3 matches found
PT-2026-43662
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in phbernard Favicon favicon-by-realfavicongenerator allows Reflected XSS.This issue affects Favicon: from n/a through = 1.3.46...
auto-favicon has a Server-Side Request Forgery issue
A vulnerability was found in dh1011 auto-favicon up to f189116a9259950c2393f114dbcb94dde0ad864b. This issue affects the function generatefaviconfromurl of the file src/autofavicon/server.py of the component MCP Tool. The manipulation of the argument imageurl results in server-side request forgery...
PT-2026-35517
Name of the Vulnerable Software and Affected Versions dh1011 auto-favicon versions up to f189116a9259950c2393f114dbcb94dde0ad864b Description An issue in the MCP Tool component allows remote attackers to perform server-side request forgery SSRF, which is a flaw where a server is tricked into maki...