Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:4 a.m.1 views

CVE-2024-41962

Bostr is an nostr relay aggregator proxy that acts like a regular nostr relay. bostr let everyone in even having authorizedkeys being set when noscraper is set to true. This vulnerability is fixed in 3.0.10...

6.3CVSS6.8AI score0.00212EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-2502

Malicious code in bioql PyPI...

6.3CVSS6.5AI score0.00212EPSS
Exploits0References6
Veracode
Veracodeadded 2024/08/05 3:46 a.m.12 views

Improper Authorization

bostr is vulnerable to Improper Authorization.The vulnerability is due improper validation which lets any user access the api even when the authorizedkeys and noscraper is set to true. Attackers can exploit this by gaining access to the relay without proper authorization...

6.3CVSS6.6AI score0.00212EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2024/08/02 1:20 a.m.11 views

GHSA-5CF7-CXRF-MQ73 Bostr Improper Authorization vulnerability

Even with authorizedkeys is filled with allowed pubkeys, If noscraper is enabled, It will allow anyone to use bouncer even it's pubkey is not in authorizedkeys. Impact - Private bouncer Patches Available on version 3.0.10 Workarounds Disable noscraper if you have authorizedkeys being set in confi...

5.1CVSS5.4AI score0.00212EPSS
Exploits0References6
Github Security Blog
Github Security Blogadded 2024/08/02 1:20 a.m.16 views

Bostr Improper Authorization vulnerability

Even with authorizedkeys is filled with allowed pubkeys, If noscraper is enabled, It will allow anyone to use bouncer even it's pubkey is not in authorizedkeys. Impact - Private bouncer Patches Available on version 3.0.10 Workarounds Disable noscraper if you have authorizedkeys being set in confi...

6.3CVSS4.6AI score0.00212EPSS
Exploits0References6Affected Software1
NVD
NVDadded 2024/08/01 5:16 p.m.11 views

CVE-2024-41962

Bostr is an nostr relay aggregator proxy that acts like a regular nostr relay. bostr let everyone in even having authorizedkeys being set when noscraper is set to true. This vulnerability is fixed in 3.0.10...

6.3CVSS0.00212EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/08/01 4:30 p.m.15 views

CVE-2024-41962 Bostr Improper Authorization

Bostr is an nostr relay aggregator proxy that acts like a regular nostr relay. bostr let everyone in even having authorizedkeys being set when noscraper is set to true. This vulnerability is fixed in 3.0.10...

4.6CVSS0.00212EPSS
Exploits0References4
OSV
OSVadded 2024/08/01 4:30 p.m.10 views

CVE-2024-41962 Bostr Improper Authorization

Bostr is an nostr relay aggregator proxy that acts like a regular nostr relay. bostr let everyone in even having authorizedkeys being set when noscraper is set to true. This vulnerability is fixed in 3.0.10...

4.6CVSS6.7AI score0.00212EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2024/08/01 4:30 p.m.12 views

CVE-2024-41962 Bostr Improper Authorization

Bostr is an nostr relay aggregator proxy that acts like a regular nostr relay. bostr let everyone in even having authorizedkeys being set when noscraper is set to true. This vulnerability is fixed in 3.0.10...

4.6CVSS6.7AI score0.00212EPSS
Exploits0References4
CVE
CVEadded 2024/08/01 4:30 p.m.48 views

CVE-2024-41962

Bostr (nostr relay aggregator proxy) is affected by an Improper Authorization vulnerability prior to version 3.0.10. When noscraper is enabled, the system lets anyone in even if authorized_keys are set, effectively bypassing access controls. The issue is fixed in 3.0.10. Connected sources also de...

6.3CVSS4.6AI score0.00212EPSS
Exploits0References4Affected Software1
CNNVD
CNNVDadded 2024/08/01 12:0 a.m.1 views

Bostr 安全漏洞

Bostr is a relay aggregator agent by the individual developer Yonle. A security vulnerability exists in versions prior to Bostr 3.0.10, which stems from a vulnerability that would allow anyone to use noscper if it is enabled...

6.3CVSS6.5AI score0.00212EPSS
Exploits0References5
Rows per page
Query Builder