Lucene search
K

154 matches found

Cvelist
Cvelist
added 2024/08/12 2:50 p.m.37 views

CVE-2024-38530 Open eClass Platform allows Arbitrary File Upload in "modules/h5p/save.php"

The Open eClass platform formerly known as GUnet eClass is a complete Course Management System. An arbitrary file upload vulnerability in the "save" functionality of the H5P module enables unauthenticated users to upload arbitrary files on the server's filesystem. This may lead in unrestricted RC...

9.8CVSS0.00776EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/06/27 6:40 p.m.43 views

CVE-2024-5826 Remote Code Execution via Prompt Injection in vanna-ai/vanna

In the latest version of vanna-ai/vanna, the vanna.ask function is vulnerable to remote code execution due to prompt injection. The root cause is the lack of a sandbox when executing LLM-generated code, allowing an attacker to manipulate the code executed by the exec function in...

9.8CVSS0.00875EPSS
Exploits0References1
CVE
CVE
added 2024/06/27 6:40 p.m.60 views

CVE-2024-5826

CVE-2024-5826 – vanna-ai/vanna has a remote code execution vulnerability in the vanna.ask function due to prompt injection. The root cause is the absence of a sandbox when executing LLM-generated code, allowing an attacker to manipulate the code executed by the exec function in src/vanna/base/bas...

9.8CVSS10AI score0.00875EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 10:58 a.m.23 views

BIT-ENVOY-2021-29492 Bypass of path matching rules using escaped slash characters

Envoy is a cloud-native edge/middle/service proxy. Envoy does not decode escaped slash sequences %2F and %5C in HTTP URL paths in versions 1.18.2 and before. A remote attacker may craft a path with escaped slashes, e.g. /something%2F..%2Fadmin, to bypass access control, e.g. a block on /admin. A...

8.3CVSS8.1AI score0.68383EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/03/05 6:19 p.m.4 views

haproxy: Proxy forwards malformed empty Content-Length headers

A flaw was found in HAProxy. Empty Content-Length headers are forwarded, which could cause an HTTP/1 server behind it to interpret the payload as an extra request. This may render the HTTP/1 server vulnerable to attacks in some uncommon cases...

7.2CVSS5.7AI score0.01815EPSS
Exploits1References4
OSV
OSV
added 2024/02/08 9:0 a.m.33 views

CVE-2024-23452 Apache bRPC: HTTP request smuggling vulnerability

Request smuggling vulnerability in HTTP server in Apache bRPC 0.9.51.7.0 on all platforms allows attacker to smuggle request. Vulnerability Cause Description: The httpparser does not comply with the RFC-7230 HTTP 1.1 specification. Attack scenario: If a message is received with both a...

7.5CVSS7AI score0.01637EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/02/08 9:0 a.m.23 views

CVE-2024-23452 Apache bRPC: HTTP request smuggling vulnerability

Request smuggling vulnerability in HTTP server in Apache bRPC 0.9.51.7.0 on all platforms allows attacker to smuggle request. Vulnerability Cause Description: The httpparser does not comply with the RFC-7230 HTTP 1.1 specification. Attack scenario: If a message is received with both a...

7.7AI score0.01637EPSS
Exploits0References4
Prion
Prion
added 2023/12/12 8:15 p.m.26 views

Design/Logic Flaw

h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. In version 2.3.0-beta2 and prior, when h2o is configured to listen to multiple addresses or ports with each of them using different backend servers managed by multiple entities, a malicious backend entity that also has the...

3.8CVSS6.9AI score0.00181EPSS
Exploits0References2Affected Software1
CISA KEV Catalog
CISA KEV Catalog
added 2023/12/07 12:0 a.m.32 views

Qlik Sense HTTP Tunneling Vulnerability

Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software...

9.9CVSS7.6AI score0.84967EPSS
In wildExploits0
RedHat Linux
RedHat Linux
added 2023/12/06 12:54 a.m.6 views

haproxy: Proxy forwards malformed empty Content-Length headers

A flaw was found in HAProxy. Empty Content-Length headers are forwarded, which could cause an HTTP/1 server behind it to interpret the payload as an extra request. This may render the HTTP/1 server vulnerable to attacks in some uncommon cases...

7.2CVSS5.7AI score0.01815EPSS
Exploits1References4
OSV
OSV
added 2023/12/05 6:11 p.m.16 views

GHSA-FVHJ-4QFH-Q2HM Traefik incorrectly processes fragment in the URL, leads to Authorization Bypass

Summary When a request is sent to Traefik with a URL fragment, Traefik automatically URL encodes and forwards the fragment to the backend server. This violates the RFC because in the origin-form the URL should only contain the absolute path and the query. When this is combined with another fronte...

6.5CVSS6.5AI score0.00625EPSS
Exploits1References6
GithubExploit
GithubExploit
added 2023/12/04 4:58 p.m.2261 views

Exploit for HTTP Request Smuggling in Apache Http_Server

CVE-2023-25690 Mô tả CVE-2023-25690: - Một vài cấu hình mod...

9.8CVSS8.3AI score0.8377EPSS
Exploits5
VulnCheck KEV
VulnCheck KEV
added 2023/11/28 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-48365

Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software...

9.9CVSS7.5AI score0.24676EPSS
Exploits0References1
Prion
Prion
added 2023/11/15 10:15 p.m.33 views

Input validation

Qlik Sense Enterprise for Windows before August 2023 Patch 2 allows unauthenticated remote code execution, aka QB-21683. Due to improper validation of HTTP headers, a remote attacker is able to elevate their privilege by tunneling HTTP requests, allowing them to execute HTTP requests on the backe...

6.5CVSS8.3AI score0.84967EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/11/15 12:0 a.m.26 views

CVE-2023-48365

Qlik Sense Enterprise for Windows before August 2023 Patch 2 allows unauthenticated remote code execution, aka QB-21683. Due to improper validation of HTTP headers, a remote attacker is able to elevate their privilege by tunneling HTTP requests, allowing them to execute HTTP requests on the backe...

9.9CVSS8.1AI score0.84967EPSS
In wildExploits0References2
NVD
NVD
added 2023/11/01 3:15 a.m.19 views

CVE-2023-5516

Poorly constructed webap requests and URI components with special characters trigger unhandled errors and exceptions, disclosing information about the underlying technology and other sensitive information details. The website unintentionally reveals sensitive information including technical detai...

5.3CVSS5.3AI score0.00377EPSS
Exploits0References1
OSV
OSV
added 2023/11/01 3:15 a.m.2 views

CVE-2023-5516

Poorly constructed webap requests and URI components with special characters trigger unhandled errors and exceptions, disclosing information about the underlying technology and other sensitive information details. The website unintentionally reveals sensitive information including technical detai...

5.3CVSS5.8AI score0.00377EPSS
Exploits0References1
Prion
Prion
added 2023/11/01 3:15 a.m.15 views

Design/Logic Flaw

Poorly constructed webap requests and URI components with special characters trigger unhandled errors and exceptions, disclosing information about the underlying technology and other sensitive information details. The website unintentionally reveals sensitive information including technical detai...

5CVSS5.2AI score0.00377EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/01 2:54 a.m.9 views

CVE-2023-5516

Poorly constructed webap requests and URI components with special characters trigger unhandled errors and exceptions, disclosing information about the underlying technology and other sensitive information details. The website unintentionally reveals sensitive information including technical detai...

5.3CVSS5.3AI score0.00377EPSS
Exploits0References1
Citrix
Citrix
added 2023/09/12 12:0 a.m.6 views

ldap test randomly fails through SSL_TCP Load Balancing Vserver on NetScaler

The customer configured ldap authentication through NetScaler SSLTCP LB Vserver for backend ldap server. Customer found ldap test fails randomly...

7.4AI score
Exploits0
Rows per page
Query Builder