Lucene search
+L

19 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:13 a.m.5 views

CVE-2022-0508

Server-Side Request Forgery SSRF in GitHub repository chocobozzz/peertube prior to f33e515991a32885622b217bf2ed1d1b0d9d6832...

6.5CVSS6.7AI score0.00893EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/03/09 8:35 a.m.37 views

CVE-2022-0881 Insecure Storage of Sensitive Information in chocobozzz/peertube

Insecure Storage of Sensitive Information in GitHub repository chocobozzz/peertube prior to 4.1.1...

7.6CVSS6.7AI score0.01074EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/03/09 12:0 a.m.6 views

PeerTube 安全漏洞

PeerTube is a decentralized video sharing service platform. It is used to create video projects. PeerTube suffers from a security vulnerability that stems from the insecure storage of sensitive information in the chocobozzz peertube...

7.6CVSS6.9AI score0.01074EPSS
Exploits1References3
NVD
NVD
added 2022/02/23 2:15 p.m.31 views

CVE-2022-0727

Improper Access Control in GitHub repository chocobozzz/peertube prior to 4.1.0...

5.5CVSS0.00678EPSS
Exploits1References2
NVD
NVD
added 2022/02/23 2:15 p.m.31 views

CVE-2022-0726

Missing Authorization in GitHub repository chocobozzz/peertube prior to 4.1.0...

5.5CVSS0.00678EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/23 2:15 p.m.7 views

CVE-2022-0726

Missing Authorization in GitHub repository chocobozzz/peertube prior to 4.1.0...

5.5CVSS5.4AI score0.00678EPSS
Exploits1References3
Prion
Prion
added 2022/02/23 2:15 p.m.18 views

Improper access control

Improper Access Control in GitHub repository chocobozzz/peertube prior to 4.1.0...

5.5CVSS5.5AI score0.00678EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/02/23 1:20 p.m.28 views

CVE-2022-0727 Improper Access Control in chocobozzz/peertube

Improper Access Control in GitHub repository chocobozzz/peertube prior to 4.1.0...

5.4CVSS5.8AI score0.00678EPSS
Exploits1References2
OSV
OSV
added 2022/02/23 1:20 p.m.23 views

CVE-2022-0727 Improper Access Control in chocobozzz/peertube

Improper Access Control in GitHub repository chocobozzz/peertube prior to 4.1.0...

5.4CVSS5.5AI score0.00678EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/02/23 12:0 a.m.35 views

CVE-2022-0726 Missing Authorization in chocobozzz/peertube

Missing Authorization in GitHub repository chocobozzz/peertube prior to 4.1.0...

5.4CVSS5.8AI score0.00678EPSS
Exploits1References2
Huntr
Huntr
added 2022/02/14 4:58 a.m.19 views

Improper Authorization in chocobozzz/peertube

Description The app doesn't check the status of video when making data changes. Normal users can create new comment or reply comment in private videos. Proof of Concept note: I'm using instance p.lu for testing - Step 1: Login as video test1 and upload private video. Get video ID of private video...

5.5CVSS5.4AI score0.00678EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2022/02/08 11:15 a.m.9 views

CVE-2022-0508

Server-Side Request Forgery SSRF in GitHub repository chocobozzz/peertube prior to f33e515991a32885622b217bf2ed1d1b0d9d6832...

6.5CVSS6.2AI score0.00893EPSS
Exploits1References3
NVD
NVD
added 2022/02/08 11:15 a.m.24 views

CVE-2022-0508

Server-Side Request Forgery SSRF in GitHub repository chocobozzz/peertube prior to f33e515991a32885622b217bf2ed1d1b0d9d6832...

6.5CVSS0.00893EPSS
Exploits1References2
Prion
Prion
added 2022/02/08 11:15 a.m.14 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF in GitHub repository chocobozzz/peertube prior to f33e515991a32885622b217bf2ed1d1b0d9d6832...

5CVSS5.3AI score0.00893EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/02/08 10:30 a.m.38 views

CVE-2022-0508 Server-Side Request Forgery (SSRF) in chocobozzz/peertube

Server-Side Request Forgery SSRF in GitHub repository chocobozzz/peertube prior to f33e515991a32885622b217bf2ed1d1b0d9d6832...

6.5CVSS5.6AI score0.00893EPSS
Exploits1References2
Huntr
Huntr
added 2022/02/05 10:0 p.m.25 views

Server-Side Request Forgery (SSRF) in chocobozzz/peertube

Description First of all, Thanks to my friend Haxatron for his excellent report I read the fix commit, and I found out that the code only Checked the IP addresses and didn't check the domain names that refer to a private IP address Steps to reproduce first, set up a local server at 127.0.0.2:8000...

5CVSS0.8AI score0.00893EPSS
Exploits1
Cvelist
Cvelist
added 2022/01/11 3:20 p.m.30 views

CVE-2022-0170 Improper Access Control in chocobozzz/peertube

peertube is vulnerable to Improper Access Control...

5.3CVSS5AI score0.00684EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/01/07 12:45 p.m.30 views

CVE-2022-0133 Improper Access Control in chocobozzz/peertube

peertube is vulnerable to Improper Access Control...

5.3CVSS7.7AI score0.01213EPSS
Exploits1References2
Huntr
Huntr
added 2021/12/31 9:36 a.m.19 views

Improper Access Control in chocobozzz/peertube

Description Unauthenticated users can obtain the caption of private videos Proof of Concept 1: First, create a private video and upload a caption 2: As an unauthenticated user, logout and visit the /api/v1/videos/1/captions 3: The response should return a lazy-static URL...

5CVSS2.3AI score0.01213EPSS
Exploits1
Rows per page
Query Builder