Lucene search
+L

41 matches found

osv
osv
added 6 days ago2 views

DEBIAN-CVE-2026-15146

GNU Wget does not validate the IP address provided by an FTP PASV response while operating in FTP passive mode. A malicious FTP server, or an HTTP server that redirects to an FTP URL, can exploit this behavior to redirect Wget’s data connection to an arbitrary IP address and port. This allows an...

5.9CVSS6.2AI score0.00121EPSS
Exploits0References1
susecve
susecve
added 2026/02/27 12:24 a.m.7 views

SUSE CVE-2026-28295

A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode PASV response. The client unconditionally trusts this information and attempts to connect to the specified endpoint, allowing the...

4.3CVSS5.8AI score0.00186EPSS
Exploits0References7
ubuntucve
ubuntucve
added 2026/02/26 4:24 p.m.4 views

CVE-2026-28295

A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode PASV response. The client unconditionally trusts this information and attempts to connect to the specified endpoint, allowing the...

4.3CVSS5.9AI score0.00186EPSS
Exploits0References3
cve
cve
added 2026/02/26 3:33 p.m.25 views

CVE-2026-28295

CVE-2026-28295 affects the FTP GVfs backend. A flaw causes the client to unconditionally trust the PASV response from an FTP server, which may contain an arbitrary IP and port. The client then attempts to connect to that endpoint, enabling a malicious server to probe for open ports reachable from...

4.3CVSS5.6AI score0.00186EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/02/26 3:33 p.m.8 views

CVE-2026-28295

A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode PASV response. The client unconditionally trusts this information and attempts to connect to the specified endpoint, allowing the...

4.3CVSS5.6AI score0.00186EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/01/09 9:34 a.m.8 views

CVE-2024-41432

An IP Spoofing vulnerability has been discovered in Likeshop up to 2.5.7.20210811. This issue allows an attacker to replace their real IP address with any arbitrary IP address, specifically by adding a forged 'X-Forwarded' or 'Client-IP' header to requests. Exploiting IP spoofing, attackers can...

5.3CVSS7AI score0.00376EPSS
Exploits1References1
osv
osv
added 2025/10/30 3:2 p.m.3 views

GO-2025-4068 Slack Nebula may accept arbitrary source IP addresses in github.com/slackhq/nebula

Slack Nebula may accept arbitrary source IP addresses in github.com/slackhq/nebula...

4.9CVSS7.1AI score0.00199EPSS
Exploits0References5
veracode
veracode
added 2025/10/30 11:38 a.m.8 views

Improper Certificate Validation

Dragonfly is vulnerable to Improper Certificate Validation. The vulnerability is due to the Manager’s Certificate gRPC service not verifying whether the requested IP addresses belong to the requesting peer, which allows an attacker to obtain valid TLS certificates for arbitrary IP addresses and...

8.7CVSS7.1AI score0.00219EPSS
Exploits1References5Affected Software2
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-2137

Malware in sbrugna...

5CVSS6AI score0.01763EPSS
Exploits0References11
euvd
euvd
added 2025/10/03 8:7 p.m.22 views

EUVD-2024-54700

Malicious code in bioql PyPI...

5.3CVSS9.1AI score0.00858EPSS
Exploits0References6
github
github
added 2025/09/17 8:11 p.m.11 views

DragonFly's manager generates mTLS certificates for arbitrary IP addresses

Impact A peer can obtain a valid TLS certificate for arbitrary IP addresses, effectively rendering the mTLS authentication useless. The issue is that the Manager’s Certificate gRPC service does not validate if the requested IP addresses “belong to” the peer requesting the certificate—that is, if...

8.7CVSS7.2AI score0.00219EPSS
Exploits1References5Affected Software2
osv
osv
added 2025/09/17 7:53 p.m.7 views

CVE-2025-59353 Manager generates mTLS certificates for arbitrary IP addresses

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, a peer can obtain a valid TLS certificate for arbitrary IP addresses, effectively rendering the mTLS authentication useless. The issue is that the Manager’s Certificate gRPC service does not...

8.7CVSS6.7AI score0.00219EPSS
Exploits1References4
cvelist
cvelist
added 2025/05/07 4:22 a.m.22 views

CVE-2025-3766 Login Lockdown & Protection <= 2.11 - Missing Authorization to Authenticated (Subscriber+) Arbitrary IP Whitelisting

The Login Lockdown & Protection plugin for WordPress is vulnerable to unauthorized nonce access due to a missing capability check on the ajaxruntool function in all versions up to, and including, 2.11. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...

5.4CVSS0.00299EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2024/05/17 12:0 a.m.11 views

The vulnerability of the SSL-VPN portal for FortiOS operating systems and the proxy server used to protect against internet attacks by FortiProxy allows attackers to send packets from arbitrary IP addresses.

The vulnerability of the SSL-VPN portal for FortiOS operating systems and the FortiProxy proxy server used for protecting against internet attacks is related to insufficient verification of data authenticity. Exploiting this vulnerability allows a malicious actor to send packets from arbitrary IP...

5CVSS5.6AI score0.00288EPSS
Exploits0References2Affected Software2
cnnvd
cnnvd
added 2024/04/17 12:0 a.m.5 views

WordPress Plugin coreActivity 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability in WordPre...

5.3CVSS6AI score0.00482EPSS
Exploits2References2
vulnrichment
vulnrichment
added 2024/02/29 3:17 p.m.13 views

CVE-2024-24818 EspoCRM weakness in "Forgot password"

EspoCRM is an Open Source Customer Relationship Management software. An attacker can inject arbitrary IP or domain in "Password Change" page and redirect victim to malicious page that could lead to credential stealing or another attack. This vulnerability is fixed in 8.1.2...

5.9CVSS6.7AI score0.00615EPSS
Exploits1References2
cvelist
cvelist
added 2024/02/29 3:17 p.m.33 views

CVE-2024-24818 EspoCRM weakness in "Forgot password"

EspoCRM is an Open Source Customer Relationship Management software. An attacker can inject arbitrary IP or domain in "Password Change" page and redirect victim to malicious page that could lead to credential stealing or another attack. This vulnerability is fixed in 8.1.2...

5.9CVSS5.8AI score0.00615EPSS
Exploits1References2
nessus
nessus
added 2024/02/18 12:0 a.m.27 views

Debian dla-3734 : openvswitch-common - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3734 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3734-1 [email protected] https://www.debian.org/lts/security/...

7.1CVSS6.8AI score0.00389EPSS
Exploits0References4
nessus
nessus
added 2023/12/07 12:0 a.m.29 views

SUSE SLES15: libopenvswitch-2_13-0 / libovn-20_03-0 / openvswitch / etc (SUSE-SU-2023:4666-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4666-1 advisory. - CVE-2023-5366: Fixed missing masks on a final stage with ports trie bsc1216002. Tenable has extracted the preceding...

7.1CVSS6.7AI score0.00389EPSS
Exploits0References4
nessus
nessus
added 2023/11/28 12:0 a.m.34 views

SUSE SLES15: libopenvswitch-2_13-0 / libovn-20_03-0 / openvswitch / etc (SUSE-SU-2023:4571-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4571-1 advisory. - CVE-2023-5366: Fixed missing masks on a final stage with ports trie bsc1216002. Tenable has extracted the preceding...

7.1CVSS6.7AI score0.00389EPSS
Exploits0References4
Rows per page
Query Builder