Lucene search
K

9 matches found

Cvelist
Cvelist
added 2026/06/06 4:30 p.m.41 views

CVE-2026-11437 perfree go-fastdfs-web Installation Endpoint checkServer server-side request forgery

A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the function checkServer of the file /install/checkServer of the component Installation Endpoint. Executing a manipulation can lead to server-side request forgery. The attack can be executed remotely. The exploit has been...

7.5CVSS0.00409EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/06 4:30 p.m.11 views

EUVD-2026-34972

A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the function checkServer of the file /install/checkServer of the component Installation Endpoint. Executing a manipulation can lead to server-side request forgery. The attack can be executed remotely. The exploit has been...

7.5CVSS5AI score0.00409EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/13 7:24 p.m.5 views

CVE-2026-6105

A security vulnerability has been detected in perfree go-fastdfs-web up to 1.3.7. This affects an unknown part of the file src/main/java/com/perfree/controller/InstallController.java of the component doInstall Interface. The manipulation leads to improper authorization. The attack may be initiate...

7.5CVSS5.3AI score0.00309EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/12 12:32 a.m.4 views

EUVD-2026-21684

A security vulnerability has been detected in perfree go-fastdfs-web up to 1.3.7. This affects an unknown part of the file src/main/java/com/perfree/controller/InstallController.java of the component doInstall Interface. The manipulation leads to improper authorization. The attack may be initiate...

7.5CVSS5.3AI score0.00309EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/11 10:0 p.m.2 views

CVE-2026-6105

A security vulnerability has been detected in perfree go-fastdfs-web up to 1.3.7. This affects an unknown part of the file src/main/java/com/perfree/controller/InstallController.java of the component doInstall Interface. The manipulation leads to improper authorization. The attack may be initiate...

7.5CVSS5.3AI score0.00309EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/11 12:0 a.m.2 views

PT-2026-32126

A security vulnerability has been detected in perfree go-fastdfs-web up to 1.3.7. This affects an unknown part of the file src/main/java/com/perfree/controller/InstallController.java of the component doInstall Interface. The manipulation leads to improper authorization. The attack may be initiate...

7.5CVSS5.3AI score0.00309EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.6 views

CVE-2026-3963

A security flaw has been discovered in perfree go-fastdfs-web up to 1.3.7. This affects the function rememberMeManager of the file src/main/java/com/perfree/config/ShiroConfig.java of the component Apache Shiro RememberMe. Performing a manipulation results in use of hard-coded cryptographic key...

6.3CVSS4.9AI score0.00355EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/11 11:2 p.m.35 views

CVE-2026-3963 perfree go-fastdfs-web Apache Shiro RememberMe ShiroConfig.java rememberMeManager hard-coded key

A security flaw has been discovered in perfree go-fastdfs-web up to 1.3.7. This affects the function rememberMeManager of the file src/main/java/com/perfree/config/ShiroConfig.java of the component Apache Shiro RememberMe. Performing a manipulation results in use of hard-coded cryptographic key...

6.3CVSS0.00355EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/11 11:2 p.m.4 views

CVE-2026-3963

A security flaw has been discovered in perfree go-fastdfs-web up to 1.3.7. This affects the function rememberMeManager of the file src/main/java/com/perfree/config/ShiroConfig.java of the component Apache Shiro RememberMe. Performing a manipulation results in use of hard-coded cryptographic key...

6.3CVSS5.1AI score0.00355EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder