CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/05/09 12:0 a.m.•11 views

osTicket 跨站请求伪造漏洞

osTicket is a widely used and trusted open-source support ticket system by the osTicket company. Versions of osTicket prior to 1.18.3 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from the handling of the method parameter in the Dispatcher component’s file...

5.3CVSS5.7AI score0.00162EPSS

Tenable Nessus•added 2026/05/09 12:0 a.m.•4 views

Unity Linux 20.1050e / 20.1070e Security Update: kubernetes (UTSA-2026-017342)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017342 advisory. A half-blind Server Side Request Forgery SSRF vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows...

5.8CVSS7.2AI score0.00355EPSS

Exploits0References4

Positive Technologies•added 2026/05/09 12:0 a.m.•13 views

PT-2026-39407

Name of the Vulnerable Software and Affected Versions osTicket versions prior to 1.18.4 Description A cross-site request forgery issue exists in the Dispatcher component within the include/class.dispatcher.php file. The flaw allows remote exploitation through the manipulation of the method...

5.3CVSS5.7AI score0.00162EPSS

Exploits0References10

NVD•added 2026/05/08 11:16 p.m.•19 views

CVE-2026-44284

FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected internal/private network URLs, but the MCP tool create/update endpoints could still save an internal...

6.3CVSS0.00235EPSS

Exploits0References4

NVD•added 2026/05/08 11:16 p.m.•19 views

CVE-2026-41432

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Prior to version 0.12.10, a vulnerability exists in the Stripe webhook handler that allows an unauthenticated attacker to forge webhook events and credit arbitrary quota to their account without...

8.2CVSS0.00259EPSS

Exploits1References2

EUVD•added 2026/05/08 11:8 p.m.•7 views

EUVD-2026-28874

Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery SSRF vulnerability in the fetchTitleAndHeaders function allows authenticated users to make arbitrary HTTP requests to internal...

CVE•added 2026/05/08 11:8 p.m.•14 views

CVE-2026-44313

CVE-2026-44313 (Linkwarden) : A SSRF vulnerability exists in the fetchTitleAndHeaders function prior to version 2.13.0, enabling authenticated users to cause arbitrary HTTP requests to internal services due to insufficient URL validation that only checks for the prefixes "http://" or "https://". ...

ATTACKERKB•added 2026/05/08 11:8 p.m.•6 views

CVE-2026-44313

Exploits0References2Affected Software1

Cvelist•added 2026/05/08 11:8 p.m.•42 views

CVE-2026-44313 LinkWarden: Server-Side Request Forgery (SSRF) in Link Creation via fetchTitleAndHeaders Function

9.1CVSS0.00285EPSS

Vulnrichment•added 2026/05/08 11:8 p.m.•6 views

CVE-2026-44313 LinkWarden: Server-Side Request Forgery (SSRF) in Link Creation via fetchTitleAndHeaders Function

OSV•added 2026/05/08 10:58 p.m.•5 views

GHSA-3P28-73Q7-45XP free5GC's NEF 3gpp-traffic-influence API is unauthenticated; missing or forged bearer tokens can create, read, patch, and delete subscriptions

Summary free5GC's NEF mounts the 3gpp-traffic-influence API without inbound OAuth2/bearer-token authorization. A network attacker who can reach NEF on the SBI can create, read, patch, and delete traffic-influence subscriptions either with no Authorization header at all, or with a forged bearer...

9.4CVSS5.8AI score0.00311EPSS

Exploits1References5

Cvelist•added 2026/05/08 10:47 p.m.•37 views

CVE-2026-41682 pupnp: Port truncation via atoi() cast in parse_uri() allows SSRF port confusion

pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port truncation via atoi cast in parseuri. This issue has been patched in version 1.18.5...

6.9CVSS0.00346EPSS

Cvelist•added 2026/05/08 10:31 p.m.•30 views

CVE-2026-42352 pygeoapi 0.23.x: Unauthenticated SSRF via OGC API - Processes Subscriber

pygeoapi is a Python server implementation of the OGC API suite of standards. From version 0.23.0 to before version 0.23.3, OGC API process execution requests can use the subscriber object to requests to internal HTTP services. This issue has been patched in version 0.23.3...

8.6CVSS0.00454EPSS

Vulnrichment•added 2026/05/08 10:31 p.m.•8 views

CVE-2026-42352 pygeoapi 0.23.x: Unauthenticated SSRF via OGC API - Processes Subscriber

8.6CVSS5.9AI score0.00454EPSS

ATTACKERKB•added 2026/05/08 10:26 p.m.•9 views

CVE-2026-42346

Postiz is an AI social media scheduling tool. From version 2.16.6 to before version 2.21.7, all SSRF protections added in v2.21.4–v2.21.6 share a fundamental TOCTOU Time-of-Check-Time-of-Use vulnerability: isSafePublicHttpsUrl resolves DNS to validate the target IP, but subsequent fetch calls...

6.5CVSS5.8AI score0.00224EPSS

Exploits0References4Affected Software1

EUVD•added 2026/05/08 10:26 p.m.•9 views

EUVD-2026-28856

6.5CVSS5.8AI score0.00224EPSS