Lucene search
K

440 matches found

Cvelist
Cvelist
added 2026/06/25 10:29 p.m.30 views

CVE-2026-40080 Cacti: Open Redirect via HTTP_REFERER substring check in auth_login_redirect

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Open Redirect through a substring check rather than a host check at strcontains$referer, CACTIPATHURL. When the user's loginopts == '1' redirect to referer after login, the function use...

6.1CVSS0.00151EPSS
Exploits1References2
OSV
OSV
added 2026/05/25 9:16 p.m.13 views

UBUNTU-CVE-2026-48589

Apache Shiro’s Jakarta EE module used the HTTP Referer header in certain cases to issue redirect after a user login. In affected versions, insufficient validation of this client-controlled value could allow an attacker to influence the redirect target in applications using the Jakarta EE module...

5.4CVSS5.8AI score0.00352EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-39301

Name of the Vulnerable Software and Affected Versions Snipe-IT versions prior to 8.4.1 Description An open redirect issue in Snipe-IT allows attackers to redirect users to malicious websites. This occurs because the application uses an unvalidated HTTP Referer header stored in a session variable...

7.1CVSS5.8AI score0.00163EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 11:48 a.m.7 views

CVE-2009-4786

Multiple cross-site scripting XSS vulnerabilities in Pligg before 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the HTTP Referer header to 1 admin/adminconfig.php, 2 admin/adminmodules.php, 3 delete.php, 4 editlink.php, 5 submit.php, 6 submitgroups.php, 7...

4.3CVSS5.9AI score0.01624EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:32 a.m.6 views

CVE-2024-39125

Roundup before 2.4.0 allows XSS via a SCRIPT element in an HTTP Referer header...

5.4CVSS5.7AI score0.00286EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:27 a.m.7 views

CVE-2019-12362

EmpireCMS 7.5.0 has XSS via the HTTP Referer header to e/member/doaction.php...

6.1CVSS5.9AI score0.00826EPSS
Exploits1References1
CVE
CVE
added 2025/12/18 7:53 p.m.8 views

CVE-2019-25228

Kentico Xperience contains an information-disclosure vulnerability where virtual context URLs can be leaked to external domains via the HTTP Referer header during page-builder interactions and loading of links/images. Affected is Kentico Xperience (per CVE-2019-25228 and related records) with ref...

5.3CVSS5.9AI score0.0025EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-8217

Malware in sbrugna...

4.3CVSS6.3AI score0.03284EPSS
Exploits3References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-9293

Malware in sbrugna...

6.1CVSS6.3AI score0.01545EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-1246

Malware in sbrugna...

5CVSS8.9AI score0.02443EPSS
Exploits2References44
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-9115

Malware in sbrugna...

6.1CVSS6.3AI score0.0133EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-3442

Malware in sbrugna...

4.3CVSS6.1AI score0.06727EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2003-0453

Malware in sbrugna...

5CVSS6.1AI score0.02899EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-6682

Malware in sbrugna...

6.1CVSS6.3AI score0.0138EPSS
Exploits2References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-5930

Malware in sbrugna...

4.3CVSS8.9AI score0.01469EPSS
Exploits1References65
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-0502

Malware in sbrugna...

4.3CVSS6.4AI score0.01167EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-0720

Malware in sbrugna...

4.3CVSS6.4AI score0.01148EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.14 views

EUVD-2002-2225

Malware in sbrugna...

4.3CVSS6.4AI score0.01499EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-2633

Malware in sbrugna...

4.3CVSS6.4AI score0.01396EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-5044

Malware in sbrugna...

6.8CVSS6.4AI score0.01223EPSS
Exploits0References10
Rows per page
Query Builder