CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/05/06 7:49 p.m.•26 views

CVE-2026-44116 OpenClaw < 2026.4.22 - Server-Side Request Forgery in Zalo Photo URL Validation

OpenClaw before 2026.4.22 contains a server-side request forgery vulnerability in the Zalo plugin's sendPhoto function that fails to validate outbound photo URLs through the SSRF guard. Attackers can bypass SSRF protection by providing malicious photo URLs to the Zalo Bot API, enabling unauthoriz...

8.6CVSS0.00291EPSS

Vulnrichment•added 2026/05/06 7:49 p.m.•7 views

CVE-2026-44116 OpenClaw < 2026.4.22 - Server-Side Request Forgery in Zalo Photo URL Validation

8.6CVSS5.8AI score0.00291EPSS

ATTACKERKB•added 2026/05/06 7:49 p.m.•4 views

CVE-2026-43582

OpenClaw before 2026.4.10 contains a server-side request forgery vulnerability in browser navigation policy that allows attackers to bypass hostname validation through DNS rebinding attacks. Attackers can exploit inconsistent hostname resolution between validation and actual network requests to...

6.3CVSS5.8AI score0.00199EPSS

Exploits0References4

CVE•added 2026/05/06 7:49 p.m.•17 views

CVE-2026-43582

OpenClaw prior to version 2026.4.10 is affected by a server-side request forgery in the browser navigation policy that lets an attacker bypass hostname validation via DNS rebinding. This enables exploitation where inconsistent hostname resolution between validation and actual network requests can...

6.3CVSS5.8AI score0.00199EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/05/06 7:49 p.m.•5 views

CVE-2026-43576 OpenClaw < 2026.4.5 - Second-hop SSRF via CDP /json/version WebSocket URL

OpenClaw before 2026.4.5 contains a server-side request forgery vulnerability in the CDP /json/version WebSocket endpoint that allows attackers to pivot to untrusted second-hop targets. The webSocketDebuggerUrl response field is not properly validated, enabling attackers to redirect connections t...

7.7CVSS5.9AI score0.00265EPSS

Cvelist•added 2026/05/06 7:49 p.m.•29 views

CVE-2026-43576 OpenClaw < 2026.4.5 - Second-hop SSRF via CDP /json/version WebSocket URL

7.7CVSS0.00265EPSS

CVE•added 2026/05/06 7:49 p.m.•13 views

CVE-2026-43576

OpenClaw before 2026.4.5 is affected by a server-side request forgery in the CDP /json/version WebSocket endpoint. The webSocketDebuggerUrl field is not properly validated, enabling an attacker to redirect connections to arbitrary hosts and perform SSRF-style jumps to second-hop targets. Affected...

7.7CVSS5.9AI score0.00265EPSS

Exploits0References3Affected Software1

Patchstack•added 2026/05/06 6:13 p.m.•9 views

NPM: dssrf: every IPv6 category bypasses is_url_safe

NPM: dssrf: every IPv6 category bypasses isurlsafe vulnerability discovered by ? in WordPress Npm dssrf versions 1.3.0...

8.7CVSS5.8AI score0.00349EPSS

Exploits0References2Affected Software1

Snyk•added 2026/05/06 5:23 p.m.•6 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the /v1/chat/completions, /v1/responses or /v1/messages endpoints. An attacker can cause the server to make unauthorized HTTP requests to internal resources, potentially exfiltrating sensitive conten...

7.1CVSS5.8AI score0.00258EPSS

Exploits1References2

CVE•added 2026/05/06 4:15 p.m.•15 views

CVE-2026-20035

Cisco Unity Connection Web Inbox SSRF: unauthenticated attacker can cause the affected device to issue arbitrary network requests via crafted HTTP requests due to improper input validation. Affected component is the web UI; CVSS 3.1 base score 7.2 (NETWORK, HIGH). Exploitation status and remediat...

ATTACKERKB•added 2026/05/06 4:15 p.m.•7 views

CVE-2026-20035

A vulnerability in the web UI of Cisco Unity Connection Web Inbox could allow an unauthenticated, remote attacker to conduct SSRF attacks through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by...

Exploits0References2Affected Software1

Cvelist•added 2026/05/06 4:15 p.m.•29 views

CVE-2026-20035 Cisco Unity Connection Server-Side Request Forgery Vulnerability

7.2CVSS0.00427EPSS

Vulnrichment•added 2026/05/06 4:15 p.m.•6 views

CVE-2026-20035 Cisco Unity Connection Server-Side Request Forgery Vulnerability

Cisco•added 2026/05/06 4:0 p.m.•18 views

Cisco Unity Connection Remote Code Execution and Server-Side Request Forgery Vulnerabilities

Multiple vulnerabilities in Cisco Unity Connection could allow a remote attacker to execute arbitrary code on or conduct server-side request forgery SSRF attacks through an affected device. For more information about these vulnerabilities, see the Details "details" section of this advisory. Cisco...

8.8CVSS6.2AI score0.00696EPSS

Patchstack•added 2026/05/06 10:0 a.m.•6 views

WordPress PixelYourSite Pro – Your smart PIXEL (TAG) Manager plugin <= 12.5.0.1 - Unauthenticated Blind Server-Side Request Forgery vulnerability

Unauthenticated Blind Server-Side Request Forgery vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - krei.dev | ogbuilders.io in WordPress Plugin PixelYourSite PRO versions = 12.5.0.1...

7.2CVSS5.8AI score0.00577EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/05/06 12:0 a.m.•6 views

OpenClaw 代码问题漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a server-side request forgery vulnerability that stems from a server-side request forgery vulnerability in QQBot direct media uploads that skips URL authentication. An attacker can exploit this...

6.3CVSS5.8AI score0.00236EPSS

CNNVD•added 2026/05/06 12:0 a.m.•6 views

Cisco Unity Connection Web Inbox 代码问题漏洞

Cisco Unity Connection Web Inbox is a voicemail access and management interface provided by the American company Cisco. There is a code vulnerability in Cisco Unity Connection Web Inbox, which stems from improper input validation for specific HTTP requests. This vulnerability could allow...