Lucene search
K

11 matches found

OSV
OSV
added 2026/03/27 7:29 p.m.7 views

CVE-2026-31951 LibreChat's MCP Server Header Injection Enables OAuth Token Theft

LibreChat is a ChatGPT clone with additional features. In versions 0.8.2-rc1 through 0.8.3-rc1, user-created MCP Model Context Protocol servers can include arbitrary HTTP headers that undergo credential placeholder substitution. An attacker can create a malicious MCP server with headers containin...

6.8CVSS6AI score0.00244EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/20 11:4 p.m.5 views

CVE-2026-33226

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions from 3.30.6 and prior, the REST datasource query preview endpoint POST /api/queries/preview makes server-side HTTP requests to any URL supplied by the user in fields.path with no validation. An...

8.7CVSS5.9AI score0.00367EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/20 11:4 p.m.27 views

CVE-2026-33226 Budibase Unrestricted Server-Side Request Forgery (SSRF) via REST Datasource Query Preview

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions from 3.30.6 and prior, the REST datasource query preview endpoint POST /api/queries/preview makes server-side HTTP requests to any URL supplied by the user in fields.path with no validation. An...

8.7CVSS0.00367EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/02 1:1 p.m.6 views

CVE-2026-3432 Sim Studio AI - Unauthenticated OAuth Token Theft

On SimStudio version below to 0.5.74, the /api/auth/oauth/token endpoint contains a code path that bypasses all authorization checks when provided with credentialAccountUserId and providerId parameters. An unauthenticated attacker can retrieve OAuth access tokens for any user by supplying their...

9.3CVSS6AI score0.003EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2025/09/08 10:2 a.m.34 views

⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & More

Cybersecurity never slows down. Every week brings new threats, new vulnerabilities, and new lessons for defenders. For security and IT teams, the challenge is not just keeping up with the news—it's knowing which risks matter most right now. That's what this digest is here for: a clear, simple...

9.9CVSS9.5AI score0.99301EPSS
Exploits84
Hacker One
Hacker One
added 2019/07/25 4:56 p.m.21 views

Rockstar Games: Image Injection on `/bully/anniversaryedition` may lead to FB's OAuth Token Theft.

In this report, the researcher identified a chain of attacks that could result in sensitive token leakage, such as Oauth tokens. The attack would begin with an image injection exploit on the page at https://www.rockstargames.com/bully/anniversaryedition. That exploit was the focus of this...

0.8AI score
Exploits0
Hacker One
Hacker One
added 2019/07/23 8:1 p.m.15 views

Rockstar Games: Image Injection vulnerability on screenshot-viewer/responsive/image may allow Facebook OAuth token theft.

In this report, the researcher identified a series of vulnerabilities that could be exploited together to exfiltrate sensitive user tokens. In this attack chain, one critical step was an image injection vulnerability in the Screenshot-Viewer function on the main site, at...

0.7AI score
Exploits0
Veracode
Veracode
added 2019/05/02 4:42 a.m.31 views

Man-in-the-middle

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2012-1948,...

10CVSS8.2AI score0.73327EPSS
Exploits5References23Affected Software3
Hacker One
Hacker One
added 2019/02/20 12:21 a.m.22 views

Rockstar Games: Image Injection on /bully/anniversaryedition may lead to OAuth token theft.

In this report, the researcher identified an image injection issue on www.rockstargames.com/bully/anniversaryedition that could be combined with other vulnerabilities to result in sensitive token theft under certain conditions. We resolved the image injection issue, preventing this series of...

2.6AI score
Exploits0
Hacker One
Hacker One
added 2019/02/18 5:15 p.m.24 views

Rockstar Games: Image Injection on www.rockstargames.com/screenshot-viewer/responsive/image may allow facebook oauth token theft.

In this report, the researcher identified an image injection vulnerability in our screenshot-viewer utility on rockstargames.com. One of the input parameters utilized was not being properly filtered, and external URLs could be referenced, allowing off-site images to be called. This issue was...

2.6AI score
Exploits0
Hacker One
Hacker One
added 2013/12/04 2:17 p.m.74 views

Internet Bug Bounty: TLS Virtual Host Confusion

I am a security researcher at INRIA Paris in team PROSECCO http://prosecco.inria.fr We have been investigating a new class of attacks against the deployment of TLS on the Web. The main idea behind these attacks is that when two servers host different domains but share the same certificate which...

6.4AI score
Exploits0
Rows per page
Query Builder