Lucene search
K

103 matches found

OSV
OSV
added 2026/02/09 7:36 p.m.7 views

CVE-2026-25493 Craft has a SSRF in GraphQL Asset Mutation via HTTP Redirect

Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 and 5.0.0-RC1 through 5.8.21, the saveAsset GraphQL mutation validates the initial URL hostname and resolved IP against a blocklist, but Guzzle follows HTTP redirects by default. An attacker can bypa...

6.9CVSS5.7AI score0.00359EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/02/06 6:32 p.m.21 views

Pydantic AI has Server-Side Request Forgery (SSRF) in URL Download Handling

Summary A Server-Side Request Forgery SSRF vulnerability exists in Pydantic AI's URL download functionality. When applications accept message history from untrusted sources, attackers can include malicious URLs that cause the server to make HTTP requests to internal network resources, potentially...

8.6CVSS5.6AI score0.00579EPSS
Exploits1References4Affected Software2
Positive Technologies
Positive Technologies
added 2026/01/19 12:0 a.m.11 views

PT-2026-3516

Name of the Vulnerable Software and Affected Versions Chainlit versions prior to 2.9.4 Description Chainlit versions prior to 2.9.4 have a server-side request forgery SSRF issue in the /project/element update flow when using the SQLAlchemy data layer backend. An authenticated client can control t...

8.3CVSS6AI score0.04439EPSS
Exploits1References22
GithubExploit
GithubExploit
added 2026/01/09 1:14 a.m.259 views

Exploit for CVE-2025-45955

CVE-2025-45955 🕳️ Server-Side Request Forgery in DonWeb Ferozo...

6.8AI score
Exploits1
RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.7 views

CVE-2025-68437

Craft is a platform for creating digital experiences. In versions 5.0.0-RC1 through 5.8.20 and 4.0.0-RC1 through 4.16.16, the Craft CMS GraphQL saveAsset mutation is vulnerable to Server-Side Request Forgery SSRF. This vulnerability arises because the file input, specifically its url parameter,...

5.9CVSS7.1AI score0.00427EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/24 12:48 a.m.8 views

CVE-2025-67743

Local Deep Research is an AI-powered research assistant for deep, iterative research. In versions from 1.3.0 to before 1.3.9, the download service downloadservice.py makes HTTP requests using raw requests.get without utilizing the application's SSRF protection saferequests.py. This can allow...

6.5CVSS6.8AI score0.00274EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/23 6:17 p.m.7 views

EUVD-2025-204778

Local Deep Research is Vulnerable to Server-Side Request Forgery SSRF in Download Service...

6.3CVSS6.4AI score0.00274EPSS
Exploits1References3
Snyk
Snyk
added 2025/12/23 1:39 a.m.4 views

Server-side Request Forgery (SSRF)

Overview local-deep-research is an AI-powered research assistant with deep, iterative analysis using LLMs and web searches Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the downloadservice.py service. An attacker can access internal services and attempt ...

9.3CVSS6.9AI score0.00274EPSS
Exploits1References2
OSV
OSV
added 2025/12/23 12:1 a.m.3 views

CVE-2025-67743 Local Deep Research is Vulnerable to Server-Side Request Forgery (SSRF) in Download Service

Local Deep Research is an AI-powered research assistant for deep, iterative research. In versions from 1.3.0 to before 1.3.9, the download service downloadservice.py makes HTTP requests using raw requests.get without utilizing the application's SSRF protection saferequests.py. This can allow...

6.3CVSS6.8AI score0.00274EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/12/23 12:0 a.m.6 views

PT-2025-52729

Name of the Vulnerable Software and Affected Versions Local Deep Research versions 1.3.0 through 1.3.8 Description The software is an AI-powered research assistant. A flaw exists in the download service download service.py where HTTP requests are made using raw requests.get calls, bypassing the...

6.5CVSS6.5AI score0.00274EPSS
Exploits1References7
OSV
OSV
added 2025/12/19 10:52 p.m.2 views

GHSA-5993-7P27-66G5 Langflow vulnerable to Server-Side Request Forgery

Vulnerability Overview Langflow provides an API Request component that can issue arbitrary HTTP requests within a flow. This component takes a user-supplied URL, performs only normalization and basic format checks, and then sends the request using a server-side httpx client. It does not block...

7.7CVSS6.5AI score0.0576EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/12/19 12:0 a.m.4 views

Langflow 安全漏洞

Langflow is a Langflow open source visualization framework for building multi-agent and RAG applications. A security vulnerability exists in Langflow versions prior to 1.7.0 that stems from the API Request component not blocking private IP ranges and cloud metadata endpoints, which could lead to...

7.7CVSS6.2AI score0.0576EPSS
Exploits1References2
OSV
OSV
added 2025/12/04 7:55 p.m.6 views

CVE-2025-65958 Open WebUI vulnerable to Server-Side Request Forgery (SSRF) via Arbitrary URL Processing in /api/v1/retrieval/process/web

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.37, a Server-Side Request Forgery SSRF vulnerability in Open WebUI allows any authenticated user to force the server to make HTTP requests to arbitrary URLs. This can be exploited to...

8.5CVSS6.8AI score0.04117EPSS
Exploits1References4
OSV
OSV
added 2025/12/02 1:8 a.m.7 views

GHSA-HHH5-2CVX-VMFP Portkey.ai Gateway: Server-Side Request Forgery (SSRF) in Custom Host

Summary The gateway determines the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF CWE-918 attack Impact This vulnerabilit...

6.9CVSS6.7AI score0.00323EPSS
Exploits0References5
NVD
NVD
added 2025/11/10 11:15 p.m.5 views

CVE-2025-64522

Soft Serve is a self-hostable Git server for the command line. Versions prior to 0.11.1 have a SSRF vulnerability where webhook URLs are not validated, allowing repository administrators to create webhooks targeting internal services, private networks, and cloud metadata endpoints. Version 0.11.1...

9.1CVSS0.00307EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-41627

Malicious code in bioql PyPI...

5.4CVSS6.4AI score0.00215EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:36 a.m.7 views

CVE-2024-45843

Mattermost versions 9.5.x = 9.5.8 fail to include the metadata endpoints of Oracle Cloud and Alibaba in the SSRF denylist, which allows an attacker to possibly cause an SSRF if Mattermost was deployed in Oracle Cloud or Alibaba...

5.4CVSS6.4AI score0.00215EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/03/20 10:9 a.m.6 views

CVE-2025-0188 SSRF in gaizhenbiao/chuanhuchatgpt

A Server-Side Request Forgery SSRF vulnerability was discovered in gaizhenbiao/chuanhuchatgpt version 20240914. The vulnerability allows an attacker to construct a response link by saving the response in a folder named after the SHA-1 hash of the target URL. This enables the attacker to access th...

6.5CVSS6.5AI score0.00454EPSS
Exploits1References1
CVE
CVE
added 2025/03/20 10:9 a.m.62 views

CVE-2025-0188

CVE-2025-0188 concerns a Server-Side Request Forgery (SSRF) in the project gaizhenbiao/chuanhuchatgpt, version 20240914. The described flaw allows an attacker to craft a response link by saving content to a folder named after the SHA-1 hash of the target URL, which can enable direct access to the...

6.5CVSS6.5AI score0.00454EPSS
Exploits1References1Affected Software1
Veracode
Veracode
added 2024/09/30 7:12 a.m.11 views

Server Side Request Forgery (SSRF)

Mattermost is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to the omission of Oracle Cloud and Alibaba's metadata endpoints from the SSRF denylist, allowing attackers to exploit this gap for unauthorized requests...

5.4CVSS6.5AI score0.00215EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder