Lucene search
+L

866 matches found

EUVD
EUVD
added 2026/05/19 12:51 a.m.12 views

EUVD-2026-30822

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.1.0 through 0.6.51, SendEmailBlock in autogptplatform/backend/backend/blocks/emailblock.py accepts a user-supplied smtpserver string and smtpport integer as...

5CVSS5.9AI score0.00304EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.24 views

PT-2026-41763

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.1.0 through 0.6.51, SendEmailBlock in autogpt platform/backend/backend/blocks/email block.py accepts a user-supplied smtp server string and smtp port integer as...

5CVSS5.9AI score0.00304EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/05/15 8:29 a.m.102 views

X-Omega-Hack

X-Omega-Hack X-Omega-Hack v9.0 - Tool hacking all in one buat...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/14 10:43 a.m.147 views

AutoPentest-Framework

AutoPentest Framework A modular Automated Penetration Testing...

5.8AI score
Exploits0
Snyk
Snyk
added 2026/04/29 8:54 p.m.6 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the Proxy process. An attacker can access internal services, retrieve sensitive cloud metadata, port-scan internal networks, or trigger internal-only endpoints by creating a cluster node with an...

9.9CVSS5.8AI score0.00318EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2026/04/25 3:49 a.m.137 views

Kai-Tools

Kai Tools 🚀 Kai Tools adalah suite keamanan dan intelijen...

5.6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/24 10:16 a.m.120 views

Black-Oracle

🖤 BLACK ORACLE 🖤 «The Eye That Sees Through Digital...

5.7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/21 4:4 p.m.6 views

CVE-2026-40566

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a Server-Side Request Forgery SSRF vulnerability in the IMAP/SMTP connection test functionality of FreeScout's MailboxesController. Three AJAX actions fetchtest line 731, sendtest line 682, and imapfolder...

4.1CVSS5.8AI score0.00291EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/21 4:4 p.m.30 views

CVE-2026-40566 FreeScout vulnerable to SSRF via IMAP/SMTP Connection Test Endpoints

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a Server-Side Request Forgery SSRF vulnerability in the IMAP/SMTP connection test functionality of FreeScout's MailboxesController. Three AJAX actions fetchtest line 731, sendtest line 682, and imapfolder...

4.1CVSS0.00291EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/21 4:4 p.m.10 views

EUVD-2026-24167

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a Server-Side Request Forgery SSRF vulnerability in the IMAP/SMTP connection test functionality of FreeScout's MailboxesController. Three AJAX actions fetchtest line 731, sendtest line 682, and imapfolder...

4.1CVSS5.8AI score0.00291EPSS
Exploits0References3
CVE
CVE
added 2026/04/21 4:4 p.m.15 views

CVE-2026-40566

FreeScout (versions before 1.8.213) contains an SSRF in the IMAP/SMTP connection test flow via MailboxesController. The three AJAX actions fetch_test, send_test, and imap_folders pass admin-configured in_server/in_port and out_server/out_port directly to fsockopen and to IMAP/SMTP clients without...

4.1CVSS5.8AI score0.00291EPSS
Exploits0References3
OSV
OSV
added 2026/04/21 4:4 p.m.5 views

CVE-2026-40566 FreeScout vulnerable to SSRF via IMAP/SMTP Connection Test Endpoints

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a Server-Side Request Forgery SSRF vulnerability in the IMAP/SMTP connection test functionality of FreeScout's MailboxesController. Three AJAX actions fetchtest line 731, sendtest line 682, and imapfolder...

4.1CVSS6AI score0.00291EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.9 views

FreeScout 安全漏洞

FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.213 contained security vulnerabilities. These vulnerabilities stemmed from the IMAP/SMTP connection testing functionality in t...

4.1CVSS5.9AI score0.00291EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.32 views

PT-2026-34010

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a Server-Side Request Forgery SSRF vulnerability in the IMAP/SMTP connection test functionality of FreeScout's MailboxesController. Three AJAX actions fetch test line 731, send test line 682, and imap...

4.1CVSS5.8AI score0.00291EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/17 11:15 p.m.2 views

ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host

Ruby's Net::FTP module trusted the IP address included in the FTP server's response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from...

5.8CVSS6.7AI score0.0305EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2026/04/16 1:17 p.m.137 views

python-vulnerability-scanner

Python Web Vulnerability Scanner This project is a simple Pyt...

5.8AI score
Exploits0
NVD
NVD
added 2026/04/15 10:17 p.m.11 views

CVE-2026-40500

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. The "Add Module from URL" feature requires superuser privileges root-equivalent in ProcessWire who already has unrestricted arbitrary code execution via standard module upload, making the SSRF vector...

0.00385EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/15 9:25 p.m.4 views

CVE-2026-40500

...

5.9AI score0.00385EPSS
Exploits0
OSV
OSV
added 2026/04/15 9:25 p.m.4 views

CVE-2026-40500 ProcessWire CMS SSRF via Add Module From URL

ProcessWire CMS version 3.0.255 and prior contain a server-side request forgery vulnerability in the admin panel's 'Add Module From URL' feature that allows authenticated administrators to supply arbitrary URLs to the module download parameter, causing the server to issue outbound HTTP requests t...

6.1CVSS6AI score0.00385EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/04/15 5:34 a.m.121 views

pentest-with-LLM

🛡️ pentest-with-LLM - Run Guided Security Testing !Download...

5.8AI score
Exploits0
Rows per page
Query Builder