Lucene search
+L

8 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Pypy

A issue was discovered in Python versions 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. The email module incorrectly parses email addresses that contain multiple @ characters. An application that uses the email module and implements some kind of check on the From/To...

7.5CVSS7.2AI score0.05366EPSS
Exploits0References2
nvd
nvd
added 2026/05/19 12:16 p.m.33 views

CVE-2026-7504

A flaw was found in Keycloak's URL validation logic during redirect operations. By crafting a malicious request, an attacker could bypass validation to redirect users to unauthorized URLs, potentially leading to the exposure of sensitive information within the domain or facilitating further...

8.1CVSS0.005EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2026/05/19 12:0 a.m.16 views

PT-2026-41879

Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A flaw in the URL validation logic during redirect operations allows an attacker to bypass validation and redirect users to unauthorized URLs. This occurs when Keycloak clients are configure...

9.4CVSS5.8AI score0.005EPSS
Exploits0References22
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-0105

Malware in sbrugna...

2.1CVSS6.4AI score0.00368EPSS
Exploits0References2
attackerkb
attackerkb
added 2021/06/29 11:15 a.m.2 views

CVE-2021-33503

An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP...

7.5CVSS6.7AI score0.03273EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2020/06/11 12:0 a.m.6 views

PT-2021-6018

Name of the Vulnerable Software and Affected Versions urllib3 versions prior to 1.26.5 Description The issue is related to an HTTP client vulnerability in Python urllib3, which is associated with uncontrolled resource consumption. Exploitation of the vulnerability may allow a remote attacker to...

8.7CVSS7.1AI score0.03273EPSS
Exploits0References120
redhat
redhat
added 2020/04/28 4:6 p.m.6 views

python: email.utils.parseaddr wrongly parses email addresses

An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. The email module wrongly parses email addresses that contain multiple @ characters. An application that uses the email module and implements some kind of checks on the From/To header...

7.5CVSS6.8AI score0.05366EPSS
Exploits0References4
ptsecurity
ptsecurity
added 1997/03/01 12:0 a.m.4 views

PT-1997-1052 · Finger · Finger

Name of the Vulnerable Software and Affected Versions: finger affected versions not specified Description: The issue allows for recursive searches by utilizing a long string of @ symbols. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

2.1CVSS6.2AI score0.00368EPSS
Exploits0References2
Rows per page
Query Builder