Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/25 8:54 p.m.7 views

CVE-2025-1522

PostHog databaseschema Server-Side Request Forgery Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.1CVSS6AI score0.00583EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/04/23 4:45 p.m.7 views

CVE-2025-1522 PostHog database_schema Server-Side Request Forgery Information Disclosure Vulnerability

PostHog databaseschema Server-Side Request Forgery Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.1CVSS6.1AI score0.00583EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/23 4:45 p.m.43 views

CVE-2025-1522 PostHog database_schema Server-Side Request Forgery Information Disclosure Vulnerability

PostHog databaseschema Server-Side Request Forgery Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.1CVSS0.00583EPSS
Exploits0References2
CVE
CVE
added 2025/04/23 4:45 p.m.65 views

CVE-2025-1522

CVE-2025-1522 describes a server-side request forgery and information disclosure in PostHog related to the implementation of the database_schema method. The flaw stems from insufficient validation of a URI before accessing resources, enabling an attacker to disclose data within the service accoun...

7.1CVSS6.6AI score0.00583EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/04/23 4:45 p.m.11 views

CVE-2025-1522 PostHog database_schema Server-Side Request Forgery Information Disclosure Vulnerability

PostHog databaseschema Server-Side Request Forgery Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PostHog. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.1CVSS7AI score0.00583EPSS
Exploits0References4
Circl
Circl
added 2025/02/25 5:0 a.m.7 views

CVE-2025-1522

creationtimestamp| type| source ---|---|--- 2025-02-25 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-097/...

7.1CVSS6.9AI score0.00583EPSS
Exploits0References1
Rows per page
Query Builder