Lucene search
+L

4 matches found

Cvelist
Cvelist
added 2026/07/10 3:39 p.m.30 views

CVE-2026-56675 9router: Reverse proxy locality collapse allows unauthenticated access to 9router /v1 APIs

9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows /v1/ access without an API key, so a same-host reverse proxy that forwards public traffic to the backend through 127.0.0.1 causes src/dashboardGuard.js to misclassify external requests as...

8.3CVSS0.00315EPSS
Exploits0References3
OSV
OSV
added 2026/05/22 4:27 p.m.8 views

MAL-2026-4508 Malicious code in cdk-insights (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa41acb776dbedfe93c37899783a5e54b78017ac31576c798a27eae6b9e9ec89 The package contains code in dist/entry.js and dist/index.js that invokes npm publish programmatically combined with writeFileSync operations — the...

5.9AI score
Exploits0References2
Talos Blog
Talos Blog
added 2025/02/20 1:0 p.m.30 views

Weathering the storm: In the midst of a Typhoon

Summary Cisco Talos has been closely monitoring reports of widespread intrusion activity against several major U.S. telecommunications companies. The activity, initially reported in late 2024 and later confirmed by the U.S. government, is being carried out by a highly sophisticated threat actor...

10CVSS10AI score0.99571EPSS
Exploits31
CNVD
CNVD
added 2019/08/23 12:0 a.m.4 views

CloudBees Jenkins AWS Elastic Beanstalk Publisher Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based development of continuous integration tools from the U.S. CloudBees. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks.AWS Elastic Beanstalk Publisher Plugin is used in which a z...

8.8CVSS6.9AI score0.01365EPSS
Exploits0References1
Rows per page
Query Builder