Lucene search
K

378 matches found

EUVD
EUVD
added 2026/03/27 1:52 p.m.5 views

EUVD-2026-16610

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, a Server-Side Request Forgery vulnerability in the background-image endpoint of calibre e-book reader's web view allows an attacker to perform blind GET requests to arbitra...

4.8CVSS6AI score0.00173EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/03/27 1:52 p.m.3 views

CVE-2026-33205

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, a Server-Side Request Forgery vulnerability in the background-image endpoint of calibre e-book reader's web view allows an attacker to perform blind GET requests to arbitra...

5.5CVSS5.5AI score0.00173EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.3 views

CVE-2026-32111

ha-mcp is a Home Assistant MCP Server. Prior to 7.0.0, the ha-mcp OAuth consent form beta feature accepts a user-supplied haurl and makes a server-side HTTP request to haurl/api/config with no URL validation. An unauthenticated attacker can submit arbitrary URLs to perform internal network...

5.3CVSS6AI score0.00278EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/03/25 12:25 a.m.4 views

SUSE CVE-2026-30834

PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. Prior to version 0.7.7, a Server-Side Request Forgery SSRF vulnerability in the /download endpoint allows any user with API access to induce the PinchTab server to make requests to arbitrary URLs,...

7.5CVSS5.9AI score0.00423EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/23 4:29 p.m.1 views

CVE-2026-33502 AVideo has Unauthenticated SSRF via plugin/Live/test.php

WWBN AVideo is an open source video platform. In versions up to and including 26.0, an unauthenticated server-side request forgery vulnerability in plugin/Live/test.php allows any remote user to make the AVideo server send HTTP requests to arbitrary URLs. This can be used to probe...

9.3CVSS5.9AI score0.00442EPSS
Exploits1References2
OSV
OSV
added 2026/03/23 4:29 p.m.8 views

CVE-2026-33502 AVideo has Unauthenticated SSRF via plugin/Live/test.php

WWBN AVideo is an open source video platform. In versions up to and including 26.0, an unauthenticated server-side request forgery vulnerability in plugin/Live/test.php allows any remote user to make the AVideo server send HTTP requests to arbitrary URLs. This can be used to probe...

9.3CVSS6AI score0.00442EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/23 4:29 p.m.21 views

CVE-2026-33502 AVideo has Unauthenticated SSRF via plugin/Live/test.php

WWBN AVideo is an open source video platform. In versions up to and including 26.0, an unauthenticated server-side request forgery vulnerability in plugin/Live/test.php allows any remote user to make the AVideo server send HTTP requests to arbitrary URLs. This can be used to probe...

9.3CVSS0.00442EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/21 6:30 a.m.3 views

EUVD-2026-14184

The MimeTypes Link Icons plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.2.20. This is due to the plugin making outbound HTTP requests to user-controlled URLs without proper validation when the "Show file size" option is enabled. This make...

8.3CVSS5.9AI score0.00316EPSS
Exploits0References4
NVD
NVD
added 2026/03/21 4:17 a.m.9 views

CVE-2026-3478

The Content Syndication Toolkit plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.3 via the reduxp AJAX action in the bundled ReduxFramework library. The plugin registers a proxy endpoint wpajaxnoprivreduxp that is accessible to...

7.2CVSS0.00272EPSS
Exploits0References7
OSV
OSV
added 2026/03/20 8:57 p.m.4 views

GHSA-3FPM-8RJR-V5MC AVideo has Unauthenticated SSRF via plugin/Live/test.php

Summary An unauthenticated server-side request forgery vulnerability in plugin/Live/test.php allows any remote user to make the AVideo server send HTTP requests to arbitrary URLs. This can be used to probe localhost/internal services and, when reachable, access internal HTTP resources or cloud...

9.3CVSS6.5AI score0.00442EPSS
Exploits2References4
NVD
NVD
added 2026/03/20 8:16 p.m.5 views

CVE-2026-33126

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to version 0.16.3, the /ffprobe endpoint accepts arbitrary user-controlled URLs without proper validation, allowing Server-Side Request Forgery SSRF attacks. An attacker can use the Frigate server t...

5CVSS0.00189EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.6 views

Frigate 代码问题漏洞

Frigate is a complete native NVR developed by Blake Blackshear, designed specifically for home assistants with AI object detection capabilities. Versions of Frigate prior to 0.16.3 have code vulnerabilities; these vulnerabilities stem from the /ffprobe endpoint accepting arbitrary user-controlled...

5CVSS6AI score0.00189EPSS
Exploits1References2
Hacker One
Hacker One
added 2026/03/16 3:17 p.m.12 views

phpBB: Blind POST SSRF via Web Push Notification Endpoint

A vulnerability was discovered in phpBB 4.0.0-alpha1 that allowed registered users to register arbitrary URLs as their Web Push notification endpoint. The endpoint URL was stored without validation and later used by the phpBB server to send outbound HTTP POST requests, potentially leading to blin...

6AI score
Exploits0
OSV
OSV
added 2026/03/12 5:16 p.m.11 views

PYSEC-2026-118

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to 6.8.16, the OpenCTI platform’s data ingestion feature accepts user-supplied URLs without validation and uses the Axios HTTP client with its default configuration allowAbsoluteUrls: true...

7.7CVSS5.9AI score0.00212EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/03/12 2:23 p.m.9 views

SiYuan has a Full-Read SSRF via /api/network/forwardProxy

Summary The /api/network/forwardProxy endpoint allows authenticated users to make arbitrary HTTP requests from the server. The endpoint accepts a user-controlled URL and makes HTTP requests to it, returning the full response body and headers. There is no URL validation to prevent requests to...

8.3CVSS5.9AI score0.00278EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/11 6:32 p.m.4 views

CVE-2026-31878 Frappe: Possible SSRF by any authenticated user

Frappe is a full-stack web application framework. Prior to 14.100.1, 15.100.0, and 16.6.0, a malicious user could send a crafted request to an endpoint which would lead to the server making an HTTP call to a service of the user's choice. This vulnerability is fixed in 14.100.1, 15.100.0, and 16.6...

5CVSS5.8AI score0.00184EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/11 6:31 a.m.6 views

EUVD-2026-11076

A vulnerability in the web-based management interface of AOS-CX Switches could allow an unauthenticated remote attacker to redirect users to an arbitrary URL...

6.5CVSS5.9AI score0.00288EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.6 views

PT-2026-24837

ha-mcp is a Home Assistant MCP Server. Prior to 7.0.0, the ha-mcp OAuth consent form beta feature accepts a user-supplied ha url and makes a server-side HTTP request to ha url/api/config with no URL validation. An unauthenticated attacker can submit arbitrary URLs to perform internal network...

5.3CVSS6AI score0.00278EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.9 views

Hewlett Packard Enterprise AOS(HPE AOS) 安全漏洞

Hewlett Packard Enterprise AOS is a network operating system developed by Hewlett Packard Enterprise in the United States. It is used for data centers, campus networks, and edge computing environments. Hewlett Packard Enterprise AOS HPE AOS contains a security vulnerability. This vulnerability...

6.5CVSS5.9AI score0.00288EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/09 8:1 a.m.4 views

CVE-2026-30834

PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. Prior to version 0.7.7, a Server-Side Request Forgery SSRF vulnerability in the /download endpoint allows any user with API access to induce the PinchTab server to make requests to arbitrary URLs,...

7.5CVSS5.8AI score0.00423EPSS
Exploits1References1
Rows per page
Query Builder