PT-2024-29963 · Openhab · Openhab +1

Name of the Vulnerable Software and Affected Versions: openHAB's CometVisu add-on versions prior to 4.2.1 Description: The proxy endpoint of openHAB's CometVisu add-on can be accessed without authentication, allowing for Server-Side Request Forgery SSRF and Cross-Site Scripting XSS vulnerabilitie...

PT-2024-28456

Name of the Vulnerable Software and Affected Versions axios versions 1.3.2 through 1.7.3 Description The issue allows Server-Side Request Forgery SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs. This could lead to internal system access o...

DEBIAN-CVE-2024-42365

Asterisk is an open source private branch exchange PBX and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with write=originate may change all configuration files in the /etc/asterisk/ directory. Thi...

CVE-2024-6893

The "soapcgi.pyc" API handler allows the XML body of SOAP requests to contain references to external entities. This allows an unauthenticated attacker to read local files, perform server-side request forgery, and overwhelm the web server resources...

PT-2024-10402 · Sangoma +2 · Asterisk +3

Name of the Vulnerable Software and Affected Versions: Asterisk versions prior to 18.24.2 Asterisk versions prior to 20.9.2 Asterisk versions prior to 21.4.2 Certified-Asterisk versions prior to 18.9-cert11 Certified-Asterisk versions prior to 20.7-cert2 Description: The issue is related to...

CVE-2024-6522

The Modern Events Calendar plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 7.12.1 via the 'mecfesform' AJAX function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make web requests to arbitra...

WordPress Modern Events Calendar plugin <= 7.12.1 - Authenticated (Subscriber+) Server Side Request Forgery vulnerability

Authenticated Subscriber+ Server Side Request Forgery vulnerability discovered by Foxyyy in WordPress Plugin Modern Events Calendar versions = 7.12.1...

PT-2024-37934

Name of the Vulnerable Software and Affected Versions soap cgi.pyc affected versions not specified Description The issue allows an unauthenticated attacker to read local files, perform server-side request forgery, and overwhelm the web server resources by including references to external entities...

Journyx 代码问题漏洞

Journyx is a cloud-based time tracking software from Journyx. A code issue vulnerability exists in Journyx version 11.5.4 that stems from an XML body that allows SOAP requests to contain references to external entities, which could allow an unauthenticated attacker to read local files, perform...

WordPress plugin Modern Events Calendar 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exis...

httpd: Potential SSRF in mod_rewrite

A flaw was found in the modrewrite module of httpd. A potential SSRF allows an attacker to cause unsafe rules used in the RewriteRule directive to unexpectedly set up URLs to be handled by the modproxy module...

Microsoft Copilot Studio 代码问题漏洞

Microsoft Copilot Studio is an artificial intelligence chatbot from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Copilot Studio that originates from an authenticated attacker who can bypass server-side request forgery SSRF protections, resulting in the disclosure of...

PT-2024-29889 · Nuxt · Nuxt

Name of the Vulnerable Software and Affected Versions: Nuxt versions prior to 1.4.5 Description: The nuxt/icon API endpoint, located at /api/ nuxt icon/name, is vulnerable to improper parsing of the proxied request path, allowing an attacker to change the scheme and host of the request. This lead...

Apache IoTDB 代码问题漏洞

Apache IoTDB is an integrated data management engine designed for time-series data from the Apache USA Foundation, which provides data collection, storage, and analysis services, among other things. Apache IoTDB suffers from a server-side request forgery vulnerability that stems from the product'...

Rocket.Chat 安全漏洞

Rocket.Chat is a chat program from Rocket.Chat, Inc. A security vulnerability exists in Rocket.Chat versions prior to 6.10.1 that stems from a server-side request forgery vulnerability in the Twilio network hook endpoint...

PT-2024-28648

Name of the Vulnerable Software and Affected Versions Rocket.Chat versions prior to 6.10.1 Description A Server-Side Request Forgery SSRF issue affects Rocket.Chat's Twilio webhook endpoint. This allows attackers to redirect requests, potentially risking sensitive data. Approximately 1781 IPs hav...

The vulnerability of the WADL (Web Application Description Language) technology used in the Apache CXF web service framework allows a attacker to perform an SSRF attack.

The vulnerability of the WADL Web Application Description Language framework for Apache CXF lies in the possibility of modifying requests on the server side due to incorrect transformation of style sheets. Exploiting this vulnerability could allow a malicious actor to execute an SSRF attack...

CVE-2024-2090

The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5 via the remotecontent shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to make web requests to arbitrary...

CVE-2024-7330

A vulnerability has been found in YouDianCMS 7 and classified as critical. Affected by this vulnerability is the function curlexec of the file /App/Core/Extend/Function/ydLib.php. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely. The...

WordPress plugin Remote Content Shortcode 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress plugin Remote Content...