CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

58 matches found

Fedora•added 2026/01/06 1:13 a.m.•6 views

[SECURITY] Fedora 43 Update: proxychains-ng-4.17-8.fc43

ProxyChains NG is based on ProxyChains. ProxyChains NG hooks network-related TCP only libc functions in dynamically linked programs via a preloaded DSO dynamic shared object and redirects the connections through one or more SOCKS4a/5 or HTTP proxies. Since Proxy Chains NG relies on the dynamic...

7.8CVSS7AI score0.0003EPSS

Exploits1

Fedora•added 2026/01/06 12:54 a.m.•5 views

[SECURITY] Fedora 42 Update: proxychains-ng-4.17-8.fc42

7.8CVSS7AI score0.0003EPSS

Exploits1

Packet Storm News•added 2025/12/11 12:0 a.m.•7 views

SOAPwn: Pwning .NET Framework Applications through HTTP Client Proxies and WSDL

This is a whitepaper which supplements the BlackHat Europe 2025 presentation called "SOAPwn: Pwning .NET Framework Applications Through HTTP Client Proxies and WSDL". In this whitepaper, the author presents new exploitation sinks in .NET Framework, which may allow an attacker to achieve either...

8.1AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-5628

Malware in sbrugna...

5.9CVSS7.5AI score0.00341EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-1859

Malware in sbrugna...

7.5CVSS6.1AI score0.01552EPSS

Exploits0References8

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-41319

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00184EPSS

Exploits2References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-51141

Malicious code in bioql PyPI...

5CVSS5.5AI score

Exploits0References2

GithubExploit•added 2025/09/04 12:47 p.m.•124 views

RCE-Foryou

RCE-Foryou Python tool for safely testing and exploiting RCE v...

8.1AI score

Exploits0

Veracode•added 2025/06/30 7:9 a.m.•3 views

HTTP Request Smuggling (HRS)

webrick is vulnerable to HTTP Request Smuggling. The vulnerability is due to inconsistent parsing of HTTP header terminators in the readheaders method, which allows attackers to smuggle arbitrary HTTP requests when deployed behind certain HTTP proxies...

6.5CVSS6.3AI score0.00257EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2025/05/22 9:49 p.m.•5 views

CVE-2022-38756

A vulnerability has been identified in Micro Focus GroupWise Web in versions prior to 18.4.2. The GW Web component makes a request to the Post Office Agent that contains sensitive information in the query parameters that could be logged by any intervening HTTP proxies...

4.3CVSS6.3AI score0.00184EPSS

Exploits2References1

RedhatCVE•added 2025/05/19 6:44 a.m.•8 views

CVE-2025-4948

A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper validation, an internal...

7.5CVSS7.5AI score0.00986EPSS

Exploits0References3

CVE•added 2024/12/20 3:47 p.m.•42 views

CVE-2024-12840

This CVE entry is rejected/not used and does not represent an active vulnerability.

5.1AI score

Exploits0

Vulnrichment•added 2024/12/20 3:47 p.m.•8 views

CVE-2024-12840

...

5.2AI score

Exploits0

Cvelist•added 2024/12/20 3:47 p.m.•12 views

CVE-2024-12840

...

Exploits0

Cvelist•added 2023/08/16 9:0 p.m.•13 views

CVE-2023-20237

A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise inaccessible. This vulnerability is due to insufficient restrictions on internally accessible http proxies. An attacker could exploit this...

4.3CVSS4.9AI score0.00056EPSS

Exploits0References1

OSV•added 2023/02/09 8:15 p.m.•0 views

AZL-13287 CVE-2022-43552 affecting package mysql for versions less than 8.0.33-1

A use after free vulnerability exists in curl 7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP proxies can and often do deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocat...

5.9CVSS6.7AI score0.00104EPSS

Exploits1References1

Cloud Foundry•added 2023/01/26 12:0 a.m.•162 views

USN-5788-1: curl vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description Hiroki Kurosawa discovered that curl incorrectly handled HSTS support when certain hostnames included IDN characters. A remote attacker could possibly use this issue to cause curl t...

7.5CVSS8AI score0.00104EPSS

Exploits2Affected Software4

Ubuntu•added 2023/01/05 5:15 p.m.•86 views

USN-5788-1: curl vulnerabilities

Hiroki Kurosawa discovered that curl incorrectly handled HSTS support when certain hostnames included IDN characters. A remote attacker could possibly use this issue to cause curl to use unencrypted connections. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 22.10. CVE-2022-43551 It was...

7.5CVSS7.8AI score0.00104EPSS

Exploits2