Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Veracode
Veracodeadded 2026/04/30 3:15 a.m.7 views

Improper Access Control

Caddy is vulnerable to Improper Access Control. The vulnerability is due to incorrect case-insensitive matching in the HTTP host request matcher when large host lists are configured, allowing attackers to modify the casing of the Host header and bypass host-based routing or associated access...

9.1CVSS5.8AI score0.00062EPSS
Exploits1References3Affected Software2
Debian
Debianadded 2025/05/31 2:30 a.m.9 views

[SECURITY] [DLA 4197-1] python-flask-cors security update

Debian LTS Advisory DLA-4197-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert May 31, 2025 https://wiki.debian.org/LTS Package : python-flask-cors Version : 3.0.9-2+deb11u1 CVE ID : CVE-2024-1681 CVE-2024-6839 CVE-2024-6844 CVE-2024-6866 Debian Bug : 1069764 11009...

7.5CVSS6.3AI score0.00474EPSS
Exploits4
RedhatCVE
RedhatCVEadded 2025/03/20 3:58 p.m.6 views

CVE-2024-6866

A flaw was found in flask-cors. This vulnerability allows unauthorized origins to access restricted paths, leading to potential data exposure and leaks via case-insensitive request path matching due to improper use of the trymatch function. Mitigation Mitigation for this issue is either not...

5.3CVSS6.6AI score0.00066EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:14 a.m.1 views

SUSE CVE-2019-9169

In the GNU C Library aka glibc or libc6 through 2.29, proceednextnode in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match...

5.1CVSS8AI score0.04945EPSS
Exploits1References32
Tenable Nessus
Tenable Nessusadded 2017/06/28 12:0 a.m.39 views

SUSE SLES12 Security Update : freeradius-server (SUSE-SU-2017:1705-1)

This update for freeradius-server fixes the following issues: Security issue fixed : - CVE-2017-9148: Disable OpenSSL's internal session cache to mitigate authentication bypass. bsc1041445 Non security issue fixed : - Fix case insensitive matching in compiled regular expressions bsc1027243 Note...

9.8CVSS7.9AI score0.00637EPSS
Exploits0References5
OSV
OSVadded 2017/06/27 3:19 p.m.3 views

SUSE-SU-2017:1705-1 Security update for freeradius-server

This update for freeradius-server fixes the following issues: Security issue fixed: - CVE-2017-9148: Disable OpenSSL's internal session cache to mitigate authentication bypass. bsc1041445 Non security issue fixed: - Fix case insensitive matching in compiled regular expressions bsc1027243...

9.8CVSS9.6AI score0.00637EPSS
Exploits0References4
Packet Storm
Packet Stormadded 2014/09/23 12:0 a.m.55 views

X2Engine 4.1.7 Unrestricted File Upload

-------------------------------------------------------------------------------- X2Engine = 4.1.7 FileUploadsFilter.php Unrestricted File Upload Vulnerability -------------------------------------------------------------------------------- - Software Link: http://www.x2engine.com/ - Affected...

5CVSS0.01227EPSS
Exploits2
Rows per page
Query Builder