Lucene search
K

190 matches found

Cvelist
Cvelist
added 2026/04/26 5:45 a.m.32 views

CVE-2026-7022 SmythOS sre HTTP Header AgentRuntime.class.ts AgentRuntime improper authentication

A security vulnerability has been detected in SmythOS sre up to 0.0.15. Affected is the function AgentRuntime of the file packages/core/src/subsystems/AgentManager/AgentRuntime.class.ts of the component HTTP Header Handler. Such manipulation of the argument X-DEBUG-RUN/X-DEBUG-INJ leads to improp...

7.5CVSS0.00383EPSS
Exploits0References4
CVE
CVE
added 2026/04/26 5:45 a.m.17 views

CVE-2026-7022

CVE-2026-7022 affects SmythOS sre up to 0.0.15. The vulnerability lies in the HTTP Header Handler’s AgentRuntime function (packages/core/src/subsystems/AgentManager/AgentRuntime.class.ts), where manipulation of the arguments X-DEBUG-RUN/X-DEBUG-INJ enables improper authentication. The issue allow...

7.5CVSS7.1AI score0.00383EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/26 12:0 a.m.10 views

SmythOS 授权问题漏洞

SmythOS is an open-source infrastructure for the execution and development of AI agents. Versions of SmythOS 0.0.15 and earlier contained vulnerabilities related to authorization. These vulnerabilities stemmed from the handling of X-DEBUG-RUN/X-DEBUG-INJ parameters in the AgentRuntime function...

7.5CVSS7.3AI score0.00383EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/26 12:0 a.m.6 views

PT-2026-35203

A security vulnerability has been detected in SmythOS sre up to 0.0.15. Affected is the function AgentRuntime of the file packages/core/src/subsystems/AgentManager/AgentRuntime.class.ts of the component HTTP Header Handler. Such manipulation of the argument X-DEBUG-RUN/X-DEBUG-INJ leads to improp...

7.5CVSS7.1AI score0.00383EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/23 12:31 a.m.7 views

EUVD-2026-25137

A vulnerability was determined in ericc-ch copilot-api up to 0.7.0. This impacts an unknown function of the file /token of the component Header Handler. Executing a manipulation of the argument Host can lead to reliance on reverse dns resolution. The attack may be performed from remote. The explo...

5.3CVSS5.3AI score0.00257EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/22 11:30 p.m.4 views

CVE-2026-6874

A vulnerability was determined in ericc-ch copilot-api up to 0.7.0. This impacts an unknown function of the file /token of the component Header Handler. Executing a manipulation of the argument Host can lead to reliance on reverse dns resolution. The attack may be performed from remote. The explo...

5.3CVSS5.3AI score0.00257EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/04/22 11:30 p.m.23 views

CVE-2026-6874

CVE-2026-6874 affects ericc-ch copilot-api up to version 0.7.0, specifically a vulnerability in the Header Handler's /token path where manipulating the Host argument can cause reliance on reverse DNS resolution. The attack is described as remote-accessible, with exploitation publicly disclosed. V...

5.3CVSS5.3AI score0.00257EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/22 11:30 p.m.37 views

CVE-2026-6874 ericc-ch copilot-api Header token dns rebinding

A vulnerability was determined in ericc-ch copilot-api up to 0.7.0. This impacts an unknown function of the file /token of the component Header Handler. Executing a manipulation of the argument Host can lead to reliance on reverse dns resolution. The attack may be performed from remote. The explo...

5.3CVSS0.00257EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.12 views

PT-2026-34586

A vulnerability was determined in ericc-ch copilot-api up to 0.7.0. This impacts an unknown function of the file /token of the component Header Handler. Executing a manipulation of the argument Host can lead to reliance on reverse dns resolution. The attack may be performed from remote. The explo...

5.3CVSS5.3AI score0.00257EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.8 views

Core Flight System 安全漏洞

Core Flight System cFS is a generic flight software architecture framework open source by NASA. It is used for flagship spacecraft, manned spacecraft, cube satellites, and Raspberry Pi devices. Versions of Core Flight System 7.0.0 and earlier contain security vulnerabilities. These vulnerabilitie...

8.8CVSS6.8AI score0.00374EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/31 8:32 p.m.4 views

CVE-2026-5124

A flaw was found in osrg GoBGP. A remote attacker could exploit an improper access control vulnerability in the BGPHeader.DecodeFromBytes function within the BGP Header Handler component. This could lead to information disclosure, potentially revealing sensitive data. Mitigation Mitigation for th...

6.3CVSS5.8AI score0.00287EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/26 3:10 p.m.14 views

CVE-2026-1406

A vulnerability was determined in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600. Affected by this vulnerability is the function redirectToLogin of the file AccessControlFilter.java of the component Host Header Handler. This manipulation of the argument Hostname causes open redirec...

5.1CVSS5.5AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2026/01/25 12:15 p.m.9 views

CVE-2026-1406

A vulnerability was determined in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600. Affected by this vulnerability is the function redirectToLogin of the file AccessControlFilter.java of the component Host Header Handler. This manipulation of the argument Hostname causes open redirec...

5.1CVSS0.00228EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/25 12:2 p.m.4 views

CVE-2026-1406 lcg0124 BootDo Host Header AccessControlFilter.java redirectToLogin

A vulnerability was determined in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600. Affected by this vulnerability is the function redirectToLogin of the file AccessControlFilter.java of the component Host Header Handler. This manipulation of the argument Hostname causes open redirec...

5.1CVSS5.5AI score0.00228EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/25 12:2 p.m.3 views

CVE-2026-1406

A vulnerability was determined in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600. Affected by this vulnerability is the function redirectToLogin of the file AccessControlFilter.java of the component Host Header Handler. This manipulation of the argument Hostname causes open redirec...

5.1CVSS5.5AI score0.00228EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/25 12:2 p.m.8 views

EUVD-2026-4641

A vulnerability was determined in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600. Affected by this vulnerability is the function redirectToLogin of the file AccessControlFilter.java of the component Host Header Handler. This manipulation of the argument Hostname causes open redirec...

5.1CVSS4.8AI score0.00228EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/25 12:0 a.m.10 views

PT-2026-4648

A vulnerability was determined in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600. Affected by this vulnerability is the function redirectToLogin of the file AccessControlFilter.java of the component Host Header Handler. This manipulation of the argument Hostname causes open redirec...

5.1CVSS5.2AI score0.00228EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 9:15 a.m.4 views

CVE-2025-15241

A security vulnerability has been detected in CloudPanel Community Edition up to 2.5.1. The affected element is an unknown function of the file /admin/users of the component HTTP Header Handler. Such manipulation of the argument Referer leads to open redirect. It is possible to launch the attack...

3.5CVSS6.8AI score
Exploits0References6
Cvelist
Cvelist
added 2025/12/30 9:2 a.m.28 views

CVE-2025-15241 CloudPanel Community Edition HTTP Header users redirect

A security vulnerability has been detected in CloudPanel Community Edition up to 2.5.1. The affected element is an unknown function of the file /admin/users of the component HTTP Header Handler. Such manipulation of the argument Referer leads to open redirect. It is possible to launch the attack...

5.1CVSS0.00186EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/12/30 9:2 a.m.3 views

CVE-2025-15241 CloudPanel Community Edition HTTP Header users redirect

A security vulnerability has been detected in CloudPanel Community Edition up to 2.5.1. The affected element is an unknown function of the file /admin/users of the component HTTP Header Handler. Such manipulation of the argument Referer leads to open redirect. It is possible to launch the attack...

5.1CVSS6.5AI score0.00186EPSS
Exploits0References6
Rows per page
Query Builder