Lucene search
K

272 matches found

NVD
NVD
added 2026/02/27 8:17 a.m.18 views

CVE-2025-9572

n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Unlike the REST API, which correctly enforces access controls, the GraphQL endpoint does not apply proper filtering, leading to an authorization bypass...

6.5CVSS0.00348EPSS
Exploits0References7
OSV
OSV
added 2026/02/27 8:17 a.m.5 views

CVE-2025-9572

n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Unlike the REST API, which correctly enforces access controls, the GraphQL endpoint does not apply proper filtering, leading to an authorization bypass...

6.5CVSS5.9AI score0.00348EPSS
Exploits0References7
OSV
OSV
added 2026/02/27 8:17 a.m.2 views

UBUNTU-CVE-2025-9572

n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Unlike the REST API, which correctly enforces access controls, the GraphQL endpoint does not apply proper filtering, leading to an authorization bypass...

6.5CVSS5.8AI score0.00348EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/27 7:28 a.m.31 views

CVE-2025-9572 Foreman: satellite: graphql api permission bypass leads to information disclosure

n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Unlike the REST API, which correctly enforces access controls, the GraphQL endpoint does not apply proper filtering, leading to an authorization bypass...

5CVSS0.00348EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/02/27 7:28 a.m.7 views

CVE-2025-9572

n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Unlike the REST API, which correctly enforces access controls, the GraphQL endpoint does not apply proper filtering, leading to an authorization bypass...

6.5CVSS5.9AI score0.00348EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.10 views

Foreman 信息泄露漏洞

Foreman is a set of open-source tools developed by Foreman for lifecycle management in physical and virtual servers. This tool provides functions such as service activation, configuration management, and reporting status. Foreman has a vulnerability related to information leakage, which stems fro...

6.5CVSS5.8AI score0.00348EPSS
Exploits0References7
OSV
OSV
added 2026/02/25 10:59 p.m.3 views

GHSA-MPHV-75CG-56WG LangChain Community: redirect chaining can lead to SSRF bypass via RecursiveUrlLoader

Summary A redirect-based Server-Side Request Forgery SSRF bypass exists in RecursiveUrlLoader in @langchain/community. The loader validates the initial URL but allows the underlying fetch to follow redirects automatically, which permits a transition from a safe public URL to an internal or metada...

4.1CVSS5.7AI score0.00206EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/02/14 1:27 a.m.3 views

CVE-2026-25768

LavinMQ is a high-performance message queue & streaming server. Before 2.6.6, an authenticated user could access metadata in the broker they should not have access to. This vulnerability is fixed in 2.6.6...

7.1CVSS5.5AI score0.00231EPSS
Exploits0References1
NVD
NVD
added 2026/02/12 8:16 p.m.12 views

CVE-2026-25768

LavinMQ is a high-performance message queue & streaming server. Before 2.6.6, an authenticated user could access metadata in the broker they should not have access to. This vulnerability is fixed in 2.6.6...

7.1CVSS0.00231EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/12 7:52 p.m.4 views

CVE-2026-25768

LavinMQ is a high-performance message queue & streaming server. Before 2.6.6, an authenticated user could access metadata in the broker they should not have access to. This vulnerability is fixed in 2.6.6...

7.1CVSS5.5AI score0.00231EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/11 9:11 p.m.4 views

CVE-2026-26019

LangChain is a framework for building LLM-powered applications. Prior to 1.1.14, the RecursiveUrlLoader class in @langchain/community is a web crawler that recursively follows links from a starting URL. Its preventOutside option enabled by default is intended to restrict crawling to the same site...

4.1CVSS5.4AI score0.00371EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/11 4:53 p.m.9 views

Statamic CMS's missing authorization allows access to assets

Impact Users without permission to view assets are able are able to download them and view their metadata. Logged-out users and users without permission to access the control panel are unable to take advantage of this. Patches This has been fixed in 5.73.6 and 6.2.5...

4.3CVSS5.4AI score0.00285EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/11 3:13 p.m.10 views

@langchain/community affected by SSRF Bypass in RecursiveUrlLoader via insufficient URL origin validation

Description The RecursiveUrlLoader class in @langchain/community is a web crawler that recursively follows links from a starting URL. Its preventOutside option enabled by default is intended to restrict crawling to the same site as the base URL. The implementation used String.startsWith to compar...

4.1CVSS5.5AI score0.00371EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/11 1:33 a.m.12 views

CVE-2026-25494

Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 and 5.0.0-RC1 through 5.8.21, the saveAsset GraphQL mutation uses filtervar..., FILTERVALIDATEIP to block a specific list of IP addresses. However, alternative IP notations hexadecimal, mixed are not...

6.9CVSS5.5AI score0.00359EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.6 views

Statamic 安全漏洞

Statamic is a powerful flat-file CMS built using Laravel by Statamic Inc. It allows for storing all content, templates, assets, and settings in files rather than in a database. There were security vulnerabilities in versions of Statamic 5.73.6 and 6.2.5, which stemmed from improper access control...

4.3CVSS5.8AI score0.00285EPSS
Exploits0References4
OSV
OSV
added 2026/02/09 8:35 p.m.5 views

GHSA-96PQ-HXPW-RGH8 Craft CMS: save_images_Asset graphql mutation can be abused to exfiltrate AWS credentials of underlying host

Summary - The saveimagesAsset graphql mutation allows a user to give a url of an image to download. Url must use a domain, not a raw IP. - Attacker sets up domain attacker.domain with an A record of something like 169.254.169.254 special AWS metadata IP - Attacker invokes saveimagesAsset with url...

5.3CVSS5.7AI score0.00419EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/02/09 7:36 p.m.29 views

CVE-2026-25493 Craft has a SSRF in GraphQL Asset Mutation via HTTP Redirect

Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 and 5.0.0-RC1 through 5.8.21, the saveAsset GraphQL mutation validates the initial URL hostname and resolved IP against a blocklist, but Guzzle follows HTTP redirects by default. An attacker can bypa...

6.9CVSS0.00359EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/02/09 12:0 a.m.9 views

PT-2026-7144

Name of the Vulnerable Software and Affected Versions Craft versions 4.0.0-RC1 through 4.16.17 Craft versions 5.0.0-RC1 through 5.8.21 Description The saveAsset GraphQL mutation in Craft does not properly validate IP addresses used to access cloud metadata services. The application uses filter...

6.9CVSS5.4AI score0.00359EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2026/01/09 9:50 a.m.8 views

CVE-2020-10591

An issue was discovered in Walmart Labs Concord before 1.44.0. CORS Access-Control-Allow-Origin headers have a potentially unsafe dependency on Origin headers, and are not configurable. This allows remote attackers to discover host information, nodes, API metadata, and references to usernames via...

7.5CVSS6.9AI score0.01999EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/01/06 5:44 p.m.11 views

Mailpit Proxy Endpoint has Server-Side Request Forgery (SSRF) vulnerability

Summary A Server-Side Request Forgery SSRF vulnerability exists in Mailpit's /proxy endpoint that allows attackers to make requests to internal network resources. Description The /proxy endpoint allows requests to internal network resources. While it validates http:// and https:// schemes, it doe...

5.8CVSS6.9AI score0.00755EPSS
Exploits2References5Affected Software1
Rows per page
Query Builder