PT-2026-23101

Name of the Vulnerable Software and Affected Versions Lemmy versions prior to 0.19.16 Description Lemmy, a link aggregator and forum, contains a server-side request forgery SSRF issue. The GET /api/v4/image/filename endpoint is susceptible to unauthenticated SSRF due to parameter injection in the...

EUVD-2025-29132

Malicious code in bioql PyPI...

CVE-2025-10410

A security vulnerability has been detected in SourceCodester Link Status Checker 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument proxy leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed...

CVE-2025-10410

CVE-2025-10410 affects SourceCodester Link Status Checker 1.0, specifically the code in index.php where manipulating the proxy argument enables server-side request forgery (SSRF). Multiple feeds confirm remote initiation and public disclosure of the exploit. The primary affected component is the ...

SourceCodester Link Status Checker 代码问题漏洞

SourceCodester Link Status Checker is an open source link status checker from SourceCodester. A code issue vulnerability exists in version 1.0 of SourceCodester Link Status Checker, which stems from an incorrect manipulation of the parameter proxy in the file index.php, which could lead to...

PT-2025-37430

Name of the Vulnerable Software and Affected Versions: SourceCodester Link Status Checker version 1.0 Description: A security issue exists in SourceCodester Link Status Checker 1.0, affecting unknown code within the index.php file. Manipulation of the proxy argument can lead to server-side reques...

CVE-2024-25737

A Server-Side Request Forgery SSRF vulnerability in the /Cover/Show route showAction in CoverController.php in Open Library Foundation VuFind 2.4 through 9.1 before 9.1.1 allows remote attackers to access internal HTTP servers and perform Cross-Site Scripting XSS attacks by proxying arbitrary URL...

Exploit for Improper Access Control in Joomla Joomla\!

CVE-2023-23752 CVE-2023-23752 Joomla Unauthenticated Informati...

CVE-2021-30234

The api/ZRIGMP/setMLDPROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the MLDPROXYWANCONNECT parameter...

CVE-2017-11393

Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG 12 allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the tr parameter within Proxy.php. Formerly ZDI-CAN-4543...

CVE-2009-0467

CVE-2009-0467 affects Profense Web Application Firewall 2.6.2 and 2.6.3. A cross-site scripting (XSS) vulnerability exists in proxy.html, where the proxy parameter in the deny_log manage action can be exploited to inject arbitrary web script or HTML. This is due to insufficient input handling in ...