CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacker can modify the request header 'HOST' value to cause the server to send the request...

7.5CVSS6.8AI score0.00278EPSS

Exploits1

Tenable Nessus•added 2025/01/29 12:0 a.m.•12 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : Bind vulnerabilities (USN-7241-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7241-1 advisory. Toshifumi Sakaguchi discovered that Bind incorrectly handled many records in the additional section. A remote attacker...

7.5CVSS7AI score0.05622EPSS

Exploits0References3

Hacker One•added 2018/06/30 11:1 p.m.•21 views

Casper: Mixed content issues on the site https://casper.com

Hello. While browsing the site https://casper.com found a mixed content error on the site with HTTPS. This error is located at https://casper.com/faqs/resources/the-best-positions-for-sleeping/. 8 images are uploaded to the site via HTTP. What warns the browser Google Chrome. F314123 Impact If th...

1.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by