Lucene search
K

239 matches found

Vulnrichment
Vulnrichment
added 2026/03/17 10:15 a.m.2 views

CVE-2026-28779 Apache Airflow: Path of session token in cookie does not consider base_url - session hijacking via co-hosted applications

Apache Airflow versions 3.1.0 through 3.1.7 session token token in cookies is set to path=/ regardless of the configured webserver baseurl or api baseurl. This allows any application co-hosted under the same domain to capture valid Airflow session tokens from HTTP request headers, allowing full...

5.8AI score0.00677EPSS
Exploits0References2
CVE
CVE
added 2026/03/17 10:15 a.m.19 views

CVE-2026-28779

Apache Airflow 3.1.0–3.1.7 exposes a session-token cookie path (/), ignoring configured webserver/api base_url. This enables co-hosted applications on the same domain to capture tokens and take over sessions without exploiting Airflow itself. Public descriptions consistently recommend upgrading t...

7.5CVSS5.8AI score0.00677EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/03/16 7:16 p.m.3 views

CVE-2025-69196

FastMCP is the standard framework for building MCP applications. Prior to version 2.14.2, the server does not properly respect the resource parameter submitted by the client in the authorization and token request. Instead of issuing the token explicitly for the MCP server, the token is issued for...

7.4CVSS0.00358EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/16 6:7 p.m.2 views

CVE-2025-69196 FastMCP OAuth Proxy token reuse across MCP servers

FastMCP is the standard framework for building MCP applications. Prior to version 2.14.2, the server does not properly respect the resource parameter submitted by the client in the authorization and token request. Instead of issuing the token explicitly for the MCP server, the token is issued for...

7.4CVSS5.7AI score0.00358EPSS
Exploits1References1
OSV
OSV
added 2026/03/16 6:7 p.m.9 views

CVE-2025-69196 FastMCP OAuth Proxy token reuse across MCP servers

FastMCP is the standard framework for building MCP applications. Prior to version 2.14.2, the server does not properly respect the resource parameter submitted by the client in the authorization and token request. Instead of issuing the token explicitly for the MCP server, the token is issued for...

7.4CVSS5.7AI score0.00358EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/03/16 6:7 p.m.23 views

CVE-2025-69196 FastMCP OAuth Proxy token reuse across MCP servers

FastMCP is the standard framework for building MCP applications. Prior to version 2.14.2, the server does not properly respect the resource parameter submitted by the client in the authorization and token request. Instead of issuing the token explicitly for the MCP server, the token is issued for...

7.4CVSS0.00358EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.3 views

PT-2026-25775

Name of the Vulnerable Software and Affected Versions FastMCP versions prior to 2.14.2 Description FastMCP, a framework for building MCP applications, does not properly validate the resource parameter submitted by the client during authorization and token requests. Instead of issuing tokens...

7.4CVSS5.4AI score0.00358EPSS
Exploits1References8
NVD
NVD
added 2026/03/04 10:16 p.m.7 views

CVE-2026-25750

Langchain Helm Charts are Helm charts for deploying Langchain applications on Kubernetes. Prior to langchain-ai/helm version 0.12.71, a URL parameter injection vulnerability existed in LangSmith Studio that could allow unauthorized access to user accounts through stolen authentication tokens. The...

8.5CVSS0.00292EPSS
Exploits0References1
OSV
OSV
added 2026/03/04 9:58 p.m.5 views

CVE-2026-25750 LangSmith Studio has URL Parameter Injection Vulnerability that Enables Token Theft via Malicious baseUrl

Langchain Helm Charts are Helm charts for deploying Langchain applications on Kubernetes. Prior to langchain-ai/helm version 0.12.71, a URL parameter injection vulnerability existed in LangSmith Studio that could allow unauthorized access to user accounts through stolen authentication tokens. The...

8.5CVSS5.8AI score0.00292EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/04 9:58 p.m.7 views

EUVD-2026-9499

Langchain Helm Charts are Helm charts for deploying Langchain applications on Kubernetes. Prior to langchain-ai/helm version 0.12.71, a URL parameter injection vulnerability existed in LangSmith Studio that could allow unauthorized access to user accounts through stolen authentication tokens. The...

8.5CVSS6AI score0.00292EPSS
Exploits0References1
OSV
OSV
added 2026/03/02 8:42 a.m.8 views

BIT-MASTODON-2026-27477 Mastodon has SSRF via unvalidated FASP Provider base_url

Mastodon is a free, open-source social network server based on ActivityPub. FASP registration requires manual approval by an administrator. In versions 4.4.0 through 4.4.13 and 4.5.0 through 4.5.6, an unauthenticated attacker can register a FASP with an attacker-chosen baseurl that includes or...

8.2CVSS6AI score0.0027EPSS
Exploits0References3
NVD
NVD
added 2026/02/24 8:27 p.m.7 views

CVE-2026-27477

Mastodon is a free, open-source social network server based on ActivityPub. FASP registration requires manual approval by an administrator. In versions 4.4.0 through 4.4.13 and 4.5.0 through 4.5.6, an unauthenticated attacker can register a FASP with an attacker-chosen baseurl that includes or...

8.2CVSS0.0027EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/24 7:0 p.m.21 views

CVE-2026-27477 Mastodon has SSRF via unvalidated FASP Provider base_url

Mastodon is a free, open-source social network server based on ActivityPub. FASP registration requires manual approval by an administrator. In versions 4.4.0 through 4.4.13 and 4.5.0 through 4.5.6, an unauthenticated attacker can register a FASP with an attacker-chosen baseurl that includes or...

8.2CVSS0.0027EPSS
Exploits0References2
CVE
CVE
added 2026/02/24 7:0 p.m.17 views

CVE-2026-27477

Mastodon CVE-2026-27477 describes an SSRF risk in the FASP feature: unauthenticated registration of a FASP with a base_url that can resolve to an internal address, when the server has EXPERIMENTAL_FEATURES including fasp enabled. Affected: Mastodon versions 4.4.0–4.4.13 and 4.5.0–4.5.6. Impact: s...

8.2CVSS5.7AI score0.0027EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.59 views

Mastodon 代码问题漏洞

Mastodon is an open-source social networking server based on ActivityPub, developed by Mastodon. There are code vulnerabilities in versions 4.4.0 to 4.4.13 and 4.5.0 to 4.5.6 of Mastodon. These vulnerabilities allow unverified attackers to register a FASP with a baseurl pointing to a local intern...

8.2CVSS5.9AI score0.0027EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/02/18 12:55 a.m.13 views

OpenClaw affected by SSRF in optional Tlon (Urbit) extension authentication

Summary The optional Tlon Urbit extension previously accepted a user-provided base URL for authentication and used it to construct an outbound HTTP request, enabling server-side request forgery SSRF in affected deployments. Impact This only affects deployments that have installed and configured t...

8.3CVSS5.7AI score0.00242EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.13 views

PT-2026-23551

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.14 Description The optional Tlon Urbit extension does not properly validate user-provided base URLs for authentication, leading to a server-side request forgery SSRF. This allows attackers who can influence th...

8.3CVSS5.9AI score0.00242EPSS
Exploits0References12
EUVD
EUVD
added 2026/01/21 8:42 p.m.8 views

EUVD-2026-3597

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

5.3CVSS5.7AI score0.2297EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2026/01/21 8:42 p.m.11 views

CVE-2026-21852

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

7.5CVSS5.5AI score0.2297EPSS
Exploits2References2Affected Software1
Snyk
Snyk
added 2026/01/21 1:0 a.m.9 views

Insufficiently Protected Credentials

Overview @anthropic-ai/claude-code is an Use Claude, Anthropic's AI assistant, right from your terminal. Claude can understand your codebase, edit files, run terminal commands, and handle entire workflows for you. Affected versions of this package are vulnerable to Insufficiently Protected...

7.5CVSS6.1AI score0.2297EPSS
Exploits2References2
Rows per page
Query Builder