Lucene search
+L

1163 matches found

EUVD
EUVD
added 2026/01/27 12:36 a.m.8 views

EUVD-2026-4832

Gakido is a Python HTTP client focused on browser impersonation and anti-bot evasion. A vulnerability was discovered in Gakido prior to version 0.1.1 that allowed HTTP header injection through CRLF Carriage Return Line Feed sequences in user-supplied header values and names. When making HTTP...

5.3CVSS6AI score0.0036EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/01/27 12:36 a.m.4 views

CVE-2026-24489

Gakido is a Python HTTP client focused on browser impersonation and anti-bot evasion. A vulnerability was discovered in Gakido prior to version 0.1.1 that allowed HTTP header injection through CRLF Carriage Return Line Feed sequences in user-supplied header values and names. When making HTTP...

5.3CVSS6AI score0.0036EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/27 12:36 a.m.3 views

CVE-2026-24489 Gakido vulnerable to HTTP Header Injection (CRLF Injection)

Gakido is a Python HTTP client focused on browser impersonation and anti-bot evasion. A vulnerability was discovered in Gakido prior to version 0.1.1 that allowed HTTP header injection through CRLF Carriage Return Line Feed sequences in user-supplied header values and names. When making HTTP...

5.3CVSS6AI score0.0036EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/27 12:36 a.m.34 views

CVE-2026-24489 Gakido vulnerable to HTTP Header Injection (CRLF Injection)

Gakido is a Python HTTP client focused on browser impersonation and anti-bot evasion. A vulnerability was discovered in Gakido prior to version 0.1.1 that allowed HTTP header injection through CRLF Carriage Return Line Feed sequences in user-supplied header values and names. When making HTTP...

5.3CVSS0.0036EPSS
Exploits1References3
OSV
OSV
added 2026/01/27 12:36 a.m.5 views

CVE-2026-24489 Gakido vulnerable to HTTP Header Injection (CRLF Injection)

Gakido is a Python HTTP client focused on browser impersonation and anti-bot evasion. A vulnerability was discovered in Gakido prior to version 0.1.1 that allowed HTTP header injection through CRLF Carriage Return Line Feed sequences in user-supplied header values and names. When making HTTP...

5.3CVSS6AI score0.0036EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : rh-php73-php-7.3.20-1.el7 (AXSA:2020-958:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-958:01 advisory. php: DirectoryIterator class accepts filenames with embedded \0 byte and treats them as terminating at that byte CVE-2019-11045 php: Information...

9.1CVSS7.6AI score0.08888EPSS
Exploits13References15
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : dovecot-2.2.36-3.el7.1 (AXSA:2019-4341:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4341:02 advisory. dovecot: improper NULL byte handling in IMAP and ManageSieve protocol parsers leads to out of bounds writes CVE-2019-11500 Tenable has extracted the precedin...

9.8CVSS8AI score0.62579EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 4 : dovecot-2.0.9-22.AXS4.1 (AXSA:2019-4315:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4315:01 advisory. dovecot: improper NULL byte handling in IMAP and ManageSieve protocol parsers leads to out of bounds writes CVE-2019-11500 Tenable has extracted the precedin...

9.8CVSS8AI score0.62579EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : libmspack-0.5-0.7.alpha.el7 (AXSA:2019-4006:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4006:01 advisory. libmspack: Out-of-bounds write in mspack/cab.h CVE-2018-18584 libmspack: chmdreadheaders fails to reject filenames containing NULL bytes...

6.5CVSS6.7AI score0.03086EPSS
Exploits1References3
OSV
OSV
added 2026/01/14 5:28 p.m.10 views

CLSA-2026-1768411712 php: Fix of 2 CVEs

CVE-2025-1220: fix null byte termination in hostnames - CVE-2025-6491: fix NULL pointer dereference in PHP SOAP extension via large XML namespace prefix...

5.9CVSS5.9AI score0.00944EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.9 views

PT-2026-2408

Name of the Vulnerable Software and Affected Versions Kyocera Command Center RX ECOSYS M2035dn affected versions not specified Description The Kyocera Command Center RX ECOSYS M2035dn device contains a directory traversal flaw. Unauthenticated attackers can read sensitive system files by...

8.7CVSS6.4AI score0.03534EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/01/09 12:39 p.m.5 views

CVE-2023-29246

An attacker who has gained access to an admin account can perform RCE via null-byte injection Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.1.0...

7.2CVSS7.3AI score0.0147EPSS
Exploits0References1
OSV
OSV
added 2026/01/05 3:38 p.m.8 views

CLSA-2026-1767627533 openssh: Fix of CVE-2025-61985

CVE-2025-61985: potential code execution using the ‘\0’ character in an ssh:// URI, when a ProxyCommand is used...

3.6CVSS6.4AI score0.00118EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/01 7:32 a.m.12 views

CVE-2025-2026

The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability CVE-2025-2026 that allows remote attackers to execute a null byte injection through the device’s web API. This may lead to an unexpected device reboot and result in a denial-of-service DoS condition. An authenticated...

7.1CVSS7.3AI score0.00378EPSS
Exploits0References1
NVD
NVD
added 2025/12/31 8:15 a.m.7 views

CVE-2025-2026

The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability CVE-2025-2026 that allows remote attackers to execute a null byte injection through the device’s web API. This may lead to an unexpected device reboot and result in a denial-of-service DoS condition. An authenticated...

7.1CVSS0.00378EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/31 7:32 a.m.6 views

EUVD-2025-205901

The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability CVE-2025-2026 that allows remote attackers to execute a null byte injection through the device’s web API. This may lead to an unexpected device reboot and result in a denial-of-service DoS condition. An authenticated...

7.7CVSS6.8AI score0.00378EPSS
Exploits0References2
CVE
CVE
added 2025/12/31 7:32 a.m.21 views

CVE-2025-2026

The CVE-2025-2026 entry affects the NPort 6100-G2/6200-G2 Series and is described in multiple sources (NVD, Red Hat advisories, others) as a high-severity issue where an authenticated remote attacker with web read-only privileges can perform a null byte injection via the device’s web API. Success...

7.1CVSS6.9AI score0.00378EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/31 7:32 a.m.5 views

CVE-2025-2026

The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability CVE-2025-2026 that allows remote attackers to execute a null byte injection through the device’s web API. This may lead to an unexpected device reboot and result in a denial-of-service DoS condition. An authenticated...

7.1CVSS6.6AI score0.00378EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/31 7:32 a.m.32 views

CVE-2025-2026

The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability CVE-2025-2026 that allows remote attackers to execute a null byte injection through the device’s web API. This may lead to an unexpected device reboot and result in a denial-of-service DoS condition. An authenticated...

7.1CVSS0.00378EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/31 12:0 a.m.6 views

Moxa NPort 6100-G2 Series和Moxa NPort 6200-G2 Series 安全漏洞

The Moxa NPort 6100-G2 Series and Moxa NPort 6200-G2 Series are both a series of secure terminal servers from Moxa Corporation of Taiwan, China. A security vulnerability exists in the Moxa NPort 6100-G2 Series and Moxa NPort 6200-G2 Series that stems from a null byte injection in the device Web...

7.7CVSS6.7AI score0.00378EPSS
Exploits0References1
Rows per page
Query Builder