CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/06/05 6:18 p.m.•28 views

CVE-2026-46391 HAX open-apis: Credential Theft via Server-Side Request Forgery (SSRF) in open-apis

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Starting in version 9.0.1 and prior to version 26.0.0 of @haxtheweb/open-apis, multiple functions conduct substring-only matching to validate hostnames to which basic authorization should be sent. An attacker can append the...

8.7CVSS0.00457EPSS

OSV•added 2026/06/05 4:34 p.m.•6 views

GHSA-Q4X5-8CJ6-52WG Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpPrivateIP

Summary: The private IP blocklist regex used in the URL download feature does not match IPv4-mapped IPv6 addresses e.g. ::ffff:127.0.0.1, allowing SSRF protection to be bypassed on dual-stack systems. Affected components backend/src/applications/files/services/files-manager.service.ts –...

7.7CVSS5.4AI score0.00375EPSS

Exploits0References3

ATTACKERKB•added 2026/06/05 11:31 a.m.•9 views

CVE-2026-11346

A Server-Side Request Forgery SSRF vulnerability in the custom process creation feature of linqi allows an authenticated attacker to probe internal network components. By crafting a specific process containing an HTTP Request component, an attacker can force the server to send arbitrary HTTP...

Cvelist•added 2026/06/05 11:31 a.m.•39 views

CVE-2026-11346 Server-Side Request Forgery (SSRF) allowing Internal Network Probing in linqi

5.3CVSS0.00226EPSS

Vulnrichment•added 2026/06/05 11:31 a.m.•6 views

CVE-2026-11346 Server-Side Request Forgery (SSRF) allowing Internal Network Probing in linqi

CVE•added 2026/06/05 11:31 a.m.•16 views

CVE-2026-11346

The CVE-2026-11346 entry concerns a Server-Side Request Forgery (SSRF) in the custom process creation feature of linQI. An authenticated user can craft a process containing an HTTP Request component to force the server to issue arbitrary HTTP requests, enabling internal-network probing by observi...

EUVD•added 2026/06/05 11:31 a.m.•10 views

EUVD-2026-34825

Positive Technologies•added 2026/06/05 12:0 a.m.•11 views

PT-2026-46932

CNNVD•added 2026/06/05 12:0 a.m.•5 views

Altium 365和Altium Enterprise Server 安全漏洞

Altium 365 and Altium Enterprise Server are both products of the American company Altium. Altium 365 is a product design and development platform. Altium Enterprise Server is a localized data management server. Both Altium 365 and Altium Enterprise Server have security vulnerabilities. These...

8.3CVSS5.4AI score0.00226EPSS

Positive Technologies•added 2026/06/05 12:0 a.m.•9 views

PT-2026-47075

Name of the Vulnerable Software and Affected Versions LatePoint – Calendar Booking Plugin for Appointments and Events versions prior to 5.6.1 Description The plugin is affected by Cross-Site Request Forgery, a flaw where an attacker tricks a victim into performing actions they did not intend to...

4.3CVSS5.5AI score0.00135EPSS

Exploits0References13

CNNVD•added 2026/06/05 12:0 a.m.•7 views

Linqi 安全漏洞

Linqi is an English speaking practice platform developed by the German company Linqi. Linqi has a security vulnerability, which stems from a server-side request forgeing vulnerability in the custom process creation function. This vulnerability allows authenticated attackers to detect internal...

5.3CVSS5.3AI score0.00226EPSS

ATTACKERKB•added 2026/06/04 11:28 p.m.•5 views

CVE-2026-10586

The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 6.1.3 via the saveaigeneratedimage function. This makes it possible for authenticated attackers, with Author-level...

7.2CVSS5.9AI score0.00219EPSS

Exploits0References3

EUVD•added 2026/06/04 2:33 p.m.•9 views

EUVD-2026-34286

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...

9.9CVSS5.9AI score0.00262EPSS

CVE•added 2026/06/04 2:33 p.m.•24 views

CVE-2026-43986

Tautulli (Python-based tool for Plex) prior to v2.17.1 exposes a public /image/ endpoint that uses image_hash_lookup to replay server-side image fetch logic. A low-privilege guest can seed a malicious external image URL and trigger SSRF via an unauthenticated endpoint, turning an authenticated SS...

9.9CVSS5.9AI score0.00262EPSS

Vulnrichment•added 2026/06/04 2:32 p.m.•9 views

CVE-2026-43985 Taultulli has CSRF in /configUpdate via missing anti-CSRF and method restriction that allows admin credential takeover

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose configUpdate as a state-changing administrator endpoint, but the route does not enforce POST and does not use any anti-CSRF token. In the default form and JWT-based authentication mode,...

8.8CVSS5.8AI score0.00146EPSS

Positive Technologies•added 2026/06/04 12:0 a.m.•10 views

PT-2026-46259

Name of the Vulnerable Software and Affected Versions Tautulli versions prior to 2.17.1 Description Tautulli contains a Server-Side Request Forgery SSRF issue where a public endpoint '/image/' resolves entries from image hash lookup and processes them using the same server-side image fetch logic ...

9.9CVSS5.6AI score0.00262EPSS

Exploits0References4

Tenable Nessus•added 2026/06/04 12:0 a.m.•7 views

Kibana 9.3.x < 9.3.3 SSRF (ESA-2026-40)

The version of Kibana installed on the remote host is 9.3.x prior to 9.3.3. It is, therefore, affected by a vulnerability as referenced in the ESA-2026-40 advisory. - Server-Side Request Forgery CWE-918 in Kibana can allow an authenticated user with connector management privileges to bypass the...

7.7CVSS5.5AI score0.0018EPSS