Lucene search
K

14 matches found

NVD
NVD
added 2 days ago5 views

CVE-2026-14748

A flaw has been found in AIAnytime Awesome-MCP-Server up to a884bb51bcd99e08e14fd712c749d55d9d9a13ab. Affected by this issue is some unknown functionality of the file mcp-wiki/src/mcpwiki/server.py of the component mcp-wiki/wiki-summary. This manipulation of the argument url causes server-side...

6.5CVSS0.00231EPSS
Exploits0References8
OSV
OSV
added 2026/06/12 12:28 p.m.7 views

OESA-2026-2677 varnish security update

This is Varnish Cache, a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x,...

9.8CVSS5.3AI score0.00202EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.26 views

Angular 代码问题漏洞

Angular is an open-source development platform created by Angular. It is used to build mobile and desktop web applications using TypeScript/JavaScript and other languages. There were code-related vulnerabilities in versions prior to Angular 19.2.21, 20.3.19, 21.2.9, and 22.0.0-next.8. These...

8.7CVSS5.8AI score0.00256EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.3 views

MiracleLinux 4 : python-2.6.6-20.AXS4 (AXSA:2011-587:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2011-587:02 advisory. Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules,...

6.4CVSS8AI score0.04266EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 9:7 a.m.9 views

CVE-2020-10930

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of URLs. The issue results from th...

6.5CVSS5.8AI score0.00916EPSS
Exploits0References1
NVD
NVD
added 2025/10/16 7:15 p.m.9 views

CVE-2025-62427

The Angular SSR is a server-rise rendering tool for Angular applications. The vulnerability is a Server-Side Request Forgery SSRF flaw within the URL resolution mechanism of Angular's Server-Side Rendering package @angular/ssr before 19.2.18, 20.3.6, and 21.0.0-next.8. The function createRequestU...

8.7CVSS0.00397EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3336

Malware in sbrugna...

6.5CVSS6.6AI score0.00916EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-2571

Malware in sbrugna...

7CVSS6.9AI score0.00321EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2002-0014

Malware in sbrugna...

7.5CVSS6.4AI score0.02179EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/08/27 12:0 a.m.6 views

GitLab CE/EE 安全漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A security vulnerability exists in GitLab CE/EE versions 8.15 through prior to 18.1.5,...

6.5CVSS6.2AI score0.00296EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.6 views

PT-2024-20788 · Unknown · Filecatalyst Direct

Name of the Vulnerable Software and Affected Versions: FileCatalyst Direct versions 3.8.6 through 3.8.8 Description: The web server in FileCatalyst Direct does not properly sanitize illegal characters in a URL, which can be displayed on a subsequent error page. This allows a malicious actor to...

7.2CVSS7.8AI score0.00385EPSS
Exploits0References8
OSV
OSV
added 2023/03/16 2:21 p.m.20 views

USN-5960-1 python2.7, python3.10, python3.5, python3.6, python3.8 vulnerability

Yebo Cao discovered that Python incorrectly handled certain URLs. An attacker could possibly use this issue to bypass blocklisting methods by supplying a URL that starts with blank characters...

7.5CVSS7AI score0.20459EPSS
Exploits3References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/02/12 9:29 p.m.24 views

Security Bulletin: A security vulnerability in IBM SDK which affects DataQuant for z/OS (CVE-2019-2816, CVE-2019-2766, CVE-2019-11771, CVE-2019-11775, CVE-2019-2786, CVE-2019-11772, CVE-2019-2769, CVE-2019-2762, CVE-2019-7317, CVE-2019-4473)

Summary A security vulnerability has been identified in IBM SDK that could affect DataQuant for z/OS. Vulnerability Details CVEID: CVE-2019-2816 CVSS Base Score: 4.8 DESCRIPTION: A flaw in the java.net API incorrectly converts some Unicode characters when converting Internalized Domain Name URLs...

9.8CVSS0.7AI score0.37618EPSS
Exploits3Affected Software1
OSV
OSV
added 2017/12/14 4:29 p.m.7 views

CVE-2017-17520

tools/urlhandler.pl in TIN 2.4.1 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: a third party has reported that this is intentional behavior,...

8.8CVSS8.5AI score0.01896EPSS
Exploits0References1
Rows per page
Query Builder