In affected versions an attacker can access an Armeria server's local file system beyond its restricted directory by sending an HTTP request whose path contains %2F encoded /, such as /files/..%2Fsecrets.txt, bypassing Armeria's path validation...

Unfixed XSS vulnerability at jewishstudies.virtualave.net

Security researcher Viper.aT, has submitted on 10/01/2009 a cross-site-scripting XSS vulnerability affecting jewishstudies.virtualave.net, which at the time of submission ranked 43795 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/02/2009. ...

CVE-2022-43795

CVE-2022-43795 is rejected/not used per the Initial Description.