CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

600 matches found

GHSA-HG6J-4RV6-33PG AIOHTTP is vulnerable to cross-origin redirect with per-request cookies

Summary Cookies set with the cookies parameter on requests are sent after following a cross-origin redirect. Impact If a developer uses the cookies parameter on a per-request basis then sensitive data might be leaked to an attacker if they manage to control a redirect. Workaround If unable to...

8.7CVSS5.8AI score0.00019EPSS

Exploits0References4

EUVD•added yesterday•5 views

EUVD-2026-34007

AIOHTTP is vulnerable to cross-origin redirect with per-request cookies...

8.7CVSS5.8AI score0.00019EPSS

Exploits0References3

OSV•added 2 days ago•3 views

DEBIAN-CVE-2026-47265

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, cookies set with the cookies parameter on requests are sent after following a cross-origin redirect. If a developer uses the cookies parameter on a per-request basis then sensitive data might ...

8.7CVSS5.8AI score0.00019EPSS

Exploits0References1

NVD•added 2 days ago•4 views

CVE-2026-47265

8.7CVSS0.00019EPSS

Exploits0References2

Vulnrichment•added 2 days ago•2 views

CVE-2026-47265 AIOHTTP vulnerable to cross-origin redirect with per-request cookies

8.7CVSS5.8AI score0.00019EPSS

Exploits0References2

ATTACKERKB•added 2 days ago•2 views

CVE-2026-47265

8.7CVSS5.8AI score0.00019EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2 days ago•6 views

PT-2026-45836

8.7CVSS5.8AI score0.00019EPSS

Exploits0References3

Cvelist•added last week•21 views

CVE-2026-47675 Hono: Cookie helper does not sanitize sameSite and priority, allowing Set-Cookie injection

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the serialize function in hono/cookie validates domain and path options against characters that corrupt Set-Cookie header syntax ;, \r, \n, but does not apply the same validation to sameSite an...

4.3CVSS0.00125EPSS

Exploits0References1

EUVD•added last week•6 views

EUVD-2026-32925

4.3CVSS5.8AI score0.00125EPSS

Exploits0References1

ATTACKERKB•added last week•4 views

CVE-2026-47675

4.3CVSS5.8AI score0.00125EPSS

Exploits0References2Affected Software1

Nuclei•added 2026/05/27 3:54 a.m.•33 views

TBK DVR4104/DVR4216 Devices - Authentication Bypass

TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which run re-branded versions of the original TBK DVR4104 and DVR4216 series, allow remote attackers to bypass authentication via a "Cookie: uid=admin"...

9.8CVSS7.4AI score0.94141EPSS

Exploits13References5

RedhatCVE•added 2026/05/26 8:14 p.m.•8 views

CVE-2026-47070

Sensitive Data Exposure vulnerability in benoitc hackney allows Retrieve Embedded Sensitive Data. The HTTP/3 redirect handler in src/hackneyh3.erl passes the original request headers unchanged to the redirect target without performing any cross-origin check. When a client issues an HTTP/3 request...

6.1CVSS5.8AI score0.00027EPSS

Exploits1References1

NVD•added 2026/05/25 3:16 p.m.•9 views

CVE-2026-47070

6.1CVSS0.00027EPSS

Exploits1References4

ATTACKERKB•added 2026/05/25 2:0 p.m.•5 views

CVE-2026-47070

9.8CVSS6.8AI score0.03854EPSS

Exploits1References5Affected Software1

OSV•added 2026/05/25 2:0 p.m.•4 views

EEF-CVE-2026-47070 HTTP/3 redirect handler leaks Authorization and Cookie headers to cross-origin redirect target in hackney

Summary Sensitive Data Exposure vulnerability in benoitc hackney allows Retrieve Embedded Sensitive Data. The HTTP/3 redirect handler in src/hackneyh3.erl passes the original request headers unchanged to the redirect target without performing any cross-origin check. When a client issues an HTTP/3...

6CVSS5.8AI score0.00027EPSS

Exploits1References4

Cvelist•added 2026/05/25 2:0 p.m.•28 views

CVE-2026-47070 HTTP/3 redirect handler leaks Authorization and Cookie headers to cross-origin redirect target in hackney

6CVSS0.00027EPSS

Exploits1References4

Positive Technologies•added 2026/05/25 12:0 a.m.•6 views

PT-2026-43067

Name of the Vulnerable Software and Affected Versions benoitc hackney versions 3.1.1 through 4.0.0 Description A sensitive data exposure issue exists where the HTTP/3 redirect handler in src/hackney h3.erl passes original request headers to a redirect target without performing cross-origin checks...

6.1CVSS5.8AI score0.00027EPSS

Exploits1References7

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в python-urllib3

urllib3 is a user-friendly HTTP client library for Python. urllib3 does not treat the Cookie HTTP header specially or provides any helpers for managing cookies over HTTP; that responsibility lies with the user. However, it is possible for a user to specify a Cookie header, and information may be...

8.1CVSS6.6AI score0.0095EPSS

Exploits0References2

Github Security Blog•added 2026/05/18 4:42 p.m.•9 views

async-http-client: Cookie header not stripped on cross-origin redirect

Summary async-http-client leaks Cookie headers to cross-origin redirect targets. When following a redirect across a security boundary different origin, or HTTPS→HTTP downgrade, the propagatedHeaders method in Redirect30xInterceptor.java strips Authorization and Proxy-Authorization headers but doe...

5.8AI score

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/15 4:27 p.m.•6 views

CVE-2026-41181 Traefik: Errors middleware forwards Authorization and Cookie headers to separate error page service

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.44, 3.6.15, and 3.7.0-rc.3, there is an information disclosure vulnerability in Traefik's errors custom error pages middleware. When the backend returns a response matching the configured status range, the middleware forwards the...

6.9CVSS5.8AI score0.00029EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by