76 matches found
CVE-2023-46480
An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function...
CVE-2023-46480
An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function...
OwnCast Security Breach
Owncast is an open source, self-hosted, decentralized, single-user real-time video streaming and chat server. A security vulnerability exists in OwnCast version v.0.1.1, which originated from a vulnerability that allows remote attackers to obtain sensitive information or execute arbitrary code vi...
CVE-2023-46480
OwnCast v0.1.1 contains a remote code execution vulnerability exploitable via the authHost parameter in the indieauth function. Public sources (NVD/Red Hat/Veracode/GHSA) describe an in-the-wild risk with high impact, including arbitrary code execution and disclosure of sensitive information. The...
PT-2023-30044 · Owncast · Owncast
Name of the Vulnerable Software and Affected Versions: OwnCast version 0.1.1 Description: The issue allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function. Recommendations: For OwnCast version 0.1.1, consider...
Oxeye warns of SSRF Vulnerability in Owncast, SQL Injection Flaws in EaseProbe
By Waqas Owncase is a self-hosted live video streaming software, while EaseProbe is a lightweight and standalone health status checking tool. This is a post from HackRead.com Read the original post: Oxeye warns of SSRF Vulnerability in Owncast, SQL Injection Flaws in EaseProbe...
CVE-2023-3188
Server-Side Request Forgery SSRF in GitHub repository owncast/owncast prior to 0.1.0...
CVE-2023-3188
Server-Side Request Forgery SSRF in GitHub repository owncast/owncast prior to 0.1.0...
Server side request forgery (ssrf)
Server-Side Request Forgery SSRF in GitHub repository owncast/owncast prior to 0.1.0...
CVE-2023-3188 Server-Side Request Forgery (SSRF) in owncast/owncast
Server-Side Request Forgery SSRF in GitHub repository owncast/owncast prior to 0.1.0...
Owncast 代码问题漏洞
Owncast is an open source, self-hosted, decentralized, single-user real-time video streaming and chat server. A code issue vulnerability exists in Owncast version 0.1.0. An attacker could exploit this vulnerability to perform server-side request forgery SSRF attacks...
CVE-2023-3188 Server-Side Request Forgery (SSRF) in owncast/owncast
Server-Side Request Forgery SSRF in GitHub repository owncast/owncast prior to 0.1.0...
CVE-2023-3188 Server-Side Request Forgery (SSRF) in owncast/owncast
Server-Side Request Forgery SSRF in GitHub repository owncast/owncast prior to 0.1.0...
PT-2023-23502 · Owncast · Owncast
Name of the Vulnerable Software and Affected Versions: owncast/owncast versions prior to 0.1.0 Description: The issue is related to Server-Side Request Forgery SSRF in the owncast/owncast GitHub repository. This allows an attacker to make requests to internal services that are not intended for...
CVE-2023-3188
Summary: CVE-2023-3188 is an SSRF vulnerability in the open-source server Owncast (owncast/owncast) prior to version 0.1.0. The issue arises in the remotefollow pathway via the GetWebfingerLinks logic, where user-supplied input (account) is used to construct a URL, enabling an attacker to trigger...
Unauthenticated Blind SSRF
Description The Oxeye research team found Owncast vulnerable to an Unauthenticated Blind SSRF vulnerability. This vulnerability may allow an unauthenticated attacker to force the Owncast server to send HTTP requests to arbitrary locations using the GET HTTP method. This vulnerability also allows...
SQL Injection
github.com/owncast/owncast is vulnerable to SQL Injection. A specifically crafted attack statement through the input parameters of persistence.go allows a malicious user to inject and execute arbitrary SQL queries on the target system...
Owncast SQL Injection Vulnerability
Git is a free, open source distributed version control system. A SQL injection vulnerability exists in versions prior to Owncast 0.0.13. An attacker can exploit this vulnerability to obtain sensitive database information...
owncast is vulnerable to SQL Injection
SQL Injection in GitHub repository owncast/owncast prior to 0.0.13...
GHSA-CVH4-CJC9-84QM owncast is vulnerable to SQL Injection
SQL Injection in GitHub repository owncast/owncast prior to 0.0.13...