CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Exploits1References7

Astra Linux - уязвимость в python-webob

WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request hostname, it does so by parsing the URL that the user will be redirected to using Python’s urlparse function, and joining that parsed URL to the base URL. However, the...

Tenable Nessus•added 2026/05/04 12:0 a.m.•1 views

Exploits1References2

RHCOS 9 : OpenShift Container Platform 4.16.14 (RHSA-2024:6827)

The remote Red Hat Enterprise Linux CoreOS 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:6827 advisory. - webob: WebOb's location header normalization during redirect leads to open redirect CVE-2024-42353 Note that Nessus has not tested for this...

6.1CVSS5.8AI score0.00263EPSS

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-0201

Malicious code in bioql PyPI...

RedHat Linux•added 2025/06/26 12:12 p.m.•2 views

Exploits1References5

webob: WebOb's location header normalization during redirect leads to open redirect

A vulnerability was found in the WebOb package. WebOb normalizes the HTTP Location header using urlparse and urljoin. If the URL starts with //, urlparse treats the following part as the hostname, and replaces the original request's hostname. This issue, combined with user interaction, may become...

6.1CVSS5.7AI score0.00263EPSS

Exploits1References7

Tenable Nessus•added 2025/06/16 12:0 a.m.•7 views

TencentOS Server 4: python-webob (TSSA-2024:1066)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1066 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

OpenVAS•added 2025/05/26 12:0 a.m.•5 views

Exploits1References2

Fedora: Security Advisory (FEDORA-2024-b4c4fd0879)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2025/05/26 12:0 a.m.•7 views

Exploits1References3

Fedora: Security Advisory (FEDORA-2024-3e0d8c04fc)

RedHat Linux•added 2025/05/07 12:48 p.m.•1 views

Exploits1References3

webob: WebOb's location header normalization during redirect leads to open redirect

6.1CVSS5.7AI score0.00263EPSS

Exploits1References7

Tenable Nessus•added 2025/03/05 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2024-42353

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request hostname, it does so by parsing th...

Tenable Nessus•added 2025/02/10 12:0 a.m.•5 views

Exploits1References3

Azure Linux 3.0 Security Update: python-webob (CVE-2024-42353)

The version of python-webob installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42353 advisory. - WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header...

Tenable Nessus•added 2025/01/09 12:0 a.m.•21 views

Exploits1References2

Amazon Linux 2 : python-webob (ALAS-2025-2726)

The version of python-webob installed on the remote host is prior to 1.2.3-7. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2726 advisory. WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request...

Amazon•added 2025/01/09 12:0 a.m.•4 views

Medium: python-webob

Issue Overview: WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request hostname, it does so by parsing the URL that the user is to be redirected to with Python's urlparse, and joining it to the base URL. urlparse however treat...

6.1CVSS6.9AI score0.00263EPSS

Exploits1

Amazon•added 2025/01/09 12:0 a.m.•22 views

Medium: python-webob

6.1CVSS6.7AI score0.00263EPSS

Exploits1

OSV•added 2024/11/25 9:53 a.m.•11 views

RHSA-2024:9983 Red Hat Security Advisory: RHOSP 17.1.4 (python-webob) security update

Bulletin has no description...

OSV•added 2024/11/25 9:53 a.m.•15 views

Exploits1References10

RHSA-2024:9989 Red Hat Security Advisory: RHOSP 17.1.4 (python-webob) security update

Bulletin has no description...

Tenable Nessus•added 2024/11/25 12:0 a.m.•9 views

Exploits1References10

RHEL 8 : RHOSP 17.1.4 (python-webob) (RHSA-2024:9989)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:9989 advisory. WebOb provides wrappers around the WSGI request environment, and an object to help create WSGI responses. The objects map much of the specified...

Tenable Nessus•added 2024/11/25 12:0 a.m.•14 views

RHEL 9 : RHOSP 17.1.4 (python-webob) (RHSA-2024:9983)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:9983 advisory. WebOb provides wrappers around the WSGI request environment, and an object to help create WSGI responses. The objects map much of the specified...