Lucene search
K

6 matches found

EUVD
EUVD
added 2026/03/31 3:31 p.m.6 views

EUVD-2026-17474

In Search Guard FLX up to version 4.0.1, it is possible to use specially crafted requests to redirect the user to an untrusted URL...

4.3CVSS5.8AI score0.00176EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/31 2:41 p.m.3 views

CVE-2026-4799

In Search Guard FLX up to version 4.0.1, it is possible to use specially crafted requests to redirect the user to an untrusted URL...

4.3CVSS5.8AI score0.00176EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/03 9:19 p.m.10 views

OpenClaw's web tools strict URL guard could lose DNS pinning when env proxy is configured

Summary openclaw web tools strict URL fetch paths could lose DNS pinning when environment proxy variables are configured HTTPPROXY/HTTPSPROXY/ALLPROXY, including lowercase variants. In affected builds, strict URL checks for example webfetch and citation redirect resolution validated one destinati...

7.6CVSS5.9AI score0.00221EPSS
Exploits0References5Affected Software1
Veracode
Veracode
added 2026/01/12 10:0 a.m.12 views

Open Redirect

React Router is vulnerable to Open Redirect. The vulnerability is due to unsafe handling of SPA navigation redirects generated from loaders or actions in certain modes, which allows an attacker to inject untrusted redirect URLs and trigger unintended JavaScript execution on the client...

8CVSS7.1AI score0.0077EPSS
Exploits0References39Affected Software2
ATTACKERKB
ATTACKERKB
added 2022/05/01 3:20 p.m.1 views

CVE-2022-25850

The package github.com/hoppscotch/proxyscotch before 1.0.0 are vulnerable to Server-side Request Forgery SSRF when interceptor mode is set to proxy. It occurs when an HTTP request is made by a backend server to an untrusted URL submitted by a user. It leads to a leakage of sensitive information...

7.5CVSS7.1AI score0.01313EPSS
Exploits1References3
OSV
OSV
added 2020/07/01 12:0 a.m.2 views

UBUNTU-CVE-2020-12424

When constructing a permission prompt for WebRTC, a URI was supplied from the content process. This URI was untrusted, and could have been the URI of an origin that was previously granted permission; bypassing the prompt. This vulnerability affects Firefox 78...

6.5CVSS6.9AI score0.01392EPSS
Exploits0References5
Rows per page
Query Builder