Lucene search
K

18 matches found

NVD
NVD
added 3 days ago11 views

CVE-2026-58169

Vibe-Trading before 0.1.10 contains a DNS rebinding authentication bypass vulnerability that allows remote attackers to bypass bearer-token authentication by exploiting the server's trust of TCP peer addresses for loopback clients combined with missing Host header validation while binding to...

7.7CVSS0.00286EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.6 views

SUSE SLES16 Security Update : python-aiohttp (SUSE-SU-2026:22173-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:22173-1 advisory. This update for python-aiohttp fixes the following issues - CVE-2026-22815: insufficient header/trailer handling can cause a denia...

9.1CVSS6.7AI score0.00461EPSS
Exploits0References34
Patchstack
Patchstack
added 2026/06/18 1:6 p.m.4 views

NPM: http-proxy-middleware `router` host+path substring matching allows Host-header-driven backend routing bypass

NPM: http-proxy-middleware router host+path substring matching allows Host-header-driven backend routing bypass vulnerability discovered by ? in WordPress Npm http-proxy-middleware versions = 0.16.0, 2.0.10...

8.6CVSS5.8AI score0.0034EPSS
Exploits1References2Affected Software1
Snyk
Snyk
added 2026/06/10 7:12 p.m.7 views

Reliance on Untrusted Inputs in a Security Decision

Overview litestar is a Litestar - A production-ready, highly performant, extensible ASGI API Framework Affected versions of this package are vulnerable to Reliance on Untrusted Inputs in a Security Decision through the AllowedHostsMiddleware in the host validation middleware. An attacker can bypa...

6.3CVSS5.4AI score0.00024EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/01 10:3 p.m.12 views

CVE-2026-44450

Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code executi...

9.9CVSS6.3AI score0.00377EPSS
Exploits0References1
NVD
NVD
added 2026/05/26 9:16 p.m.20 views

CVE-2026-44450

Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code executi...

9.9CVSS0.00377EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/26 7:54 p.m.33 views

CVE-2026-44450 Lumiverse: RCE via MCP stdio argument injection

Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code executi...

9.9CVSS0.00377EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/26 7:54 p.m.10 views

CVE-2026-44450 Lumiverse: RCE via MCP stdio argument injection

Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code executi...

9.9CVSS6.3AI score0.00377EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/26 7:54 p.m.11 views

CVE-2026-44450

Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code executi...

9.9CVSS6.3AI score0.00377EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/26 7:54 p.m.14 views

EUVD-2026-31978

Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code executi...

9.9CVSS6.3AI score0.00377EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.17 views

PT-2026-43402

Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code executi...

9.9CVSS6.3AI score0.00377EPSS
Exploits0References3
RubySec
RubySec
added 2026/04/02 12:0 a.m.9 views

Rack::Request accepts invalid Host characters, enabling host allowlist bypass

Summary Rack::Request parses the Host header using an AUTHORITY regular expression that accepts characters not permitted in RFC-compliant hostnames, including /, ?, , and @. Because req.host returns the full parsed value, applications that validate hosts using naive prefix or suffix checks can be...

6.5CVSS5.8AI score0.00192EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2026/03/24 6:56 p.m.15 views

CVE-2026-33511

CVE-2026-33511 affects pyLoad/pyload-ng: the local_check decorator in the ClickNLoad feature can be bypassed via HTTP Host header spoofing, allowing unauthenticated remote access to localhost-restricted endpoints and enabling injection of downloads, writing to storage, and JavaScript execution. A...

9.8CVSS6AI score0.00422EPSS
Exploits1References1Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/02/24 4:28 p.m.8 views

CVE-2026-27588

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, Caddy's HTTP host request matcher is documented as case-insensitive, but when configured with a large host list 100 entries it becomes case-sensitive due to an optimized matching path. An attacker can bypass...

8.7CVSS5.6AI score0.0037EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:46 a.m.9 views

CVE-2024-25170

An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header...

9.1CVSS6.8AI score0.00874EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/23 12:0 a.m.7 views

PT-2025-3153 · Xerox · Xerox Workplace Suite

Name of the Vulnerable Software and Affected Versions: Xerox Workplace Suite versions prior to 5.6.701.9 Description: The issue involves an API security bypass through header manipulation. In Xerox Workplace Suite, an API restricted to specific hosts can be bypassed by manipulating the "Host"...

7.5CVSS9.6AI score0.0035EPSS
Exploits0References11
OSV
OSV
added 2023/10/03 9:15 a.m.5 views

CVE-2023-3654

cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by a origin bypass via the host header in an HTTP request. This vulnerability can be triggered by an HTTP endpoint exposed to the network...

9.8CVSS5.8AI score0.00303EPSS
Exploits0References2
seebug.org
seebug.org
added 2008/08/16 12:0 a.m.17 views

8E6科技R3000 Internet过滤器Host头绕过检测漏洞

BUGTRAQ ID: 30541 8e6科技的R3000上网行为管理系统是软硬件集成的系统,允许管理者能有效控制与管理互联网用户的上网行为。 R3000 Internet过滤器所提供的HTTP URL过滤功能没有正确的验证Host头,用户可以访问设备设置了访问限制的网站。但用户无法利用这个漏洞绕过基于IP地址的过滤限制。 8E6 Technologies R3000 Internet Filter 2.0.12.10 8E6 Technologies ---------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...

6.9AI score
Exploits0
Rows per page
Query Builder