Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Github Security Blog
Github Security Blogadded 2026/03/09 7:54 p.m.4 views

OpenClaw: fetch-guard forwards custom authorization headers across cross-origin redirects

OpenClaw's fetchWithSsrFGuard... followed cross-origin redirects while preserving arbitrary caller-supplied headers except for a narrow denylist Authorization, Proxy-Authorization, Cookie, Cookie2. This allowed custom authorization headers such as X-Api-Key, Private-Token, and similar sensitive...

9.3CVSS5.9AI score0.00045EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologiesadded 2024/03/26 12:0 a.m.2 views

PT-2024-3307 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 20.4R3-S10 Junos OS versions 21.2 through 21.2R3-S7 Junos OS versions 21.3 through 21.3R2 Junos OS versions 21.4 through 21.4R2 Junos OS versions 22.1 through 22.1R1 Junos OS Evolved versions prior to 21.2R3-S8-EVO...

8.7CVSS6.8AI score0.00645EPSS
Exploits0References7
CNNVD
CNNVDadded 2022/09/28 12:0 a.m.2 views

Matrix 授权问题漏洞

Matrix is an ambitious new ecosystem for open federated instant messaging and VoIP. A security vulnerability exists in the Matrix iOS SDK prior to version 0.23.19, which stems from matrix-ios-sdk implementing an overly lax key forwarding policy...

7.5CVSS7.2AI score0.00249EPSS
Exploits0References5
CNNVD
CNNVDadded 2022/09/28 12:0 a.m.1 views

Matrix 授权问题漏洞

Matrix is an ambitious new ecosystem for open federated instant messaging and VoIP. A security vulnerability exists in the Matrix Javascript SDK prior to version 19.7.0, which stems from matrix-js-sdk implementing an overly lax key forwarding policy on the receiving end...

7.5CVSS7.9AI score0.00477EPSS
Exploits0References12
CNNVD
CNNVDadded 2022/09/28 12:0 a.m.4 views

Matrix 安全漏洞

Matrix is an ambitious new ecosystem for open federated instant messaging and VoIP. A security vulnerability exists in versions of Matrix matrix-android-sdk2 prior to 1.5.1, which stems from the fact that its matrix-android-sdk2 implements an overly lax key-forwarding policy on the receiving end...

7.5CVSS6.5AI score0.00321EPSS
Exploits0References5
Microsoft KB
Microsoft KBadded 2020/10/13 7:0 a.m.88 views

Description of the security update for Outlook 2016: October 13, 2020

Description of the security update for Outlook 2016: October 13, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Outlook if the software does not correctly handle objects in memory. It also resolves a denial of service vulnerability that...

9.3CVSS7.3AI score0.45393EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2011/03/10 8:44 p.m.2 views

openldap: forwarded bind failure messages cause success

chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicyforwardupdates aka authentication-failure forwarding is used, allows remote authenticated users to bypass external-program authentication by sending an invalid password to a sla...

4.6CVSS5.8AI score0.00247EPSS
Exploits0References4
Rows per page
Query Builder