CVE-2026-27808 Mailpit is Vulnerable to Server-Side Request Forgery (SSRF) via Link Check API

Mailpit is an email testing tool and API for developers. Prior to version 1.29.2, the Link Check API /api/v1/message/ID/link-check is vulnerable to Server-Side Request Forgery SSRF. The server performs HTTP HEAD requests to every URL found in an email without validating target hosts or filtering...

CVE-2004-2534

Fastream NETFile Server 7.1.2 does not properly handle keep-alive connection timeouts and does not close the connection after a HEAD request, which allows remote attackers to perform a denial of service connection consumption by sending a large number HTTP HEAD requests...

[SA13268] Fastream NETFile FTP/Web Server Multiple HEAD Requests Denial of Service

TITLE: Fastream NETFile FTP/Web Server Multiple HEAD Requests Denial of Service SECUNIA ADVISORY ID: SA13268 VERIFY ADVISORY: http://secunia.com/advisories/13268/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: Fastream NETFile FTP/Web Server 6.x http://secunia.com/product/2455/...