CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2026/03/10 6:31 p.m.•4 views

EUVD-2026-10745

An improper neutralization of special elements vulnerability was identified in GitHub Enterprise Server that allowed an attacker with push access to a repository to achieve remote code execution on the instance. During a git push operation, user-supplied push option values were not properly...

8.7CVSS6.3AI score0.09884EPSS

Exploits5References7

CVE•added 2026/03/10 5:37 p.m.•77 views

CVE-2026-3854

CVE-2026-3854 describes an RCE vulnerability in GitHub Enterprise Server arising during git push option handling. An attacker with push access could abuse unsanitized user-supplied push option values that are incorporated into internal service headers; because the header format uses a delimiter t...

8.8CVSS6.4AI score0.09884EPSS

Exploits5References7Affected Software1

EUVD•added 2026/02/27 9:30 a.m.•3 views

EUVD-2025-208133

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Streams. This vulnerability allows an authenticated user to gain access to sensitive internal infrastructure headers such as X-Trusted-Proxy and X-Envoy- and event stream URLs via crafted requests and job...

6.7CVSS5.8AI score0.00195EPSS

Exploits0References7

EUVD•added 2026/02/27 9:30 a.m.•6 views

EUVD-2025-208132

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the testheaders field when an event stream is in test mode. The possible outcome...

6.7CVSS5.8AI score0.00167EPSS

Exploits0References7

NVD•added 2026/02/27 8:17 a.m.•6 views

CVE-2025-9908

6.7CVSS0.00195EPSS

Exploits0References6

NVD•added 2026/02/27 8:17 a.m.•7 views

CVE-2025-9907

6.7CVSS0.00167EPSS

Exploits0References6

CVE•added 2026/02/27 7:29 a.m.•13 views

CVE-2025-9908

The CVE-2025-9908 entry concerns Red Hat Ansible Automation Platform (AAP) Event-Driven Ansible (EDA) Event Streams. A authenticated user can exfiltrate sensitive internal headers (e.g., X-Trusted-Proxy, X-Envoy-*) and event stream URLs through crafted requests and job templates, enabling header ...

6.7CVSS5.8AI score0.00195EPSS

Exploits0References6Affected Software3

ATTACKERKB•added 2026/02/27 7:29 a.m.•5 views

CVE-2025-9908

6.7CVSS5.8AI score0.00195EPSS

Exploits0References7

Vulnrichment•added 2026/02/27 7:29 a.m.•5 views

CVE-2025-9908 Event-driven-ansible: sensitive internal headers disclosure in aap eda event streams

6.7CVSS5.8AI score0.00195EPSS

Exploits0References6

Positive Technologies•added 2026/02/27 12:0 a.m.•5 views

PT-2025-54837

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the test headers field when an event stream is in test mode. The possible outcome...

6.7CVSS5.8AI score0.00167EPSS

Exploits0References6

Vulnrichment•added 2026/02/21 4:9 a.m.•2 views

CVE-2026-27193 Feathers exposes internal headers via unencrypted session cookie

Feathersjs is a framework for creating web APIs and real-time applications with TypeScript or JavaScript. In versions 5.0.39 and below, all HTTP request headers are stored in the session cookie, which is signed but not encrypted, exposing internal proxy/gateway headers to clients. The OAuth servi...

8.2CVSS5.4AI score0.00354EPSS

Exploits0References3

Cvelist•added 2026/02/21 4:9 a.m.•21 views

CVE-2026-27193 Feathers exposes internal headers via unencrypted session cookie

8.2CVSS0.00354EPSS

Exploits0References3

OSV•added 2026/02/21 4:9 a.m.•3 views

CVE-2026-27193 Feathers exposes internal headers via unencrypted session cookie

8.2CVSS5.5AI score0.00354EPSS

Exploits0References5

CVE•added 2026/02/21 4:9 a.m.•12 views

CVE-2026-27193

Feathersjs versions ≤ 5.0.39 store all HTTP request headers in the signed but unencrypted session cookie. The complete headers object (including internal proxy/gateway headers, API keys, tokens, and internal IPs) is base64-encoded in the cookie and readable by clients, exposing sensitive infrastr...

8.2CVSS5.5AI score0.00354EPSS

Exploits0References3Affected Software1

OSV•added 2026/02/19 8:32 p.m.•3 views

GHSA-9M9C-VPV5-9G85 Feathers exposes internal headers via unencrypted session cookie

All HTTP request headers are stored in the session cookie, which is signed but not encrypted, exposing internal proxy/gateway headers to clients. The OAuth service stores the complete headers object in the session: javascript //...

8.2CVSS5.5AI score0.00354EPSS

Exploits0References5

Github Security Blog•added 2026/02/19 8:32 p.m.•7 views

Feathers exposes internal headers via unencrypted session cookie

8.2CVSS5.6AI score0.00354EPSS

Exploits0References5Affected Software1

GithubExploit•added 2026/01/26 6:53 p.m.•304 views

Exploit for Improper Authorization in Vercel Next.Js

PoC: CVE-2025-29927 - Next.js Middleware Bypass This reposito...

9.1CVSS6AI score0.98378EPSS

Exploits57

RedHat Linux•added 2025/12/10 6:0 p.m.•12 views

Important: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.5 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.1CVSS7AI score0.18752EPSS

Exploits11References7

RedHat Linux•added 2025/12/10 6:0 p.m.•5 views

event-driven-ansible: Sensitive Internal Headers Disclosure in AAP EDA Event Streams

6.7CVSS5.8AI score0.00195EPSS

Exploits0References4

RedHat Linux•added 2025/10/28 7:18 p.m.•2 views

event-driven-ansible: Sensitive Internal Headers Disclosure in AAP EDA Event Streams

6.7CVSS5.8AI score0.00195EPSS

Exploits0References4

Rows per page