Lucene search
+L

865 matches found

NVD
NVD
added 2 days ago6 views

CVE-2026-63096

Dendrite through 0.13.8 contains a server-side request forgery vulnerability that allows unauthenticated attackers to cause the server to open outbound TLS connections to arbitrary hosts and ports by supplying an unvalidated serverName parameter to the legacy media download endpoint. Attackers ca...

6.9CVSS0.00212EPSS
Exploits0References2
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-45194

Dendrite through 0.13.8 contains a server-side request forgery vulnerability that allows unauthenticated attackers to cause the server to open outbound TLS connections to arbitrary hosts and ports by supplying an unvalidated serverName parameter to the legacy media download endpoint. Attackers ca...

6.9CVSS5.5AI score0.00212EPSS
Exploits0References2
CVE
CVE
added 2 days ago10 views

CVE-2026-63096

CVE-2026-63096 affects Dendrite up to version 0.13.8, which contains a server-side request forgery (SSRF) flaw in the legacy media download endpoint. An unauthenticated attacker can supply an unvalidated serverName parameter to trigger outbound TLS connections to arbitrary hosts/ports. Error mess...

6.9CVSS5.5AI score0.00212EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2 days ago7 views

PT-2026-60789

Dendrite through 0.13.8 contains a server-side request forgery vulnerability that allows unauthenticated attackers to cause the server to open outbound TLS connections to arbitrary hosts and ports by supplying an unvalidated serverName parameter to the legacy media download endpoint. Attackers ca...

6.9CVSS5.5AI score0.00212EPSS
Exploits0References3
Nuclei
Nuclei
added 3 days ago122 views

OsTicket < 1.14.3 - Server Side Request Forgery

SSRF vulnerability exists in osTicket before 1.14.3, allowing an attacker to add malicious files to the server or perform port scanning. id: CVE-2020-24881 info: name: OsTicket 1.14.3 - Server Side Request Forgery author: hnd3884 severity: critical description: | SSRF vulnerability exists in...

9.8CVSS7AI score0.73267EPSS
Exploits3References2
Fedora
Fedora
added 2026/07/10 1:6 a.m.7 views

[SECURITY] Fedora 43 Update: nmap-7.92-8.fc43

Nmap is a utility for network exploration or security auditing. It supports ping scanning determine which hosts are up, many port scanning techniques determine what services the hosts are offering, and TCP/IP fingerprinting remote host operating system identification. Nmap also offers flexible ta...

6.9CVSS6.6AI score0.00278EPSS
Exploits0
EUVD
EUVD
added 2026/07/07 4:51 p.m.13 views

EUVD-2026-22188

Open WebUI has Blind Server Side Request Forgery in its Image Edit Functionality...

4.3CVSS5.9AI score0.00227EPSS
Exploits1References2
OSV
OSV
added 2026/07/07 4:51 p.m.8 views

GHSA-JGX9-JR5X-MVPV Open WebUI has Blind Server Side Request Forgery in its Image Edit Functionality

Summary There is a blind server side request forgery in the functionality that allows editing an image via a prompt. The affected function will perform a GET request on the URL provided by the user. There is no restriction on the domain of the provided URL allowing the local address space to be...

4.3CVSS5.9AI score0.00227EPSS
Exploits1References3
Fedora
Fedora
added 2026/07/03 12:56 a.m.13 views

[SECURITY] Fedora 44 Update: nmap-7.92-11.fc44

Nmap is a utility for network exploration or security auditing. It supports ping scanning determine which hosts are up, many port scanning techniques determine what services the hosts are offering, and TCP/IP fingerprinting remote host operating system identification. Nmap also offers flexible ta...

6.9CVSS6.6AI score0.00278EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/26 4:23 p.m.9 views

CVE-2026-28385

In Canonical LXD versions 4.12 through 6.9, a Server-Side Request Forgery SSRF vulnerability in the image import functionality allows authenticated users with the cancreateimages entitlement to interact with internal network infrastructure via the /images endpoint. When importing an image from a...

5CVSS5.8AI score0.0017EPSS
Exploits1
NVD
NVD
added 2026/06/24 10:16 p.m.11 views

CVE-2026-49979

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accepts attacker-controlled smtpHost and smtpPort values and establishes a raw JavaMail TCP connection without any IP validation. This completely bypasses...

5.1CVSS0.00218EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/06/24 9:38 p.m.5 views

CVE-2026-49979

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accepts attacker-controlled smtpHost and smtpPort values and establishes a raw JavaMail TCP connection without any IP validation. This completely bypasses...

5.1CVSS5.9AI score0.00218EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/06/24 9:38 p.m.30 views

CVE-2026-49979

Appsmith prior to version 1.99 exposes a vulnerability in the POST /api/v1/admin/send-test-email endpoint. An attacker can supply smtpHost and smtpPort values to establish a raw JavaMail TCP connection, bypassing WebClientUtils.IP_CHECK_FILTER (which only applies to Spring WebClient HTTP requests...

5.1CVSS5.9AI score0.00218EPSS
Exploits1References1Affected Software1
GithubExploit
GithubExploit
added 2026/06/18 6:44 p.m.63 views

sentinelx

sentinelx SentinelX AI — Next-gen AI-powered cybersecurit...

5.3AI score
Exploits0
GithubExploit
GithubExploit
added 2026/06/15 11:13 a.m.96 views

exploit-scripts

Offensive Security Toolkit ╔═════════════════════════════...

6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/06/12 1:11 p.m.102 views

Web-Attack-Detection-Lab

!Kali Linuxhttps://img.shields.io/badge/KaliLinux-557C94?sty...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/06/12 1:11 p.m.85 views

-Web-Attack-Detection-Lab

!Kali Linuxhttps://img.shields.io/badge/KaliLinux-557C94?sty...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/06/11 6:38 p.m.10 views

EUVD-2026-36288

Garlic-Hub manages digital signage network — devices, content, and playlists — from a single self-hosted interface. Prior to version 1.1, authenticated users can cause the server to issue arbitrary HTTP requests to internal services via the uploadFromUrl endpoint. This allows internal port...

7.7CVSS5.5AI score0.00209EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/11 6:38 p.m.27 views

CVE-2026-47170 Garlic-Hub: SSRF vulnerability in uploadFromUrl endpoint

Garlic-Hub manages digital signage network — devices, content, and playlists — from a single self-hosted interface. Prior to version 1.1, authenticated users can cause the server to issue arbitrary HTTP requests to internal services via the uploadFromUrl endpoint. This allows internal port...

7.7CVSS0.00209EPSS
Exploits0References2
CVE
CVE
added 2026/06/11 6:38 p.m.27 views

CVE-2026-47170

Garlic-Hub is affected by a CVE-2026-47170 SSRF in the uploadFromUrl endpoint. Prior to version 1.1 , authenticated users could cause the server to issue arbitrary HTTP requests to internal services, enabling internal port scanning, service fingerprinting, and retrieval of internal HTTP responses...

7.7CVSS5.5AI score0.00209EPSS
Exploits0References2
Rows per page
Query Builder