Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-6051

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.02073EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 7:26 p.m.9 views

CVE-2021-25640

In Apache Dubbo prior to 2.6.9 and 2.7.9, the usage of parseURL method will lead to the bypass of white host check which can cause open redirect or SSRF vulnerability...

6.1CVSS6.7AI score0.02073EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/06/10 12:0 a.m.7 views

cc.jweb:jweb-adai (>=1.0.2 <=1.0.6), cc.jweb:jweb-boot (>=1.0.2 <=1.0.5) +74 more potentially affected by CVE-2021-25640 +1 more via org.apache.dubbo:dubbo (>=2.7.0 <=2.7.14)

org.apache.dubbo:dubbo MAVEN version =2.7.0, =1.0.2, =1.0.2, =1.2.1, =1.28.0, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =0.0.1, =1.0.3, =1.0.3, =1.5.1, =2.0.1, =2.0.11 and more Source cves: CVE-2021-25640, CVE-2022-24969 Source advisory:...

6.1CVSS6.3AI score0.02073EPSS
Exploits0
GitLab Advisory Database
GitLab Advisory Database
added 2022/06/10 12:0 a.m.24 views

Server-side request forgery in Apache Dubbo

bypass CVE-2021-25640 In Apache Dubbo prior to 2.6.12 and 2.7.15, the usage of parseURL method will lead to the bypass of the allowed host check which can cause open redirect or SSRF vulnerability...

6.1CVSS3AI score0.02073EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2022/06/09 4:15 p.m.19 views

Server side request forgery (ssrf)

bypass CVE-2021-25640 In Apache Dubbo prior to 2.6.12 and 2.7.15, the usage of parseURL method will lead to the bypass of the white host check which can cause open redirect or SSRF vulnerability...

5.8CVSS6.2AI score0.02073EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/06/06 10:0 p.m.19 views

CVE-2022-24969 bypass of CVE-2021-25640

bypass CVE-2021-25640 In Apache Dubbo prior to 2.6.12 and 2.7.15, the usage of parseURL method will lead to the bypass of the white host check which can cause open redirect or SSRF vulnerability...

6.5AI score0.02073EPSS
Exploits0References1
CVE
CVE
added 2021/05/31 7:25 a.m.86 views

CVE-2021-25640

CVE-2021-25640 affects Apache Dubbo prior to versions 2.6.12 and 2.7.15, where the parseURL method can bypass white-host checks, enabling open redirect or SSRF. Impacted components and exact root cause are described across multiple sources; exploitation status is not detailed here. Remediation is...

6.1CVSS6.1AI score0.02073EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/05/31 7:25 a.m.14 views

CVE-2021-25640 Open Redirect or SSRF vulnerability usage of parseURL

In Apache Dubbo prior to 2.6.9 and 2.7.9, the usage of parseURL method will lead to the bypass of white host check which can cause open redirect or SSRF vulnerability...

6.5AI score0.02073EPSS
Exploits0References1
Rows per page
Query Builder