CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 3 days ago•7 views

CVE-2026-55767

Guzzle is an extensible PHP HTTP client. Prior to 7.12.1, CookieJar incorrectly accepts cookies with a dot-only Domain attribute and whitespace-padded variants. SetCookie::matchesDomain removes leading dots from the cookie domain, normalizing dot-only values to the empty string; SetCookie::valida...

5.8CVSS0.00111EPSS

Cvelist•added 3 days ago•28 views

CVE-2026-55767 Guzzle: Dot-Only Cookie Domains Match All Hosts in guzzlehttp/guzzle

5.8CVSS0.00111EPSS

CVE•added 3 days ago•10 views

CVE-2026-55767

Summary: Guzzle 7.x before 7.12.1 is vulnerable to cookie domain handling flaws in CookieJar. dot-only Domain attributes (e.g., Domain=., Domain=.., or whitespace-padded variants) are normalized to an empty domain, and the code path that rejects only an empty domain still allows it to match any h...

EUVD•added 3 days ago•5 views

EUVD-2026-38457

Debian CVE•added 3 days ago•7 views

CVE-2026-55767

Github Security Blog•added last week•7 views

Exploits0

guzzlehttp/guzzle: Dot-Only Cookie Domains Match All Hosts

Impact CookieJar incorrectly accepts cookies with a dot-only Domain attribute, such as Domain=., Domain=.., Domain=..., and whitespace-padded variants such as Domain= . . In affected versions, SetCookie::matchesDomain removes leading dots from the cookie domain, normalizing dot-only values to the...

Exploits0References2Affected Software1

OSV•added 2026/06/16 8:15 p.m.•3 views

GHSA-XMWJ-C75X-6346 LobeHub: Unauthenticated SSRF in `/webapi/proxy`

Unauthenticated SSRF in /webapi/proxy allows anyone to proxy requests and inject cookies on lobehub.com Summary The /webapi/proxy endpoint on app.lobehub.com accepts a URL in the POST body and fetches it server-side without any authentication. This is the same proxy code that was vulnerable in...

9CVSS5.8AI score0.0178EPSS

Github Security Blog•added 2026/06/16 8:15 p.m.•13 views

LobeHub: Unauthenticated SSRF in `/webapi/proxy`

9CVSS8.4AI score0.54712EPSS

Exploits2References2Affected Software1

NVD•added 2026/06/16 1:16 p.m.•8 views

CVE-2026-53900

Firefox for iOS preserved cookies set on the initial PDF request across cross-origin HTTP redirects in TemporaryDocument, allowing a malicious site to inject arbitrary cookies into requests to an unrelated target domain. This vulnerability was fixed in Firefox for iOS 152.0...

4.3CVSS0.001EPSS

EUVD•added 2026/06/16 11:53 a.m.•6 views

EUVD-2026-37078

4.3CVSS5.4AI score0.001EPSS

Cvelist•added 2026/06/16 11:53 a.m.•23 views

CVE-2026-53900 Cookie injection was possible when opening a PDF link

0.001EPSS

CVE•added 2026/06/16 11:53 a.m.•12 views

CVE-2026-53900

CVE-2026-53900 concerns Firefox for iOS. The issue: cookies set on the initial PDF request were preserved across cross-origin HTTP redirects in TemporaryDocument, enabling a malicious site to inject cookies into requests to an unrelated target domain. The CVE has a base score of 4.3 (Medium) per ...

4.3CVSS5.5AI score0.001EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2026/06/16 12:0 a.m.•9 views

PT-2026-49701

Name of the Vulnerable Software and Affected Versions Firefox for iOS versions prior to 152.0 Description Firefox for iOS preserved cookies set on the initial PDF request across cross-origin HTTP redirects in TemporaryDocument. This behavior allows a malicious site to inject arbitrary cookies int...

4.3CVSS6AI score0.001EPSS

Exploits0References6

CVE•added 2026/06/10 9:18 p.m.•71 views

CVE-2026-46625

CVE-2026-46625 concerns the JavaScript Cookie library (js-cookie) prior to 3.0.7. A per-instance prototype hijack occurs in the internal assign() when merging properties from a source object produced by JSON.parse that may include an own enumerable proto key. This polluted prototype leads to atta...

7.5CVSS5.4AI score0.00363EPSS

Exploits0References3

RedhatCVE•added 2026/06/08 4:34 p.m.•9 views

CVE-2026-43972

A flaw was found in gun. A malicious or compromised HTTP/2 server can exploit an Origin Validation Error vulnerability by injecting unvalidated HTTP/2 PUSHPROMISE authority. This allows the server to plant cookies scoped to arbitrary third-party domains into the client's shared cookie store. This...

6.3CVSS5.6AI score0.00215EPSS

NVD•added 2026/06/08 3:16 p.m.•12 views

CVE-2026-43972

Origin Validation Error vulnerability in ninenines gun gunhttp2 module allows cross-origin cookie injection via unvalidated HTTP/2 PUSHPROMISE authority. In gunhttp2:pushpromiseframe/7, the :authority pseudo-header from an incoming PUSHPROMISE frame is stored verbatim into the promised stream...

6.3CVSS0.00215EPSS

Exploits0References3

ATTACKERKB•added 2026/06/08 2:12 p.m.•6 views

CVE-2026-43972

6.3CVSS5.7AI score0.00215EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/06/08 2:12 p.m.•6 views

CVE-2026-43972 gun HTTP/2 PUSH_PROMISE authority not validated against connection origin allows cross-origin cookie injection

6.3CVSS5.7AI score0.00215EPSS

Exploits0References3

OSV•added 2026/06/08 2:12 p.m.•7 views

EEF-CVE-2026-43972 gun HTTP/2 PUSH_PROMISE authority not validated against connection origin allows cross-origin cookie injection

Summary Origin Validation Error vulnerability in ninenines gun gunhttp2 module allows cross-origin cookie injection via unvalidated HTTP/2 PUSHPROMISE authority. In gunhttp2:pushpromiseframe/7, the :authority pseudo-header from an incoming PUSHPROMISE frame is stored verbatim into the promised...

6.3CVSS5.7AI score0.00215EPSS