Lucene search
K

8 matches found

EUVD
EUVD
added 2026/03/22 12:30 a.m.20 views

EUVD-2026-14258

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/httpproxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation ...

7.5CVSS5.4AI score0.003EPSS
Exploits0References5
NVD
NVD
added 2026/03/21 10:16 p.m.20 views

CVE-2026-4528

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/httpproxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation ...

7.5CVSS0.003EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/21 10:2 p.m.42 views

CVE-2026-4528 trueleaf ApiFlow URL Validation http_proxy.service.ts validateUrlSecurity server-side request forgery

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/httpproxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation ...

7.5CVSS0.003EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/21 10:2 p.m.4 views

CVE-2026-4528 trueleaf ApiFlow URL Validation http_proxy.service.ts validateUrlSecurity server-side request forgery

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/httpproxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation ...

7.5CVSS5.4AI score0.003EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/21 10:2 p.m.6 views

CVE-2026-4528

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/httpproxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation ...

7.5CVSS6.7AI score0.003EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/21 10:2 p.m.16 views

CVE-2026-4528

CVE-2026-4528 affects trueleaf ApiFlow 0.9.7. The vulnerability lies in the function validateUrlSecurity within packages/server/src/service/proxy/http_proxy.service.ts of the URL Validation Handler , enabling server-side request forgery (SSRF) . Remote exploitation is possible and the exploit has...

7.5CVSS5.4AI score0.003EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/21 12:0 a.m.10 views

PT-2026-26946

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/http proxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation...

7.5CVSS6.7AI score0.003EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.6 views

ApiFlow 代码问题漏洞

ApiFlow is an open-source API development collaboration platform developed by ApiFlow. Version 0.9.7 of ApiFlow contains a code vulnerability. This vulnerability stems from a server-side request forgery issue in the validateUrlSecurity function within the URL Validation Handler component’s...

7.5CVSS7.5AI score0.003EPSS
Exploits0References4
Rows per page
Query Builder