Lucene search
+L

61 matches found

OSV
OSV
added 2026/03/26 5:29 p.m.3 views

CVE-2026-32857 Firecrawl Playwright Service SSRF Protection Bypass via Missing Post-Redirect Validation

Firecrawl version 2.8.0 and prior contain a server-side request forgery SSRF protection bypass vulnerability in the Playwright scraping service where network policy validation is applied only to the initial user-supplied URL and not to subsequent redirect destinations. Attackers can supply an...

7.8CVSS5.9AI score0.00407EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/26 3:5 p.m.5 views

CVE-2025-14037

The Invelity Product Feeds plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to, and including, 1.2.6. This is due to missing validation and sanitization in the 'createManageFeedPage' function. This makes it possible for authenticated...

8.1CVSS5.9AI score0.00173EPSS
Exploits0References1
Qualys Blog
Qualys Blog
added 2026/03/23 12:45 p.m.11 views

Meet Agent Val: Closing the Validation Gap in Exposure Management at Machine Speed with Agentic AI

Executive Summary The primary challenge in vulnerability management is proving what is actually exploitable. Many vulnerabilities are not exploited, but still drain resources. Traditional tools often fail to validate real risks. Agent Val, within Qualys Enterprise TruRisk Management, delivers thi...

6AI score
Exploits0
Github Security Blog
Github Security Blog
added 2026/03/17 5:12 p.m.10 views

Kube-router Proxy Module Blindly Trusts ExternalIPs/LoadBalancer IPs Enabling Cluster-Wide Traffic Hijacking and DNS DoS

kube-router Proxy Module Does Not Validate ExternalIPs or LoadBalancer IPs Against Configured Ranges Summary This issue primarily affects multi-tenant clusters where untrusted users are granted namespace-scoped permissions to create or modify Services. Single-tenant clusters or clusters where all...

7.1CVSS5.9AI score0.00297EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/03/17 4:16 p.m.8 views

PYSEC-2026-117

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.9.1, the GraphQL mutations "IndividualDeletionDeleteMutation" is intended to allow users to delete individual entity objects respectively. However, it was observed that this...

8.1CVSS5.8AI score0.00227EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/16 8:4 p.m.6 views

CVE-2026-3644

A control character validation flaw has been discovered in the Python http.cookie module. The Morsel.update, |= operator, and unpickling paths were not patched to resolve CVE-2026-0672, allowing control characters to bypass input validation. Additionally, BaseCookie.jsoutput lacked the output...

6CVSS5.6AI score0.00419EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/03/10 8:38 p.m.2 views

CVE-2026-30953

LinkAce is a self-hosted archive to collect website links. When a user creates a link via POST /links, the server fetches HTML metadata from the provided URL LinkRepository::create calls HtmlMeta::getFromUrl. The LinkStoreRequest validation rules do not include NoPrivateIpRule, allowing server-si...

7.7CVSS5.8AI score0.00218EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.34 views

PT-2026-24122

Name of the Vulnerable Software and Affected Versions Misskey versions 10.93.0 through 2026.3.0 Description Misskey is a federated social media platform. A flaw exists that allows importing data belonging to other users because of insufficient ownership validation. The potential impact is...

4.3CVSS5.8AI score0.00221EPSS
Exploits0References8
OSV
OSV
added 2026/03/05 9:49 p.m.8 views

GHSA-595M-WC8G-6QGC WeKnora is Vulnerable to SSRF via Redirection

Summary The application's "Import document via URL" feature is vulnerable to Server-Side Request Forgery SSRF through HTTP redirects. While the backend implements comprehensive URL validation blocking private IPs, loopback addresses, reserved hostnames, and cloud metadata endpoints, it fails to...

5.9CVSS5.8AI score0.00388EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.7 views

PT-2026-27225

Summary ZIP extraction in OpenClaw could be raced into writing outside the intended destination directory via parent-directory symlink rebind between validation and write. Affected Packages / Versions - Package: openclaw npm - Vulnerable versions: = 2026.3.1 - Latest published vulnerable version...

8.7CVSS5.8AI score
Exploits0References7
OSV
OSV
added 2026/02/25 1:16 p.m.5 views

CVE-2026-0704

In affected version of Octopus Deploy it was possible to remove files and/or contents of files on the host using an API endpoint. The field lacked validation which could potentially result in ways to circumvent expected workflows...

9.1CVSS5.8AI score0.00332EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 7:15 p.m.9 views

PYSEC-2025-89

NUT-14 allows cashu tokens to be created with a preimage hash. However, nutshell cashubtc/nuts before 0.18.0 do not validate the size of preimage when the token is spent. The preimage is stored by the mint and attacker can exploit this vulnerability to fill the mint's db nd disk with arbitrary da...

9.1CVSS5.9AI score0.00364EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.8 views

PT-2025-46543

Name of the Vulnerable Software and Affected Versions LOGO! 12/24RCE 6ED1052-1MD08-0BA2 affected versions not specified LOGO! 12/24RCEo 6ED1052-2MD08-0BA2 affected versions not specified LOGO! 230RCE 6ED1052-1FB08-0BA2 affected versions not specified LOGO! 230RCEo 6ED1052-2FB08-0BA2 affected...

7.1CVSS6.4AI score0.00217EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/28 12:0 a.m.4 views

CVE-2025-61235

An issue was discovered in Dataphone A920 v2025.07.161103. A custom packet based on public documentation can be crafted, where some fields can contain arbitrary or trivial data. Normally, such data should cause the device to reject the packet. However, due to a lack of validation, the device...

6.6AI score0.00356EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/30 3:6 p.m.11 views

CVE-2025-7493 Freeipa: idm: privilege escalation from host to domain admin in freeipa

A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is similar to CVE-2025-4404, where it fails to validate the uniqueness of the krbCanonicalName. While the previously released version added validations for the admin@REALM credential, FreeIPA...

9.1CVSS0.00523EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2025/09/30 3:6 p.m.3 views

CVE-2025-7493

A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is similar to CVE-2025-4404, where it fails to validate the uniqueness of the krbCanonicalName. While the previously released version added validations for the admin@REALM credential, FreeIPA...

9.1CVSS6.9AI score0.01827EPSS
Exploits1References3
CVE
CVE
added 2025/09/06 3:18 p.m.28 views

CVE-2021-26377

CVE-2021-26377 affects AMD Trusted OS (TOS) where insufficient parameter validation during process-space allocation can trigger an integer overflow, enabling a malicious userspace process to cause a denial of service. Affected products are tied to AMD Embedded Processors and related components; e...

4.1CVSS6.4AI score0.0014EPSS
Exploits0References3
Snyk
Snyk
added 2025/05/15 2:5 p.m.2 views

User Impersonation

Overview Affected versions of this package are vulnerable to User Impersonation due to insufficient validation in the MsgCommitPubRandList handler, combined with a lack of domain separation in signed messages. An attacker can store an invalid PubRand commitment by crafting the message parameters ...

8.9CVSS6.9AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/01 12:0 a.m.3 views

PT-2024-38632 · WordPress · Wp Hotel Booking

Name of the Vulnerable Software and Affected Versions: WP Hotel Booking plugin for WordPress versions up to, and including, 2.1.2 Description: The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update review function. This...

8.8CVSS8.1AI score0.17128EPSS
Exploits0References15
OSV
OSV
added 2024/07/30 8:15 a.m.3 views

UBUNTU-CVE-2024-42154

In the Linux kernel, the following vulnerability has been resolved: tcpmetrics: validate source addr length I don't see anything checking that TCPMETRICSATTRSADDRIPV4 is at least 4 bytes long, and the policy doesn't have an entry for this attribute at all neither does it for IPv6 but v6 is manual...

4.4CVSS6.1AI score0.00258EPSS
Exploits0References32
Rows per page
Query Builder