Lucene search
K

120 matches found

Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.8 views

PT-2026-33179

ProcessWire CMS version 3.0.255 and prior contain a server-side request forgery vulnerability in the admin panel's 'Add Module From URL' feature that allows authenticated administrators to supply arbitrary URLs to the module download parameter, causing the server to issue outbound HTTP requests t...

6.8CVSS5.9AI score0.00385EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/04/06 4:19 p.m.4 views

CVE-2026-34981 whisperX REST API: SSRF in download_from_url() — URL validation happens after HTTP request, extension bypass via .mp3

The whisperX API is a tool for enhancing and analyzing audio content. From 0.3.1 to 0.5.0, FileService.downloadfromurl in app/services/fileservice.py calls requests.geturl with zero URL validation. The file extension check occurs AFTER the HTTP request is already made, and can be bypassed by...

5.8CVSS5.9AI score0.00252EPSS
Exploits1References3
CVE
CVE
added 2026/04/06 4:19 p.m.12 views

CVE-2026-34981

The whisperX REST API contains an SSRF vulnerability in FileService.download_from_url() (affecting 0.3.1–0.5.0) where a request is made with no URL validation; the file extension check runs after the HTTP request and can be bypassed by appending .mp3 to an internal URL. The /speech-to-text-url en...

5.8CVSS5.9AI score0.00252EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/03 11:2 p.m.4 views

CVE-2026-34576

Postiz is an AI social media scheduling tool. Prior to version 2.21.3, the POST /public/v1/upload-from-url endpoint accepts a user-supplied URL and fetches it server-side using axios.get with no SSRF protections. The only validation is a file extension check .png, .jpg, etc. which is trivially...

8.3CVSS5.8AI score0.00267EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/02 5:23 p.m.3 views

CVE-2026-34576 Postiz: SSRF in upload-from-url endpoint allows fetching internal resources and cloud metadata

Postiz is an AI social media scheduling tool. Prior to version 2.21.3, the POST /public/v1/upload-from-url endpoint accepts a user-supplied URL and fetches it server-side using axios.get with no SSRF protections. The only validation is a file extension check .png, .jpg, etc. which is trivially...

8.3CVSS5.8AI score0.00267EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/02 5:23 p.m.6 views

EUVD-2026-18446

Postiz is an AI social media scheduling tool. Prior to version 2.21.3, the POST /public/v1/upload-from-url endpoint accepts a user-supplied URL and fetches it server-side using axios.get with no SSRF protections. The only validation is a file extension check .png, .jpg, etc. which is trivially...

8.3CVSS5.8AI score0.00267EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/02 5:23 p.m.18 views

CVE-2026-34576 Postiz: SSRF in upload-from-url endpoint allows fetching internal resources and cloud metadata

Postiz is an AI social media scheduling tool. Prior to version 2.21.3, the POST /public/v1/upload-from-url endpoint accepts a user-supplied URL and fetches it server-side using axios.get with no SSRF protections. The only validation is a file extension check .png, .jpg, etc. which is trivially...

8.3CVSS0.00267EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/02 5:23 p.m.3 views

CVE-2026-34576

Postiz is an AI social media scheduling tool. Prior to version 2.21.3, the POST /public/v1/upload-from-url endpoint accepts a user-supplied URL and fetches it server-side using axios.get with no SSRF protections. The only validation is a file extension check .png, .jpg, etc. which is trivially...

8.3CVSS5.8AI score0.00267EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/04/02 5:23 p.m.16 views

CVE-2026-34576

Postiz (AI social media scheduling tool) has a SSRF vulnerability in the POST /public/v1/upload-from-url endpoint prior to version 2.21.3. An authenticated API user can supply a URL, which is fetched server-side via axios.get() without SSRF protections; only file-extension validation exists (e.g....

8.3CVSS5.8AI score0.00267EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.10 views

Gitroom Postiz 代码问题漏洞

Gitroom Postiz is an open-source social media scheduling tool developed by Gitroom. Versions of Gitroom Postiz prior to 2.21.3 contained code vulnerabilities. These vulnerabilities stemmed from the lack of server-side request forgery protection in the POST /public/v1/upload-from-url endpoint, whi...

8.3CVSS5.9AI score0.00267EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.6 views

PT-2026-29852

Postiz is an AI social media scheduling tool. Prior to version 2.21.3, the POST /public/v1/upload-from-url endpoint accepts a user-supplied URL and fetches it server-side using axios.get with no SSRF protections. The only validation is a file extension check .png, .jpg, etc. which is trivially...

8.3CVSS5.8AI score0.00267EPSS
Exploits1References3
CVE
CVE
added 2026/03/26 8:1 p.m.24 views

CVE-2026-33537

Lychee (open-source photo management) is affected by an SSRF issue in Photo::fromUrl due to incomplete IP validation that does not block loopback and link-local addresses. Before version 7.5.1, an authenticated user could reach internal services via direct IPs, bypassing all four protection confi...

5.3CVSS5.8AI score0.0026EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/03/26 8:1 p.m.9 views

EUVD-2026-16369

Lychee is a free, open-source photo-management tool. The patch introduced for GHSA-cpgw-wgf3-xc6v SSRF via Photo::fromUrl contains an incomplete IP validation check that fails to block loopback addresses and link-local addresses. Prior to version 7.5.1, an authenticated user can still reach...

5.3CVSS5.8AI score0.0026EPSS
Exploits1References2
OSV
OSV
added 2026/03/26 8:1 p.m.9 views

CVE-2026-33537 Lychee has SSRF bypass via incomplete IP validation in Photo::fromUrl — loopback and link-local IPs not blocked

Lychee is a free, open-source photo-management tool. The patch introduced for GHSA-cpgw-wgf3-xc6v SSRF via Photo::fromUrl contains an incomplete IP validation check that fails to block loopback addresses and link-local addresses. Prior to version 7.5.1, an authenticated user can still reach...

5.3CVSS5.9AI score0.0026EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-25586

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the URL...

6.9CVSS6.2AI score0.00178EPSS
Exploits1References2
OSV
OSV
added 2026/03/23 9:43 p.m.4 views

GHSA-RC55-58F4-687G Roadiz has Server-Side Request Forgery (SSRF) in roadiz/documents

This vulnerability allows an authenticated attacker to read any file on the server's local file system that the web server process has access to, including highly sensitive environment variables, database credentials, and internal configuration files. | Field | Details | | :--- | :--- | |...

6.8CVSS5.9AI score0.00383EPSS
Exploits1References4
EUVD
EUVD
added 2026/03/22 3:30 a.m.3 views

EUVD-2019-19914

Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the URL field. Attackers can paste a buffer of 5000 characters into the 'From URL' field during torrent addition to trigger an application crash...

6.9CVSS6AI score0.00178EPSS
Exploits1References5
NVD
NVD
added 2026/03/22 1:16 a.m.3 views

CVE-2019-25586

Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the URL field. Attackers can paste a buffer of 5000 characters into the 'From URL' field during torrent addition to trigger an application crash...

6.9CVSS0.00178EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/22 12:11 a.m.30 views

CVE-2019-25586 Deluge 1.3.15 Denial of Service via URL Field

Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the URL field. Attackers can paste a buffer of 5000 characters into the 'From URL' field during torrent addition to trigger an application crash...

6.9CVSS0.00178EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2026/03/22 12:11 a.m.20 views

CVE-2019-25586

Removed by vendor...

6.9CVSS5.9AI score0.00178EPSS
Exploits1
Rows per page
Query Builder