Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:8 p.m.5 views

CVE-2022-36663

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.8CVSS7AI score0.01908EPSS
Exploits2References1
OSV
OSV
added 2022/09/07 12:1 a.m.16 views

GHSA-HC94-9V26-GXWV Gluu Oxauth before v4.4.1 vulnerable to Server-Side Request Forgery attacks via a crafted request_uri parameter

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.8CVSS9.3AI score0.01908EPSS
Exploits2References5
Github Security Blog
Github Security Blog
added 2022/09/07 12:1 a.m.34 views

Gluu Oxauth before v4.4.1 vulnerable to Server-Side Request Forgery attacks via a crafted request_uri parameter

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.8CVSS9AI score0.01908EPSS
Exploits2References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/09/06 9:15 p.m.5 views

CVE-2022-36663

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.8CVSS7.4AI score0.01908EPSS
Exploits2References3
NVD
NVD
added 2022/09/06 9:15 p.m.20 views

CVE-2022-36663

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.8CVSS0.01908EPSS
Exploits2References2
OSV
OSV
added 2022/09/06 9:15 p.m.18 views

CVE-2022-36663

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.8CVSS9.3AI score
Exploits0References2
Prion
Prion
added 2022/09/06 9:15 p.m.17 views

Server side request forgery (ssrf)

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

7.5CVSS9.3AI score0.01908EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/09/06 8:44 p.m.28 views

CVE-2022-36663

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.6AI score0.01908EPSS
Exploits2References2
EUVD
EUVD
added 2022/09/06 8:44 p.m.7 views

EUVD-2022-6838

Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted requesturi parameter...

9.8CVSS9.2AI score0.01908EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2022/09/06 12:0 a.m.3 views

PT-2022-23534 · Gluu · Gluu Oxauth

Name of the Vulnerable Software and Affected Versions: Gluu Oxauth versions prior to 4.4.1 Description: The issue allows attackers to execute blind SSRF Server-Side Request Forgery attacks via a crafted request uri parameter. This enables attackers to forge requests from the server, potentially...

9.8CVSS9.1AI score0.01908EPSS
Exploits2References9
CNNVD
CNNVD
added 2022/09/06 12:0 a.m.5 views

Gluu 代码问题漏洞

Gluu is a cloud-hosted identity platform from the US-based Gluu organization. A security vulnerability exists in Gluu Oxauth versions prior to v4.4.1, which can be exploited by an attacker to perform a server-side request forgery SSRF attack via a crafted requesturi parameter...

9.8CVSS8.2AI score0.01908EPSS
Exploits2References3
Rows per page
Query Builder