Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

40 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 8:46 a.m.7 views

CVE-2025-23671

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sav WP OpenSearch wp-opensearch allows Stored XSS.This issue affects WP OpenSearch: from n/a through = 1.0...

7.1CVSS7.2AI score0.00303EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-31279

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00411EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-16398

Malicious code in bioql PyPI...

9.1CVSS6.3AI score0.00511EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-53187

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00407EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2025-3330

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00303EPSS
Exploits0References1
Gitee
Giteeadded 2025/09/14 6:27 p.m.187 views

awesome-exploit-development

This is a curated list of resources for learning about exploit development, not an exploit itself. It is a collection of books, tutorials, courses, tools, and vulnerable applications for learning about exploit development. The resources include books such as "Hacking - The art of exploitation" an...

7.4AI score
Exploits0
SUSE CVE
SUSE CVEadded 2025/07/04 2:37 p.m.4 views

SUSE CVE-2025-48865

Fabio is an HTTPS and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and...

9.1CVSS7.1AI score0.00511EPSS
Exploits1References2
Veracode
Veracodeadded 2025/06/05 6:5 a.m.6 views

Improper Input Validation

github.com/fabiolb/fabio is vulnerable to Improper Input Validation. The vulnerability is due to insecure header handling due to a flaw in processing hop-by-hop headers, allowing clients to remove or manipulate trusted X-Forwarded headers via the Connection header...

9.1CVSS6.6AI score0.00511EPSS
Exploits1References5Affected Software1
Snyk
Snykadded 2025/06/03 5:28 p.m.1 views

Use of Less Trusted Source

Overview Affected versions of this package are vulnerable to Use of Less Trusted Source due to improper handling of custom headers. An attacker can manipulate these headers to potentially intercept or alter data by sending specially crafted HTTP requests. Remediation Upgrade...

9.3CVSS7AI score0.00511EPSS
Exploits1References4
OSV
OSVadded 2025/06/03 5:28 p.m.4 views

GO-2025-3722 Fabio allows HTTP clients to manipulate custom headers it adds in github.com/fabiolb/fabio

Fabio allows HTTP clients to manipulate custom headers it adds in github.com/fabiolb/fabio...

9.1CVSS9.6AI score0.00511EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/06/01 6:35 a.m.7 views

CVE-2025-48865

Fabio is an HTTPS and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and...

9.1CVSS6.9AI score0.00511EPSS
Exploits1References1
NVD
NVDadded 2025/05/30 7:15 a.m.9 views

CVE-2025-48865

Fabio is an HTTPS and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and...

9.1CVSS0.00511EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/05/30 6:14 a.m.20 views

CVE-2025-48865 Fabio allows HTTP clients to manipulate custom headers it adds

Fabio is an HTTPS and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and...

9.1CVSS0.00511EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2025/05/30 6:14 a.m.7 views

CVE-2025-48865 Fabio allows HTTP clients to manipulate custom headers it adds

Fabio is an HTTPS and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and...

9.1CVSS9.3AI score0.00511EPSS
Exploits1References3
CVE
CVEadded 2025/05/30 6:14 a.m.84 views

CVE-2025-48865

Fabio (fabio) is an HTTP(S) and TCP router for deploying Consul-managed apps. Prior to version 1.6.6, it mishandles hop-by-hop headers, allowing clients to remove or modify X-Forwarded headers (e.g., X-Forwarded-Host, X-Forwarded-Port) that Fabio injects when routing to backends. The attack relie...

9.1CVSS9.3AI score0.00511EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2025/05/30 6:14 a.m.7 views

CVE-2025-48865 Fabio allows HTTP clients to manipulate custom headers it adds

Fabio is an HTTPS and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and...

9.1CVSS6.7AI score0.00511EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/05/30 12:0 a.m.3 views

Fabio 安全漏洞

Fabio is a Fabio open source application. A security vulnerability exists in Fabio versions prior to 1.6.6 that stems from allowing clients to remove X-Forwarded headers when processing hop-by-hop headers, which could lead to a security hole...

9.1CVSS6.3AI score0.00511EPSS
Exploits1References4
Github Security Blog
Github Security Blogadded 2025/05/29 4:50 p.m.48 views

Fabio allows HTTP clients to manipulate custom headers it adds

Summary Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and X-Forwarded-Port when routing requests to backend applications. Since the receiving application should...

9.1CVSS7.4AI score0.00511EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2025/05/29 4:50 p.m.12 views

GHSA-Q7P4-7XJV-J3WF Fabio allows HTTP clients to manipulate custom headers it adds

Summary Fabio allows clients to remove X-Forwarded headers except X-Forwarded-For due to a vulnerability in how it processes hop-by-hop headers. Fabio adds HTTP headers like X-Forwarded-Host and X-Forwarded-Port when routing requests to backend applications. Since the receiving application should...

9.1CVSS10AI score0.00511EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/05/29 12:0 a.m.6 views

PT-2025-23220

Name of the Vulnerable Software and Affected Versions Fabio versions prior to 1.6.6 Description Fabio is an HTTPS and TCP router for deploying applications managed by consul. A vulnerability in how it processes hop-by-hop headers allows clients to remove X-Forwarded headers except X-Forwarded-For...

9.1CVSS5.8AI score0.00511EPSS
Exploits1References19
Rows per page
Query Builder