CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2026/04/15 8:29 p.m.•4 views

JLSEC-2026-120

url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent...

9.1CVSS6.7AI score0.00197EPSS

Exploits0References6

F5 Networks•added 2024/10/16 4:9 p.m.•17 views

K000141479: Wget vulnerability CVE-2024-38428

Security Advisory Description url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent...

9.1CVSS7.1AI score0.00197EPSS

Exploits0

Tenable Nessus•added 2024/07/22 12:0 a.m.•21 views

Amazon Linux 2023 : wget (ALAS2023-2024-657)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-657 advisory. url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent i...

9.1CVSS7AI score0.00197EPSS

Exploits0References4

Tenable Nessus•added 2024/07/03 12:0 a.m.•22 views

CBL Mariner 2.0 Security Update: wget (CVE-2024-38428)

The version of wget installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38428 advisory. - url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there M...

9.1CVSS7AI score0.00197EPSS

Exploits0References2