WordPress plugin Anubis 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

PT-2025-46775

Name of the Vulnerable Software and Affected Versions Anubis versions prior to 1.23.0 Description Anubis, a Web AI Firewall Utility designed to protect upstream resources from scraper bots, had a flaw in its subrequest authentication process. Before version 1.23.0, the software did not validate t...

Anubis 输入验证错误漏洞

Anubis is a tool for Xe Iaso Individual Developers. An input validation error vulnerability exists in Anubis versions prior to 1.23.0, which stems from sub-request authentication not validating the redirection URL, which could result in a redirection to an arbitrary URL scheme...

Cross-Site Scripting (XSS)

github.com/techarohq/anubis is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper validation of the ?redir= parameter in the /.within.website/x/cmd/anubis/api/pass-challenge route, which allows an attacker to craft malicious pass-challenge pages that execute arbitrary...

Anubis 安全漏洞

Anubis is a tool for Xe Iaso Individual Developers. A security vulnerability exists in Anubis 1.21.2 and earlier versions that originates from a malicious pass-challenge page could lead to the execution of arbitrary JavaScript code...

Bot Protection Bypass

Anubis is vulnerable to Bot Protection Bypass. The vulnerability is due to insufficient validation due to allowing attackers to specify a nonce and set the challenge difficulty to zero, effectively bypassing the bot protection mechanism...