Lucene search
K

8 matches found

Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.14 views

PT-2026-50480

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.6 Description An issue exists where the process picture url function in backend/open webui/utils/oauth.py performs URL validation only on the initial URL. Subsequently, it uses aiohttp.ClientSession.get without...

8.5CVSS5.8AI score0.00203EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.8 views

Twenty 代码问题漏洞

Twenty is an open-source CRM platform developed by Twenty. Versions of Twenty 1.18.0 and earlier have code vulnerabilities. These vulnerabilities stem from a flaw in the SSRF protection mechanism, which can be bypassed by IPv6 addresses mapped via IPv4. The Node.js URL parser standardizes IPv6...

8.3CVSS5.9AI score0.0024EPSS
Exploits0References2
NVD
NVD
added 2026/04/23 10:16 p.m.8 views

CVE-2026-41361

OpenClaw before 2026.3.28 contains an SSRF guard bypass vulnerability that fails to block four IPv6 special-use ranges. Attackers can exploit this by crafting URLs targeting internal or non-routable IPv6 addresses to bypass SSRF protections...

7.1CVSS0.00202EPSS
Exploits0References2
OSV
OSV
added 2026/04/16 9:23 p.m.6 views

GHSA-9HRV-GVRV-6GF2 Flowise Execute Flow function has an SSRF vulnerability

Summary The attacker provides an intranet address through the base url field configured in the Execute Flow node → Bypass checkDenyList / resolveAndValidate in httpSecurity.ts not called → Causes the server to initiate an HTTP request to any internal network address, read cloud metadata, or detec...

6CVSS5.8AI score
Exploits0References2
CVE
CVE
added 2026/03/02 4:28 p.m.19 views

CVE-2025-64427

ZimaOS (a CasaOS fork for Zima devices and x86-64 with UEFI) is vulnerable to Server-Side Request Forgery (SSRF) in version 1.5.0 and earlier. An authenticated local user can craft requests to internal targets (127.0.0.1, localhost, private ranges) due to insufficient URL validation/restriction, ...

7.1CVSS5.9AI score0.00238EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/02/25 3:19 p.m.4 views

GHSA-3C9R-837R-QQM4 esm.sh is vulnerable to full-response SSRF

Summary esh.sh is vulnerable to a full-response SSRF, allowing an attacker to retrieve information from internal websites through the vulnerability. Details Vulnerable code location: https://github.com/esm-dev/esm.sh/blob/f80ff8c8d58749e77fa964abde468fc61f8bd89e/server/router.goL511 If the intern...

8.7CVSS5.6AI score0.00381EPSS
Exploits1References8
OSV
OSV
added 2024/08/23 3:44 p.m.4 views

CVE-2024-42364 homepage DNS rebinding vulnerability (GHSL-2024-096)

Homepage is a highly customizable homepage with Docker and service API integrations. The default setup of homepage 0.9.1 is vulnerable to DNS rebinding. Homepage is setup without certificate and authentication by default, leaving it to vulnerable to DNS rebinding. In this attack, an attacker will...

6.5CVSS6.8AI score0.00245EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/07/07 12:0 a.m.5 views

NocoDB 代码问题漏洞

NocoDB is an open source Airtable replacement. Convert any MySql, PostgreSql, Sql Server, Sqlite and MariaDb into a smart spreadsheet. NocoDB is vulnerable to a code issue. An attacker could exploit the vulnerability to access an internal address in order to make a request as a server and read it...

9.1CVSS8.2AI score0.01482EPSS
Exploits1References4
Rows per page
Query Builder