3 matches found
CVE-2026-60105
Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action caused by an incomplete IP blocklist check in the isBlockedIP function, which fails to detect embedded IPv4 addresses within IPv4-mapped IPv6 addresses. An unauthenticated attacker can obta...
CVE-2024-39534
An Incorrect Comparison vulnerability in the local address verification API of Juniper Networks Junos OS Evolved allows an unauthenticated network-adjacent attacker to create sessions or send traffic to the device using the network and broadcast address of the subnet assigned to an interface. Thi...
PT-2022-6805 · Zabbix +2 · Zabbix Frontend +3
Name of the Vulnerable Software and Affected Versions: Zabbix Frontend affected versions not specified Description: The issue is related to the incorrect implementation of IP address checking in Zabbix Frontend, which allows an attacker to bypass protection and access the instance using an IP...