Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-52233

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00407EPSS
Exploits0References4
NVD
NVD
added 2025/03/31 5:15 p.m.23 views

CVE-2025-31116

Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. The mitigation for CVE-2024-29190 in validhost uses socket.gethostbyname, which is vulnerable to SSRF abuse using DNS rebinding technique. This...

9.8CVSS0.00446EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 8:7 a.m.7 views

CVE-2024-29190

Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In version 3.9.5 Beta and prior, MobSF does not perform any input validation when extracting the hostnames in android:host, so requests can also ...

7.5CVSS7.3AI score0.00712EPSS
Exploits1References1
PyPA
PyPA
added 2024/12/03 4:15 p.m.8 views

PYSEC-2024-256

Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In versions prior to 3.9.7, the requests.get request in the checkurl method is specified as allowredirects=True, which allows a server-side reque...

7.5CVSS6.8AI score0.00712EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2024/03/26 12:48 p.m.21 views

CVE-2024-29190

creationtimestamp| type| source ---|---|--- 2024-03-26 12:48:13+00:00| published-proof-of-concept| https://t.me/cKure/12599 2024-03-27 20:12:45+00:00| published-proof-of-concept| Telegram/TWxU8iN-TYn0kncSO1uxug7sedYGGHFx9vwZnyjHkQUOEM 2024-06-01 02:51:42+00:00| seen|...

7.5CVSS7.2AI score0.00712EPSS
Exploits1References6
OSV
OSV
added 2024/03/22 10:12 p.m.36 views

CVE-2024-29190 MobSF SSRF Vulnerability on assetlinks_check(act_name, well_knowns)

Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In version 3.9.5 Beta and prior, MobSF does not perform any input validation when extracting the hostnames in android:host, so requests can also ...

7.5CVSS7.1AI score0.00712EPSS
Exploits1References5
Rows per page
Query Builder