28 matches found
CVE-2023-5571 Improper Input Validation in vriteio/vrite
Improper Input Validation in GitHub repository vriteio/vrite prior to 0.3.0...
PT-2023-32185 · Vriteio · Vrite
Name of the Vulnerable Software and Affected Versions: vriteio/vrite versions prior to 0.3.0 Description: The issue is related to Server-Side Request Forgery SSRF in the GitHub repository vriteio/vrite. SSRF is a type of attack where an attacker can trick a server into making requests to internal...
vrite Input Validation Error Vulnerability
vrite is an open source collaborative space from vrite, Inc. for creating, managing, and deploying product documentation, technical blogs, and knowledge bases. An input validation error vulnerability exists in vrite versions prior to 0.3.0, which stems from the presence of an input validation err...
vrite Code Issues Vulnerabilities
vrite is an open source collaborative space for creating, managing and deploying product documentation, technical blogs and knowledge bases from vrite, Inc. A code issue vulnerability exists in vrite versions prior to 0.3.0 that stems from the presence of a Server Request Forgery SSRF vulnerabili...
vrite Security Vulnerabilities
vrite is an open source collaborative space for creating, managing and deploying product documentation, technical blogs and knowledge bases from vrite, Inc. A security vulnerability exists in vrite versions prior to 0.3.0 that stems from the presence of a resource allocation error vulnerability...
PT-2023-32186 · Vrite · Vrite
Name of the Vulnerable Software and Affected Versions: vrite versions prior to 0.3.0 Description: The issue is related to the allocation of resources without limits or throttling in the GitHub repository vriteio/vrite. This could potentially lead to exploitation. Recommendations: For versions pri...
Application allows excessively long password value
Description Vrite v0.2.0 allows excessively long passwords to be set for user accounts which introduce several issues and challenges, primarily related to performance, storage, and compatibility. Proof of Concept 1. Make an user profile in the app. 2. Go to settings security Change password. 3. I...
SSRF vulnerability in the vrite
Description This vulnerability can be used to leak remote server information, bypass CDN like cloudflare. Also it can be used to the SSRF attack. Proof of Concept Here we can use it to leak the real IP of the https://app.vrite.io. GET /proxy?url=https://your-vps-ip.nip.io/ HTTP/2 Host: app.vrite....