Lucene search
K

10754 matches found

OSV
OSV
added 2026/04/09 5:32 p.m.1 views

GHSA-3P68-RC4W-QGX5 Axios has a NO_PROXY Hostname Normalization Bypass that Leads to SSRF

Axios does not correctly handle hostname normalization when checking NOPROXY rules. Requests to loopback addresses like localhost. with a trailing dot or ::1 IPv6 literal skip NOPROXY matching and go through the configured proxy. This goes against what developers expect and lets attackers force...

6.3CVSS5.7AI score0.01075EPSS
Exploits1References11
EUVD
EUVD
added 2026/04/09 5:32 p.m.8 views

EUVD-2025-209381

Axios has a NOPROXY Hostname Normalization Bypass Leads to SSRF...

9.3CVSS5.9AI score0.01075EPSS
Exploits1References7
OSV
OSV
added 2026/04/09 3:16 p.m.1 views

DEBIAN-CVE-2025-62718

Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.31.0, Axios does not correctly handle hostname normalization when checking NOPROXY rules. Requests to loopback addresses like localhost. with a trailing dot or ::1 IPv6 literal skip NOPROXY matching and go...

9.9CVSS5.3AI score0.01075EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/09 2:31 p.m.3 views

CVE-2025-62718

Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0, Axios does not correctly handle hostname normalization when checking NOPROXY rules. Requests to loopback addresses like localhost. with a trailing dot or ::1 IPv6 literal skip NOPROXY matching and go through the...

9.3CVSS5.8AI score0.01075EPSS
Exploits1References7Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/09 2:31 p.m.2 views

CVE-2025-62718 Axios has a NO_PROXY Hostname Normalization Bypass that Leads to SSRF

Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.31.0, Axios does not correctly handle hostname normalization when checking NOPROXY rules. Requests to loopback addresses like localhost. with a trailing dot or ::1 IPv6 literal skip NOPROXY matching and go...

6.3CVSS5.7AI score0.01075EPSS
Exploits1References9
Debian CVE
Debian CVE
added 2026/04/09 2:31 p.m.2 views

CVE-2025-62718

Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.31.0, Axios does not correctly handle hostname normalization when checking NOPROXY rules. Requests to loopback addresses like localhost. with a trailing dot or ::1 IPv6 literal skip NOPROXY matching and go...

9.9CVSS5.3AI score0.01075EPSS
Exploits1
CVE
CVE
added 2026/04/09 2:31 p.m.683 views

CVE-2025-62718

Axios prior to 1.15.0 has a hostname normalization flaw when evaluating NO_PROXY rules. Requests to loopback addresses (e.g., localhost with a trailing dot or IPv6 [::1]) can bypass NO_PROXY and be routed through the configured proxy. This bypass enables potential proxy circumvention and SSRF aga...

9.9CVSS5.7AI score0.01075EPSS
Exploits1References41Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.3 views

PT-2026-31718

Name of the Vulnerable Software and Affected Versions Sonicverse versions prior to commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4 Description The Sonicverse Radio Audio Streaming Stack dashboard contains a Server-Side Request Forgery SSRF vulnerability in its API client apps/dashboard/lib/api.ts...

9.9CVSS5.9AI score0.00232EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.2 views

PT-2026-31616

Name of the Vulnerable Software and Affected Versions Axios versions prior to 0.31.0 Axios versions prior to 1.15.0 Description Axios does not correctly handle hostname normalization when checking NO PROXY rules. Because the software performs a literal string comparison instead of normalizing...

9.9CVSS7.1AI score0.01075EPSS
Exploits1References285
Cvelist
Cvelist
added 2026/04/08 9:35 p.m.21 views

CVE-2026-40037 OpenClaw < 2026.3.31 - Unsafe Request Body Replay via fetchWithSsrFGuard Cross-Origin Redirects

OpenClaw before 2026.3.31 patched in 2026.4.8 contains a request body replay vulnerability in fetchWithSsrFGuard that allows unsafe request bodies to be resent across cross-origin redirects. Attackers can exploit this by triggering redirects to exfiltrate sensitive request data or headers to...

7.1CVSS0.00239EPSS
Exploits0References3
NVD
NVD
added 2026/04/08 9:17 p.m.4 views

CVE-2026-39885

FrontMCP is a TypeScript-first framework for the Model Context Protocol MCP. Prior to 2.3.0, the mcp-from-openapi library uses @apidevtools/json-schema-ref-parser to dereference $ref pointers in OpenAPI specifications without configuring any URL restrictions or custom resolvers. A malicious OpenA...

7.5CVSS0.00319EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/08 6:34 p.m.4 views

EUVD-2026-20511

A Server-Side Request Forgery SSRF vulnerability exists in the Print Format functionality of ERPNext v16.0.1 and Frappe Framework v16.1.1, where user-supplied HTML is insufficiently sanitized before being rendered into PDF. When generating PDFs from user-controlled HTML content, the application...

6.1AI score0.00245EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/08 9:31 a.m.4 views

EUVD-2026-20309

Server-Side Request Forgery SSRF vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Server Side Request Forgery.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through = 5.11...

5.9AI score0.00168EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.3 views

CVE-2026-39647

Server-Side Request Forgery SSRF vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Server Side Request Forgery.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through = 5.11...

5.9AI score0.00168EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 8:30 a.m.9 views

CVE-2026-39645

CVE-2026-39645 is an SSRF vulnerability in the WordPress plugin GlobalPayments Woocommerce (global-payments-woocommerce) affecting versions up to 1.18.0. The connected Red Hat, NVD, CVE lists and vulnerability aggregators consistently describe an SSRF issue in GlobalPayments WooCommerce with this...

5.4CVSS5.9AI score0.00168EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 8:30 a.m.20 views

CVE-2026-39521 WordPress Nelio Content plugin <= 4.3.1 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Nelio Software Nelio Content nelio-content allows Server Side Request Forgery.This issue affects Nelio Content: from n/a through = 4.3.1...

4.9CVSS0.00145EPSS
Exploits0References1
OSV
OSV
added 2026/04/08 12:8 a.m.6 views

GHSA-CMCR-Q4JF-P6Q9 WWBN AVideo has an Allowlisted downloadURL media extensions bypass SSRF protection and enable internal response exfiltration (Incomplete fix for CVE-2026-27732)

Summary The fix for CVE-2026-27732 is incomplete. objects/aVideoEncoder.json.php still allows attacker-controlled downloadURL values with common media or archive extensions such as .mp4, .mp3, .zip, .jpg, .png, .gif, and .webm to bypass SSRF validation. The server then fetches the response and...

7.1CVSS6AI score0.00206EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.4 views

PT-2026-31257

Name of the Vulnerable Software and Affected Versions Podigee versions through 1.4.0 Description A Server-Side Request Forgery SSRF vulnerability exists in Podigee. This allows for Server Side Request Forgery. Recommendations Update Podigee to a version later than 1.4.0...

5.8AI score0.00138EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2026/04/08 12:0 a.m.61 views

VulnCheck KEV: CVE-2025-27817

A possible arbitrary file read and SSRF vulnerability has been identified in Apache Kafka Client. Apache Kafka Clients accept configuration data for setting the SASL/OAUTHBEARER connection with the brokers, including "sasl.oauthbearer.token.endpoint.url" and "sasl.oauthbearer.jwks.endpoint.url"...

7.5CVSS5.9AI score0.60841EPSS
In wildExploits2References2
PyPA
PyPA
added 2026/04/07 8:16 p.m.9 views

PYSEC-2026-60

FastFeedParser is a high performance RSS, Atom and RDF parser. Prior to 0.5.10, when parse fetches a URL that returns an HTML page containing a tag, it recursively calls itself with the redirect URL — with no depth limit, no visited-URL deduplication, and no redirect count cap. An...

7.5CVSS5.8AI score0.00328EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder