Lucene search
K

30 matches found

OSV
OSV
added 2026/06/26 10:23 p.m.4 views

GHSA-396Q-4VC8-28X9 @microsoft/kiota-http-fetchlibrary: Bearer token and Cookie leak across origin on redirect due to case-mismatched scrub in fetchRequestAdapter

Summary @microsoft/kiota-http-fetchlibrary's RedirectHandler is documented as stripping Authorization and Cookie from cross-origin redirect targets, but the default scrubSensitiveHeaders callback in RedirectHandlerOptions uses case-sensitive property deletion delete headers.Authorization, delete...

6.9CVSS5.8AI score0.0065EPSS
Exploits0References4
OSV
OSV
added 2026/06/19 6:19 p.m.3 views

CVE-2026-49336 @microsoft/kiota-http-fetchlibrary: Bearer token and Cookie leak across origin on redirect due to case-mismatched scrub in fetchRequestAdapter

@microsoft/kiota-http-fetchlibrary provides TypeScript libraries for Kiota-generated API clients. In versions 1.0.0-preview.97 through 1.0.0-preview.101, @microsoft/kiota-http-fetchlibrary's RedirectHandler is documented as stripping Authorization and Cookie from cross-origin redirect targets, bu...

6.9CVSS6AI score0.0065EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/20 5:31 a.m.10 views

Malicious code in promptbook-mcp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1223e123a8bd5b550647d800b438b2c5a78f3e10c9d1ab7a6a7cdbd8be465b90 dist/api.js contains a hardcoded URL https://promts.newtechcompany.ru referenced alongside process.env reads and a fetch call at line 44. The package...

5.8AI score
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-3959

Malicious code in bioql PyPI...

5.5CVSS6.5AI score0.04801EPSS
Exploits0References19
OSV
OSV
added 2025/09/05 5:10 p.m.5 views

MAL-2025-44250 Malicious code in fetch-request-hyperion-kardashevscale (npm)

The package fetch-request-hyperion-kardashevscale was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/02/10 5:48 p.m.45 views

GHSA-67MH-4WV8-2F99 esbuild enables any website to send any requests to the development server and read the response

Summary esbuild allows any websites to send any request to the development server and read the response due to default CORS settings. Details esbuild sets Access-Control-Allow-Origin: header to all requests, including the SSE connection, which allows any websites to send any request to the...

5.3CVSS6.8AI score
Exploits0References3
OSV
OSV
added 2025/01/27 11:31 a.m.9 views

GHSA-2452-6XJ8-JH47 Opening a malicious website while running a Nuxt dev server could allow read-only access to code

Summary Nuxt allows any websites to send any requests to the development server and read the response due to default CORS settings. Details While Vite patched the default CORS settings to fix https://github.com/vitejs/vite/security/advisories/GHSA-vg6x-rcgg-rjx6, nuxt uses its own CORS handler by...

5.3CVSS5.4AI score0.00529EPSS
Exploits0References8
Packet Storm
Packet Storm
added 2024/09/25 12:0 a.m.310 views

PHP SPM 1.0 Code Injection

============================================================================================================================================= | Title : php spm 1.0 php code injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 130.0.0 64 bits ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/08/20 12:0 a.m.221 views

Accounting Journal Management System 1.0 Code Injection

============================================================================================================================================= | Title : Accounting Journal Management System 1.0 php code injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

7.4AI score
Exploits0
wpexploit
wpexploit
added 2023/09/01 12:0 a.m.168 views

Activity Log < 2.8.8 - IP Spoofing

Description This plugin retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic. Run the following code in the web browser and note on the backend that the IP address has been faked...

5.3CVSS5.4AI score0.00627EPSS
Exploits2
wpexploit
wpexploit
added 2023/08/14 12:0 a.m.167 views

User Activity Log < 1.6.7 - IP Spoofing

Description This plugin retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic. 1. In User Activity Log Settings, enable the setting "Allow Ip Address of users to log." and save...

7.5CVSS7.6AI score0.0086EPSS
Exploits2
Vulnrichment
Vulnrichment
added 2023/03/07 4:4 p.m.12 views

CVE-2023-23776

An exposure of sensitive information to an unauthorized actor CWE-200 vulnerability in FortiAnalyzer versions 7.2.0 through 7.2.1, 7.0.0 through 7.0.4 and 6.4.0 through 6.4.10 may allow a remote authenticated attacker to read the client machine password in plain text in a heartbeat response when ...

4.6CVSS6.3AI score0.00241EPSS
Exploits0References1
Prion
Prion
added 2023/01/30 11:15 p.m.15 views

Design/Logic Flaw

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause all remote domains to access the resources data supplied by the server when an attacker sends a fetch request from third-party site or malicious site. Affected Products: EcoStruxure Power Commission Versions pri...

5CVSS7.4AI score0.00268EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/30 12:0 a.m.28 views

CVE-2022-22732

A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause all remote domains to access the resources data supplied by the server when an attacker sends a fetch request from third-party site or malicious site. Affected Products: EcoStruxure Power Commission Versions pri...

3.9CVSS7.6AI score0.00268EPSS
Exploits0References1
wpexploit
wpexploit
added 2023/01/16 12:0 a.m.140 views

Stream < 3.9.2 - Subscriber+ Alert Creation

The plugin does not prevent users with little privileges on the site like subscribers from using its alert creation functionality, which may enable them to leak sensitive information. Step 1: Log in as a subscriber Step 2: Get a nonce from...

6.5CVSS6.3AI score0.0091EPSS
Exploits2
Hacker One
Hacker One
added 2022/11/02 2:19 a.m.20 views

Slack: Unauthorized access to GovSlack

An unauthorized user could create a workspace on GovSlack by copying and sending a fetch request payload from slack.com to slack-gov.com, which would bypass the disabled option to create a workspace for new users. This could result in unauthorized access to GovSlack...

6.9AI score
Exploits0
OSV
OSV
added 2022/06/09 2:15 p.m.4 views

CVE-2022-31827

MonstaFTP v2.10.3 was discovered to contain a Server-Side Request Forgery SSRF via the function performFetchRequest at HTTPFetcher.php...

9.1CVSS5.8AI score0.19551EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/06/09 2:15 p.m.4 views

CVE-2022-31827

MonstaFTP v2.10.3 was discovered to contain a Server-Side Request Forgery SSRF via the function performFetchRequest at HTTPFetcher.php...

9.1CVSS5.3AI score0.19551EPSS
Exploits1References2
wpexploit
wpexploit
added 2022/06/02 12:0 a.m.107 views

HTML2WP <= 1.0.0 - Subscriber+ Arbitrary File Deletion

The plugin does not have authorisation and CSRF checks in an AJAX action, available to any authenticated users such as subscriber, which could allow them to delete arbitrary file To delete the license.txt at the root of the blog: await...

8.1CVSS0.4AI score0.00532EPSS
Exploits2
wpexploit
wpexploit
added 2022/01/18 12:0 a.m.143 views

Five Star Business Profile and Schema < 2.1.7 - Subscriber+ Page Creation & Settings Update to Stored XSS

The plugin does not have any authorisation and CSRF in its bpfwpwelcomeaddcontactpage and bpfwpwelcomesetcontactinformation AJAX action, allowing any authenticated users, such as subscribers, to call them. Furthermore, due to the lack of sanitisation, it also lead to Stored Cross-Site Scripting...

5.4CVSS0.4AI score0.006EPSS
Exploits2
Rows per page
Query Builder