Lucene search
K

126 matches found

Cvelist
Cvelist
added 2025/03/31 3:8 p.m.21 views

CVE-2025-27095 JumpServer has a Kubernetes Token Leak Vulnerability

JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to 4.8.0 and 3.10.18, an attacker with a low-privileged account can access the Kubernetes session feature and manipulate the kubeconfig file to redirect API requests to an external server...

4.3CVSS0.00307EPSS
Exploits1References1
Packet Storm News
Packet Storm News
added 2025/03/31 12:0 a.m.2 views

Advanced XSS Exploitation - User Screenshot

In this paper, the author teaches advanced persistent cross site scripting techniques that can be used to take screenshots of the client's screen and send them to an external server. The paper is primarily focusing on a pentesting perspective but also discusses mitigations. Written in Brazilian...

6.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/03/27 12:0 a.m.4 views

Advanced XSS Exploitation - How to Capture Session Cookies

In this paper, the author teaches advanced cross site scripting techniques that can be used to capture user session cookies and send them to an external server. Although this paper primarily focuses on attack methodology, it also touches on cross site scripting mitigations. Written in Brazilian...

6.3AI score
Exploits0
OSV
OSV
added 2025/03/20 10:10 a.m.4 views

CVE-2024-8061 Denial of Service in aimhubio/aim

In version 3.23.0 of aimhubio/aim, certain methods that request data from external servers do not have set timeouts, causing the server to wait indefinitely for a response. This can lead to a denial of service, as the tracking server does not respond to other requests while waiting. The issue...

7.5CVSS7.2AI score0.00446EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/03/20 10:10 a.m.14 views

CVE-2024-8061 Denial of Service in aimhubio/aim

In version 3.23.0 of aimhubio/aim, certain methods that request data from external servers do not have set timeouts, causing the server to wait indefinitely for a response. This can lead to a denial of service, as the tracking server does not respond to other requests while waiting. The issue...

7.5CVSS0.00446EPSS
Exploits1References1
OSV
OSV
added 2024/09/13 5:15 p.m.3 views

CVE-2024-31415

The Eaton Foreseer software provides the feasibility for the user to configure external servers for multiple purposes such as network management, user management, etc. The software uses encryption to store these configurations securely on the host machine. However, the keys used for this encrypti...

8.1CVSS5.8AI score0.0012EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.3 views

Stilog Visual Planning 安全漏洞

Stilog Visual Planning is software from Stilog that allows you to efficiently manage resource allocation and share schedules with employees. A security vulnerability exists in Stilog Visual Planning 8. An attacker could exploit the vulnerability to access local server files and leak data to an...

6.3CVSS6.4AI score0.00227EPSS
Exploits1References4
Veracode
Veracode
added 2023/10/20 6:5 a.m.12 views

Server Side Request Forgery

langchain is vulnerable to Server-Side Request Forgery. This vulnerability exists because it does not properly filter URLs in the init function in recursiveurlloader.py, allowing an attacker to trick a server into sending HTTP requests to any domain by taking advantage of the server's capacity to...

8.8CVSS6.7AI score0.44711EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/10/19 5:15 a.m.14 views

Server side request forgery (ssrf)

LangChain before 0.0.317 allows SSRF via documentloaders/recursiveurlloader.py because crawling can proceed from an external server to an internal server...

6.8CVSS8.6AI score0.44711EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/10/19 12:0 a.m.28 views

CVE-2023-46229

LangChain before 0.0.317 allows SSRF via documentloaders/recursiveurlloader.py because crawling can proceed from an external server to an internal server...

8.8CVSS7AI score0.44711EPSS
Exploits1References4
Prion
Prion
added 2023/09/28 8:15 p.m.23 views

Design/Logic Flaw

mooSocial 3.1.8 is vulnerable to external service interaction on post function. When executed, the server sends a HTTP and DNS request to external server. The Parameters effected are multiple - messageText, datawallphoto, datauserShareVideo and datauserShareLink...

6.4CVSS6.5AI score0.0186EPSS
Exploits2References1Affected Software1
Hacker One
Hacker One
added 2023/09/12 1:17 p.m.23 views

Mars: **"CSRF Vulnerability in ███████ Website Allows Attackers to Change User Profile Picture at ███████"**

The identified vulnerability is a CSRF vulnerability that allowed an attacker to change the user's profile picture on the ███████ website. The vulnerability was successfully reproduced by creating an account, navigating to the profile picture upload section, and utilizing the provided exploit cod...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/04/28 12:0 a.m.4 views

PT-2023-20112 · Xcc · Xcc

Name of the Vulnerable Software and Affected Versions: XCC affected versions not specified Description: A valid, authenticated administrative user can query a web interface API to reveal the configured LDAP client password used by XCC to authenticate to an external LDAP server in certain...

4.9CVSS5.9AI score0.00567EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2023/03/30 12:0 a.m.198 views

Concrete5 CME v9.1.3 - Xpath injection

Exploit Title: Concrete5 CME v9.1.3 - Xpath injection Author: nu11secur1ty Date: 11.28.2022 Vendor: https://www.concretecms.org/ Software: https://www.concretecms.org/download Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/concretecms.org/2022/concretecms-9.1.3...

7.4AI score
Exploits0
NVD
NVD
added 2022/06/15 6:15 p.m.14 views

CVE-2022-20664

A vulnerability in the web management interface of Cisco Secure Email and Web Manager, formerly Cisco Security Management Appliance SMA, and Cisco Email Security Appliance ESA could allow an authenticated, remote attacker to retrieve sensitive information from a Lightweight Directory Access...

7.7CVSS0.00959EPSS
Exploits0References1
OSV
OSV
added 2022/05/25 1:15 a.m.2 views

ALPINE-CVE-2022-29361

Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below allows attackers to perform HTTP Request Smuggling using a crafted HTTP request with multiple requests included inside the body. NOTE: the vendor's position is that this behavior can only occur in unsupported configurations...

9.8CVSS6.8AI score0.07663EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/05/25 1:15 a.m.3 views

CVE-2022-29361

Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below allows attackers to perform HTTP Request Smuggling using a crafted HTTP request with multiple requests included inside the body. NOTE: the vendor's position is that this behavior can only occur in unsupported configurations...

9.8CVSS7.2AI score0.07663EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/14 3:45 a.m.31 views

Apache NiFi host header poisoning issue

A malicious host header in an incoming HTTP request could cause NiFi to load resources from an external server. The fix to sanitize host headers and compare to a controlled whitelist was applied on the Apache NiFi 1.5.0 release. Users running a prior 1.x release should upgrade to the appropriate...

7.5CVSS1.3AI score0.02848EPSS
Exploits3References3Affected Software1
OSV
OSV
added 2022/05/14 3:45 a.m.17 views

GHSA-W4X6-J349-9R57 Apache NiFi host header poisoning issue

A malicious host header in an incoming HTTP request could cause NiFi to load resources from an external server. The fix to sanitize host headers and compare to a controlled whitelist was applied on the Apache NiFi 1.5.0 release. Users running a prior 1.x release should upgrade to the appropriate...

7.5CVSS7.4AI score0.02848EPSS
Exploits3References2
RedHat Linux
RedHat Linux
added 2022/05/10 1:36 p.m.3 views

mod_auth_openidc: open redirect due to target_link_uri parameter not validated

A open redirect flaw was found in modauthopenidc where it does not sanitize targetlinkuri paramater properly. This issue could be used by a remote attacker to facilitate phishing attacks by tricking users into visiting a trusted web application URL that redirects to an external and potentially...

6.1CVSS5.8AI score0.0175EPSS
Exploits1References5
Rows per page
Query Builder