Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:51 a.m.12 views

CVE-2022-42975

socket/transport.ex in Phoenix before 1.6.14 mishandles checkorigin wildcarding. NOTE: LiveView applications are unaffected by default because of the presence of a LiveView CSRF token...

7.5CVSS6.9AI score0.0052EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-7143

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.0052EPSS
Exploits0References4
OSV
OSV
added 2022/10/17 12:0 p.m.27 views

GHSA-P8F7-22GQ-M7J9 Phoenix before 1.6.14 mishandles check_origin wildcarding

socket/transport.ex in Phoenix before 1.6.14 mishandles checkorigin wildcarding. NOTE: LiveView applications are unaffected by default because of the presence of a LiveView CSRF token...

7.5CVSS7.5AI score0.0052EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/10/17 12:0 p.m.25 views

Phoenix before 1.6.14 mishandles check_origin wildcarding

socket/transport.ex in Phoenix before 1.6.14 mishandles checkorigin wildcarding. NOTE: LiveView applications are unaffected by default because of the presence of a LiveView CSRF token...

7.5CVSS7.3AI score0.0052EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/10/17 6:15 a.m.30 views

CVE-2022-42975

socket/transport.ex in Phoenix before 1.6.14 mishandles checkorigin wildcarding. NOTE: LiveView applications are unaffected by default because of the presence of a LiveView CSRF token...

7.5CVSS0.0052EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/17 12:0 a.m.35 views

CVE-2022-42975

socket/transport.ex in Phoenix before 1.6.14 mishandles checkorigin wildcarding. NOTE: LiveView applications are unaffected by default because of the presence of a LiveView CSRF token...

7.7AI score0.0052EPSS
Exploits0References1
OSV
OSV
added 2022/10/17 12:0 a.m.17 views

CVE-2022-42975

socket/transport.ex in Phoenix before 1.6.14 mishandles checkorigin wildcarding. NOTE: LiveView applications are unaffected by default because of the presence of a LiveView CSRF token...

7.5CVSS7.6AI score0.0052EPSS
Exploits0References3
CVE
CVE
added 2022/10/17 12:0 a.m.72 views

CVE-2022-42975

Phoenix prior to 1.6.14 contains a vulnerability in socket/transport.ex where check_origin wildcarding is mishandled. LiveView applications are unaffected by default because of the LiveView CSRF token. Affected versions: Phoenix before 1.6.14. Remediation: upgrade to Phoenix 1.6.14 or later or re...

7.5CVSS7.5AI score0.0052EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder