Lucene search
+L

4 matches found

CVE
CVE
added 17 hours ago8 views

CVE-2026-62230

Grav

8.7CVSS6.1AI score
Exploits0References2
Cvelist
Cvelist
added 17 hours ago9 views

CVE-2026-62230 Grav < 2.0.4 File Access Bypass via Case Variation

Grav before 2.0.4 ships a default .htaccess and reference webserver-configs/htaccess.txt whose rules blocking access to sensitive file types .yaml, .php, .json, etc. lack the NC flag, making extension matching case-sensitive. On case-insensitive filesystems Windows/NTFS, macOS/HFS+, or Docker...

8.7CVSS
Exploits0References2
OSV
OSV
added 2026/03/12 7:56 p.m.5 views

CVE-2026-1525 undici is vulnerable to Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications...

6.5CVSS7.1AI score0.00493EPSS
Exploits0References8
Kitploit
Kitploit
added 2022/09/28 8:31 p.m.87 views

Psudohash - Password List Generator That Focuses On Keywords Mutated By Commonly Used Password Creation Patterns

psudohash is a password list generator for orchestrating brute force attacks. It imitates certain password creation patterns commonly used by humans, like substituting a word's letters with symbols or numbers, using char-case variations, adding a common padding before or after the word and more. ...

7.2AI score
Exploits0References3
Rows per page
Query Builder