Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:33 p.m.8 views

CVE-2020-35579

tindy2013 subconverter 0.6.4 has a /sub?target=%TARGET%=%URL%=%CONFIG% API endpoint that accepts an arbitrary %URL% value and launches a GET request for it, but does not consider that the external request target may indirectly redirect back to this original /sub endpoint. Thus, a request loop and...

7.5CVSS7AI score0.01137EPSS
Exploits1
NVD
NVD
added 2020/12/20 7:15 a.m.21 views

CVE-2020-35579

tindy2013 subconverter 0.6.4 has a /sub?target=%TARGET%&url=%URL%&config=%CONFIG% API endpoint that accepts an arbitrary %URL% value and launches a GET request for it, but does not consider that the external request target may indirectly redirect back to this original /sub endpoint. Thus, a reque...

7.5CVSS7.5AI score0.01137EPSS
Exploits1References1
OSV
OSV
added 2020/12/20 7:15 a.m.21 views

CVE-2020-35579

tindy2013 subconverter 0.6.4 has a /sub?target=%TARGET%&url=%URL%&config=%CONFIG% API endpoint that accepts an arbitrary %URL% value and launches a GET request for it, but does not consider that the external request target may indirectly redirect back to this original /sub endpoint. Thus, a reque...

7.5CVSS7AI score
Exploits0References1
CVE
CVE
added 2020/12/20 6:31 a.m.68 views

CVE-2020-35579

CVE-2020-35579 affects tindy2013 subconverter 0.6.4. The API endpoint /sub?target=%TARGET%&url=%URL%&config=%CONFIG% accepts an arbitrary URL value and issues a GET request for it, but does not account for the external request target redirecting back to the original /sub endpoint. This can create...

7.5CVSS7.5AI score0.01137EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/12/20 6:31 a.m.26 views

CVE-2020-35579

tindy2013 subconverter 0.6.4 has a /sub?target=%TARGET%&url=%URL%&config=%CONFIG% API endpoint that accepts an arbitrary %URL% value and launches a GET request for it, but does not consider that the external request target may indirectly redirect back to this original /sub endpoint. Thus, a reque...

7.6AI score0.01137EPSS
Exploits1References1
Rows per page
Query Builder