Lucene search
K

10759 matches found

Cvelist
Cvelist
added 2026/04/08 8:30 a.m.20 views

CVE-2026-39521 WordPress Nelio Content plugin <= 4.3.1 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Nelio Software Nelio Content nelio-content allows Server Side Request Forgery.This issue affects Nelio Content: from n/a through = 4.3.1...

4.9CVSS0.00145EPSS
Exploits0References1
OSV
OSV
added 2026/04/08 12:8 a.m.6 views

GHSA-CMCR-Q4JF-P6Q9 WWBN AVideo has an Allowlisted downloadURL media extensions bypass SSRF protection and enable internal response exfiltration (Incomplete fix for CVE-2026-27732)

Summary The fix for CVE-2026-27732 is incomplete. objects/aVideoEncoder.json.php still allows attacker-controlled downloadURL values with common media or archive extensions such as .mp4, .mp3, .zip, .jpg, .png, .gif, and .webm to bypass SSRF validation. The server then fetches the response and...

7.1CVSS6AI score0.00206EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.4 views

PT-2026-31257

Name of the Vulnerable Software and Affected Versions Podigee versions through 1.4.0 Description A Server-Side Request Forgery SSRF vulnerability exists in Podigee. This allows for Server Side Request Forgery. Recommendations Update Podigee to a version later than 1.4.0...

5.8AI score0.00138EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2026/04/08 12:0 a.m.61 views

VulnCheck KEV: CVE-2025-27817

A possible arbitrary file read and SSRF vulnerability has been identified in Apache Kafka Client. Apache Kafka Clients accept configuration data for setting the SASL/OAUTHBEARER connection with the brokers, including "sasl.oauthbearer.token.endpoint.url" and "sasl.oauthbearer.jwks.endpoint.url"...

7.5CVSS5.9AI score0.62368EPSS
In wildExploits2References2
PyPA
PyPA
added 2026/04/07 8:16 p.m.9 views

PYSEC-2026-60

FastFeedParser is a high performance RSS, Atom and RDF parser. Prior to 0.5.10, when parse fetches a URL that returns an HTML page containing a tag, it recursively calls itself with the redirect URL — with no depth limit, no visited-URL deduplication, and no redirect count cap. An...

7.5CVSS5.8AI score0.00328EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/07 7:46 p.m.2 views

CVE-2026-39376 FastFeedParser has an infinite redirect loop DoS via meta-refresh chain

FastFeedParser is a high performance RSS, Atom and RDF parser. Prior to 0.5.10, when parse fetches a URL that returns an HTML page containing a tag, it recursively calls itself with the redirect URL — with no depth limit, no visited-URL deduplication, and no redirect count cap. An...

7.5CVSS5.9AI score0.00328EPSS
Exploits1References1
CVE
CVE
added 2026/04/07 7:26 p.m.13 views

CVE-2026-39370

WWBN AVideo (versions 26.0 and prior) is affected by CVE-2026-39370. The flaw resides in objects/aVideoEncoder.json.php which still accepts attacker-controlled downloadURL values with common media or archive extensions (e.g., .mp4, .mp3, .zip, .jpg, .png, .gif, .webm) that bypass SSRF validation....

7.1CVSS5.9AI score0.00206EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/04/07 7:2 p.m.9 views

CVE-2026-39361

OpenObserve (cloud-native observability platform)

7.7CVSS5.9AI score0.00265EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/07 5:3 p.m.4 views

CVE-2026-35037

Ech0 is an open-source, self-hosted publishing platform for personal idea sharing. Prior to 4.2.8, the GET /api/website/title endpoint accepts an arbitrary URL via the websiteurl query parameter and makes a server-side HTTP request to it without any validation of the target host or IP address. Th...

7.2CVSS6AI score0.00289EPSS
Exploits2References1
CVE
CVE
added 2026/04/07 3:14 p.m.9 views

CVE-2026-35516

LinkAce CVE-2026-35516 affects LinkAce prior to version 2.5.4. The issue arises because LinkRepository::update and CheckLinksCommand::checkLink do not validate private IPs, allowing an authenticated user to cause server-side requests to internal resources (e.g., AWS IMDSv1, cloud metadata, intern...

5CVSS5.9AI score0.00274EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/07 2:28 p.m.3 views

CVE-2026-35461 Papra has a Blind Server-Side Request Forgery (SSRF) via Webhook URL

Papra is a minimalistic document management and archiving platform. Prior to 26.4.0, the Papra webhook system allows authenticated users to register arbitrary URLs as webhook endpoints with no validation of the destination address. The server makes outbound HTTP POST requests to registered URLs,...

5CVSS6.1AI score0.00213EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/04/06 11:24 p.m.6 views

SUSE CVE-2026-33990

Docker Model Runner DMR is software used to manage, run, and deploy AI models using Docker. Prior to version 1.1.25, Docker Model Runner contains an SSRF vulnerability in its OCI registry token exchange flow. When pulling a model, Model Runner follows the realm URL from the registry's...

9.1CVSS5.9AI score0.00253EPSS
Exploits0References3
NVD
NVD
added 2026/04/06 8:16 p.m.4 views

CVE-2026-35459

pyLoad is a free and open-source download manager written in Python. In 0.5.0b3.dev96 and earlier, pyLoad has a server-side request forgery SSRF vulnerability. The fix for CVE-2026-33992 added IP validation to BaseDownloader.download that checks the hostname of the initial download URL. However,...

9.3CVSS0.00279EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/06 7:37 p.m.2 views

CVE-2026-35459

pyLoad is a free and open-source download manager written in Python. In 0.5.0b3.dev96 and earlier, pyLoad has a server-side request forgery SSRF vulnerability. The fix for CVE-2026-33992 added IP validation to BaseDownloader.download that checks the hostname of the initial download URL. However,...

9.3CVSS5.9AI score0.00397EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/06 7:37 p.m.4 views

CVE-2026-35459 pyLoad has SSRF fix bypass via HTTP redirect

pyLoad is a free and open-source download manager written in Python. In 0.5.0b3.dev96 and earlier, pyLoad has a server-side request forgery SSRF vulnerability. The fix for CVE-2026-33992 added IP validation to BaseDownloader.download that checks the hostname of the initial download URL. However,...

9.3CVSS5.9AI score0.00279EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/06 4:12 p.m.5 views

EUVD-2026-19360

Dgraph is an open source distributed GraphQL database. Prior to 25.3.1, the restoreTenant admin mutation is missing from the authorization middleware config admin.go, making it completely unauthenticated. Unlike the similar restore mutation which requires Guardian-of-Galaxy authentication,...

10CVSS5.9AI score0.00452EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/06 2:41 p.m.5 views

CVE-2026-32871

A flaw was found in FastMCP. An authenticated attacker can exploit a path traversal vulnerability in the buildurl method of the RequestDirector class. By manipulating path parameters in an OpenAPI operation, an attacker can use directory traversal sequences ../ to bypass the intended API prefix...

10CVSS5.9AI score0.00988EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/04/06 7:27 a.m.8 views

CVE-2026-5530

A flaw was found in Ollama. A remote attacker can exploit this vulnerability by manipulating the Model Pull API's server/download.go file. This can lead to Server-Side Request Forgery SSRF, allowing the attacker to force the server to make requests to arbitrary network locations. Mitigation To...

6.5CVSS6AI score0.00288EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.5 views

PT-2026-30515

A security vulnerability has been detected in imprvhub mcp-browser-agent up to 0.8.0. This impacts the function CallToolRequestSchema of the file src/handlers.ts of the component URL Parameter Handler. The manipulation of the argument request.params.name/request.params.arguments leads to...

6.5CVSS5.4AI score0.00268EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-35540

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Roundcube Webmail 1.6.0 before 1.6.14. Insufficient Cascading Style Sheets CSS sanitization in HTML e-mail messages may lead to SSRF ...

6.5CVSS5.8AI score0.0031EPSS
Exploits0References2
Rows per page
Query Builder