12 matches found
CVE-2026-43986
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...
CVE-2026-43986
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...
CVE-2026-43986
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...
EUVD-2026-34286
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...
Tautulli 安全漏洞
Tautulli is an open-source application developed by Tautulli for monitoring Plex Media Server. Versions of Tautulli prior to 2.17.1 contained security vulnerabilities. These vulnerabilities stemmed from the exposure of the /image/ route, allowing attackers to control the entries and trigger...
CVE-2025-9805
A vulnerability was found in SimStudioAI sim up to 51b1e97fa22c48d144aef75f8ca31a74ad2cfed2. This issue affects some unknown processing of the file apps/sim/app/api/proxy/image/route.ts. The manipulation results in server-side request forgery. The attack may be performed from remote. The exploit...
CVE-2025-9805
A vulnerability was found in SimStudioAI sim up to 51b1e97fa22c48d144aef75f8ca31a74ad2cfed2. This issue affects some unknown processing of the file apps/sim/app/api/proxy/image/route.ts. The manipulation results in server-side request forgery. The attack may be performed from remote. The exploit...
CVE-2025-9805
A vulnerability was found in SimStudioAI sim up to 51b1e97fa22c48d144aef75f8ca31a74ad2cfed2. This issue affects some unknown processing of the file apps/sim/app/api/proxy/image/route.ts. The manipulation results in server-side request forgery. The attack may be performed from remote. The exploit...
CVE-2025-9805 SimStudioAI sim route.ts server-side request forgery
A vulnerability was found in SimStudioAI sim up to 51b1e97fa22c48d144aef75f8ca31a74ad2cfed2. This issue affects some unknown processing of the file apps/sim/app/api/proxy/image/route.ts. The manipulation results in server-side request forgery. The attack may be performed from remote. The exploit...
CVE-2025-9805
CVE-2025-9805 affects SimStudioAI Sim up to commit 51b1e97fa22c48d144aef75f8ca31a74ad2cfed2, with a server-side request forgery flaw in apps/sim/app/api/proxy/image/route.ts. The vulnerability can be exploited remotely after processing by the vulnerable code path; exploitation is public. Patch 34...
Sim Studio 代码问题漏洞
Sim Studio is an AI proxy workflow builder for Sim Studio open source. A code issue vulnerability exists in Sim Studio that stems from a misbehavior in the file apps/sim/app/api/proxy/image/route.ts that results in server-side request forgery...
PT-2025-35519
Name of the Vulnerable Software and Affected Versions: SimStudioAI versions prior to 51b1e97fa22c48d144aef75f8ca31a74ad2cfed2 Description: A server-side request forgery issue exists due to unknown processing within the file apps/sim/app/api/proxy/image/route.ts. The attack can be performed...