Lucene search
K

89672 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/08 11:8 p.m.6 views

CVE-2026-44313

Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery SSRF vulnerability in the fetchTitleAndHeaders function allows authenticated users to make arbitrary HTTP requests to internal...

9.1CVSS5.9AI score0.00285EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/08 11:8 p.m.42 views

CVE-2026-44313 LinkWarden: Server-Side Request Forgery (SSRF) in Link Creation via fetchTitleAndHeaders Function

Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery SSRF vulnerability in the fetchTitleAndHeaders function allows authenticated users to make arbitrary HTTP requests to internal...

9.1CVSS0.00285EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/08 11:8 p.m.6 views

CVE-2026-44313 LinkWarden: Server-Side Request Forgery (SSRF) in Link Creation via fetchTitleAndHeaders Function

Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery SSRF vulnerability in the fetchTitleAndHeaders function allows authenticated users to make arbitrary HTTP requests to internal...

9.1CVSS5.9AI score0.00285EPSS
Exploits0References1
OSV
OSV
added 2026/05/08 10:58 p.m.5 views

GHSA-3P28-73Q7-45XP free5GC's NEF 3gpp-traffic-influence API is unauthenticated; missing or forged bearer tokens can create, read, patch, and delete subscriptions

Summary free5GC's NEF mounts the 3gpp-traffic-influence API without inbound OAuth2/bearer-token authorization. A network attacker who can reach NEF on the SBI can create, read, patch, and delete traffic-influence subscriptions either with no Authorization header at all, or with a forged bearer...

9.4CVSS5.8AI score0.00311EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/05/08 10:47 p.m.37 views

CVE-2026-41682 pupnp: Port truncation via atoi() cast in parse_uri() allows SSRF port confusion

pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port truncation via atoi cast in parseuri. This issue has been patched in version 1.18.5...

6.9CVSS0.00346EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/08 10:31 p.m.30 views

CVE-2026-42352 pygeoapi 0.23.x: Unauthenticated SSRF via OGC API - Processes Subscriber

pygeoapi is a Python server implementation of the OGC API suite of standards. From version 0.23.0 to before version 0.23.3, OGC API process execution requests can use the subscriber object to requests to internal HTTP services. This issue has been patched in version 0.23.3...

8.6CVSS0.00454EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/08 10:31 p.m.8 views

CVE-2026-42352 pygeoapi 0.23.x: Unauthenticated SSRF via OGC API - Processes Subscriber

pygeoapi is a Python server implementation of the OGC API suite of standards. From version 0.23.0 to before version 0.23.3, OGC API process execution requests can use the subscriber object to requests to internal HTTP services. This issue has been patched in version 0.23.3...

8.6CVSS5.9AI score0.00454EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/08 10:26 p.m.9 views

CVE-2026-42346

Postiz is an AI social media scheduling tool. From version 2.16.6 to before version 2.21.7, all SSRF protections added in v2.21.4–v2.21.6 share a fundamental TOCTOU Time-of-Check-Time-of-Use vulnerability: isSafePublicHttpsUrl resolves DNS to validate the target IP, but subsequent fetch calls...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/08 10:26 p.m.9 views

EUVD-2026-28856

Postiz is an AI social media scheduling tool. From version 2.16.6 to before version 2.21.7, all SSRF protections added in v2.21.4–v2.21.6 share a fundamental TOCTOU Time-of-Check-Time-of-Use vulnerability: isSafePublicHttpsUrl resolves DNS to validate the target IP, but subsequent fetch calls...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/08 10:21 p.m.9 views

CVE-2026-42339 New API: SSRF Filter Bypass via 0.0.0.0

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. In versions 0.11.9-alpha.1 and prior, the SSRF protection introduced in v0.9.0.5 CVE-2025-59146 and hardened in v0.9.6 CVE-2025-62155 does not block the unspecified address 0.0.0.0. A regular...

7.1CVSS5.8AI score0.00258EPSS
Exploits1References1
CVE
CVE
added 2026/05/08 10:21 p.m.23 views

CVE-2026-42339

CVE-2026-42339 (New API: SSRF Filter Bypass via 0.0.0.0) Affects New API (LLM gateway) up to v0.11.9-alpha.1. The SSRF protection is incomplete: 0.0.0.0/8 is not checked, allowing a regular user with a valid API token to request multimodal endpoints (/v1/chat/completions, /v1/responses, /v1/messa...

7.1CVSS5.8AI score0.00258EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/05/08 10:21 p.m.60 views

CVE-2026-42339 New API: SSRF Filter Bypass via 0.0.0.0

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. In versions 0.11.9-alpha.1 and prior, the SSRF protection introduced in v0.9.0.5 CVE-2025-59146 and hardened in v0.9.6 CVE-2025-62155 does not block the unspecified address 0.0.0.0. A regular...

7.1CVSS0.00258EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/08 10:21 p.m.12 views

CVE-2026-42339

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. In versions 0.11.9-alpha.1 and prior, the SSRF protection introduced in v0.9.0.5 CVE-2025-59146 and hardened in v0.9.6 CVE-2025-62155 does not block the unspecified address 0.0.0.0. A regular...

8.5CVSS5.8AI score0.00259EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/08 10:21 p.m.7 views

CVE-2026-41432

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Prior to version 0.12.10, a vulnerability exists in the Stripe webhook handler that allows an unauthenticated attacker to forge webhook events and credit arbitrary quota to their account without...

7.1CVSS5.9AI score0.00259EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/08 10:17 p.m.18 views

CVE-2026-44286 FastGPT: SSRF Vulnerability in Laf Workflow Node via Missing Internal Address Validation

FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery SSRF vulnerability allows attackers or authenticated users with App editing privileges to send arbitrary HTTP requests to internal/private network addresses. The fetchData function i...

2.3CVSS5.9AI score0.00228EPSS
Exploits0References2
CVE
CVE
added 2026/05/08 10:17 p.m.23 views

CVE-2026-44286

FastGPT (AI Agent platform) contains an SSRF in the lafModule workflow node: fetchData fetches user-controlled URLs with axios without checking the internal-address blocklist (isInternalAddress), allowing requests to internal/private networks. This affects versions before 4.14.17 and can be trigg...

2.3CVSS5.9AI score0.00228EPSS
Exploits0References2
NVD
NVD
added 2026/05/08 10:16 p.m.21 views

CVE-2026-42286

Emlog is an open source website building system. Prior to version 2.6.11, missing CSRF protection in critical admin functions allows attackers to trick authenticated administrators into performing unauthorized actions like system registration, plugin management, and configuration changes. This...

8.4CVSS0.00165EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/08 10:12 p.m.9 views

CVE-2026-44284

FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected internal/private network URLs, but the MCP tool create/update endpoints could still save an internal...

6.3CVSS5.8AI score0.00235EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/08 10:12 p.m.6 views

CVE-2026-44284 FastGPT: Stored MCP tool URL SSRF in FastGPT workflow execution

FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected internal/private network URLs, but the MCP tool create/update endpoints could still save an internal...

6.3CVSS5.8AI score0.00235EPSS
Exploits0References4
CVE
CVE
added 2026/05/08 10:12 p.m.21 views

CVE-2026-44284

FastGPT (before 4.14.17) had an SSRF flaw in MCP tool URL handling. An authenticated user with permission to create/manage MCP toolsets could store an internal endpoint (e.g., http://localhost:3000/mcp) via the MCP tool create/update endpoints. The stored URL could be used later by the backend wo...

6.3CVSS5.8AI score0.00235EPSS
Exploits0References4
Rows per page
Query Builder