CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3708 matches found

Cvelist•added 2025/10/08 7:2 a.m.•9 views

CVE-2025-11441 JhumanJ OpnForm HTTP Header excessive authentication

A vulnerability was identified in JhumanJ OpnForm up to 1.9.3. The affected element is an unknown function of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of excessive authentication attempts. The attack is possible to be carrie...

6.3CVSS0.00626EPSS

Exploits1References5

CVE•added 2025/10/08 7:2 a.m.•12 views

CVE-2025-11441

The CVE-2025-11441 entry affects JhumanJ OpnForm (up to v1.9.3). The vulnerability lies in the HTTP Header Handler component, where manipulating the X-Forwarded-For parameter can lead to improper restriction of excessive authentication attempts. Impact is remote, with network attack vector, high ...

6.3CVSS6.5AI score0.00626EPSS

Exploits1References5Affected Software1

CNNVD•added 2025/10/08 12:0 a.m.•2 views

OpnForm 安全漏洞

OpnForm is a form builder by Julien Nahum Personal Developer. A security vulnerability exists in OpnForm 1.9.3 and earlier versions, which stems from improper manipulation of the parameter X-Forwarded-For in the HTTP Header Handler component, which may result in improperly limiting excessive...

6.3CVSS4.8AI score0.00626EPSS

Exploits1References5

Positive Technologies•added 2025/10/08 12:0 a.m.•4 views

PT-2025-41236

Name of the Vulnerable Software and Affected Versions JhumanJ OpnForm versions up to 1.9.3 Description A security issue exists in JhumanJ OpnForm related to improper restriction of excessive authentication attempts. The issue is located within the HTTP Header Handler component and involves...

6.3CVSS4.3AI score0.00626EPSS

Exploits1References10

RedhatCVE•added 2025/10/07 6:9 a.m.•18 views

CVE-2025-11284

A vulnerability has been found in Zytec Dalian Zhuoyun Technology Central Authentication Service 3. Affected by this vulnerability is an unknown functionality of the file /index.php/auth/Ops/git of the component HTTP Header Handler. The manipulation of the argument Authorization leads to use of...

7.5CVSS6.6AI score0.00446EPSS

Exploits0References1