CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7276 matches found

Positive Technologies•added 2026/05/07 12:0 a.m.•10 views

PT-2026-38584

Name of the Vulnerable Software and Affected Versions Azure Notification Service affected versions not specified Description Server-side request forgery SSRF, a flaw where an attacker can induce the server to make requests to an unintended location, in the Azure Notification Service allows an...

8.5CVSS5.8AI score0.00827EPSS

Exploits0References6

Positive Technologies•added 2026/05/07 12:0 a.m.•13 views

PT-2026-38412

Name of the Vulnerable Software and Affected Versions Docling-Graph versions prior to 1.5.1 Description The URLInputHandler class in docling graph/core/input/handlers.py makes HTTP requests to user-supplied URLs without validating if the target resolves to a private, loopback, or link-local IP...

5.7CVSS5.8AI score0.00188EPSS

Exploits0References6

CNNVD•added 2026/05/07 12:0 a.m.•7 views

GitHub Enterprise Server 安全漏洞

GitHub Enterprise Server is an open-source application developed by GitHub in the United States. It provides a scalable and easy-to-manage platform by allowing users to set their GitHub instances as virtual devices. Prior to version 3.21 of GitHub Enterprise Server, there was a security...

9.8CVSS5.8AI score0.00377EPSS

Exploits0References1

Github Security Blog•added 2026/05/06 11:43 p.m.•12 views

Playwright Capture permits access to local files and internal network resources during page capture

Playwright Capture did not sufficiently restrict navigations and resource requests initiated by rendered pages. An attacker-controlled page could abuse browser-side redirection mechanisms, such as window.location.href, to make the capture process open file:// URLs or request resources hosted on...

8.7CVSS5.8AI score0.00319EPSS

Exploits0References4Affected Software1

OSV•added 2026/05/06 10:8 p.m.•5 views

GHSA-Q9PW-VMHH-384G PraisonAI has an SSRF bypass

Summary The URL checking logic in PraisonAI has a logical flaw that could be bypassed by attackers, leading to SSRF attacks. Details The current PraisonAI project uses validateurl to validate the input URL. The main logic is to perform security checks on the host portion of the URL extracted by...

9.8CVSS5.9AI score0.00378EPSS

Exploits1References3

EUVD•added 2026/05/06 9:31 p.m.•3 views

EUVD-2026-28164

OpenClaw before 2026.4.5 contains a server-side request forgery vulnerability in the CDP /json/version WebSocket endpoint that allows attackers to pivot to untrusted second-hop targets. The webSocketDebuggerUrl response field is not properly validated, enabling attackers to redirect connections t...

7.7CVSS5.9AI score0.00265EPSS

Exploits0References4

EUVD•added 2026/05/06 9:31 p.m.•18 views

EUVD-2026-28199

OpenClaw before 2026.4.20 contains a server-side request forgery vulnerability in QQBot direct media upload that skips URL validation. Attackers can bypass SSRF protections by sending crafted image URLs to uploadC2CMedia and uploadGroupMedia endpoints to relay unintended requests...

6.3CVSS5.8AI score0.00236EPSS

Exploits0References4

Github Security Blog•added 2026/05/06 9:31 p.m.•13 views

Duplicate Advisory: OpenClaw: Browser press/type interaction routes missed complete navigation guard coverage

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-536q-mj95-h29h. This link is maintained to preserve external references. Original Description OpenClaw before 2026.4.10 contains an incomplete navigation guard vulnerability that allows attackers to trigger...

7.7CVSS5.8AI score0.00264EPSS

Exploits0References7Affected Software1

OSV•added 2026/05/06 9:31 p.m.•3 views

GHSA-W7RC-VVGX-PJ45 Duplicate Advisory: OpenClaw: Browser SSRF hostname validation could be bypassed by DNS rebinding

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-xq94-r468-qwgj. This link is maintained to preserve external references. Original Description OpenClaw before 2026.4.10 contains a server-side request forgery vulnerability in browser navigation policy that allo...

6.3CVSS5.7AI score0.00199EPSS

Exploits0References4

Github Security Blog•added 2026/05/06 9:31 p.m.•7 views

Duplicate Advisory: OpenClaw validates Zalo outbound photo URLs through the SSRF guard

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-2hh7-c75g-qj2r. This link is maintained to preserve external references. Original Description OpenClaw before 2026.4.22 contains a server-side request forgery vulnerability in the Zalo plugin's sendPhoto functio...

8.6CVSS5.7AI score0.00291EPSS

Exploits0References5Affected Software1

Github Security Blog•added 2026/05/06 9:31 p.m.•20 views

Duplicate Advisory: OpenClaw: Browser SSRF hostname validation could be bypassed by DNS rebinding

6.3CVSS5.7AI score0.00199EPSS

Exploits0References5Affected Software1

NVD•added 2026/05/06 8:16 p.m.•4 views

CVE-2026-44116

OpenClaw before 2026.4.22 contains a server-side request forgery vulnerability in the Zalo plugin's sendPhoto function that fails to validate outbound photo URLs through the SSRF guard. Attackers can bypass SSRF protection by providing malicious photo URLs to the Zalo Bot API, enabling unauthoriz...

8.6CVSS0.00291EPSS

Exploits0References3

NVD•added 2026/05/06 8:16 p.m.•14 views

CVE-2026-44117

6.3CVSS0.00236EPSS

Exploits0References3

NVD•added 2026/05/06 8:16 p.m.•4 views

CVE-2026-43576

7.7CVSS0.00265EPSS

Exploits0References3

ATTACKERKB•added 2026/05/06 7:49 p.m.•3 views

CVE-2026-44117

6.3CVSS5.8AI score0.00236EPSS

Exploits0References4

CVE•added 2026/05/06 7:49 p.m.•18 views

CVE-2026-44117

OpenClaw is affected by a server-side request forgery in QQBot direct media upload (uploadC2CMedia and uploadGroupMedia) where URL validation is skipped. This allows an attacker to relay unintended requests by sending crafted image URLs, bypassing SSRF protections. The issue affects OpenClaw prio...

6.3CVSS5.8AI score0.00236EPSS

Exploits0References3Affected Software1