Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10548

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.00335EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/04/09 12:58 p.m.19 views

DotNetNuke.Core Vulnerable to Server-Side Request Forgery (SSRF)

A bypass has been identified for the previously known vulnerability CVE-2017-0929, allowing unauthenticated attackers to execute arbitrary GET requests against target systems, including internal or adjacent networks. Impact This vulnerability facilitates a semi-blind SSRF attack, allowing attacke...

7.5CVSS7.3AI score0.00335EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/04/09 12:58 p.m.11 views

GHSA-3F7V-QX94-666M DotNetNuke.Core Vulnerable to Server-Side Request Forgery (SSRF)

A bypass has been identified for the previously known vulnerability CVE-2017-0929, allowing unauthenticated attackers to execute arbitrary GET requests against target systems, including internal or adjacent networks. Impact This vulnerability facilitates a semi-blind SSRF attack, allowing attacke...

6.5CVSS6.9AI score0.00335EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2024/09/19 12:0 a.m.4 views

VulnCheck KEV: CVE-2017-0929

DNN aka DotNetNuke before 9.2.0 suffers from a Server-Side Request Forgery SSRF vulnerability in the DnnImageHandler class. Attackers may be able to access information about internal network resources...

7.5CVSS7.2AI score0.12543EPSS
Exploits0References1
Hacker One
Hacker One
added 2019/01/19 6:0 p.m.164 views

U.S. Dept Of Defense: https://████████ Impacted by DNN ImageHandler SSRF

Summary: https://███████ runs DNN 8.0.0 to 9.1.1 and is impacted by CVE 2017-0929 allowing for a SSRF through the DNN ImageHandler. Origin servers will request any image file supplied by the attacker. This allows for internal NIPR sites to be mapped and accessed through a vulnerable host. The...

0.5AI score
Exploits0
CVE
CVE
added 2018/07/03 9:0 p.m.151 views

CVE-2017-0929

CVE-2017-0929 affects DotNetNuke (DNN) before 9.2.0. A Server-Side Request Forgery (SSRF) vulnerability exists in the DnnImageHandler class, enabling an attacker to access internal network resources. The issue is mitigated by upgrading DNN to version 9.2.0 or above. If exploiting details are prov...

7.5CVSS7.2AI score0.12543EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder