Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Vulnrichment
Vulnrichmentadded 2026/05/28 5:47 p.m.5 views

CVE-2026-45307 Speakr: Open redirect in is_safe_url via parser mismatch on next parameter

Speakr is a personal, self-hosted web application designed for transcribing audio recordings. Prior to 0.8.20-alpha, the issafeurl helper used to validate post-login redirect targets applied urljoinrequest.hosturl, target before parsing, while the controller passed the raw target to redirect. A...

6.1CVSS5.8AI score0.00029EPSS
Exploits0References1
CVE
CVEadded 2026/05/28 5:47 p.m.14 views

CVE-2026-45307

Speakr prior to 0.8.20-alpha is vulnerable to an open redirect via the is_safe_url() helper. The validation used urljoin(request.host_url, target) before parsing, so a scheme-relative input like ////evil.com is resolved to a same-host URL during validation but is emitted verbatim in the Location ...

6.1CVSS5.8AI score0.00029EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/28 5:47 p.m.29 views

CVE-2026-45307 Speakr: Open redirect in is_safe_url via parser mismatch on next parameter

Speakr is a personal, self-hosted web application designed for transcribing audio recordings. Prior to 0.8.20-alpha, the issafeurl helper used to validate post-login redirect targets applied urljoinrequest.hosturl, target before parsing, while the controller passed the raw target to redirect. A...

6.1CVSS0.00029EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/28 5:47 p.m.10 views

EUVD-2026-32967

Speakr is a personal, self-hosted web application designed for transcribing audio recordings. Prior to 0.8.20-alpha, the issafeurl helper used to validate post-login redirect targets applied urljoinrequest.hosturl, target before parsing, while the controller passed the raw target to redirect. A...

6.1CVSS5.8AI score0.00029EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/05/28 12:0 a.m.7 views

PT-2026-44459

Speakr is a personal, self-hosted web application designed for transcribing audio recordings. Prior to 0.8.20-alpha, the is safe url helper used to validate post-login redirect targets applied urljoinrequest.host url, target before parsing, while the controller passed the raw target to redirect. ...

6.1CVSS5.8AI score0.00029EPSS
Exploits0References2
CNVD
CNVDadded 2017/01/10 12:0 a.m.2 views

Irssi memory corruption vulnerability (CNVD-2017-00311)

Irssi is a free, open source IRC client for use in Linux and Unix operating systems. Memory corruption vulnerabilities exist in Irssi versions 0.8.17 - 0.8.20. An attacker could exploit these vulnerabilities to obtain sensitive information or cause a denial of service condition...

7.5CVSS8.4AI score0.02199EPSS
Exploits0References1
Rows per page
Query Builder