Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:48 p.m.10 views

CVE-2026-36604

Mercusys AC12G EU V1 router with firmware AC12GEUV1200909 does not validate the HTTP Host header, enabling DNS rebinding attacks. An external attacker can rebind a domain to the router's internal IP address, extending the CORS wildcard vulnerability Access-Control-Allow-Origin: to...

6.5CVSS5.5AI score0.00254EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/20 8:47 p.m.11 views

Apache Neethi: Apache Neethi: Information disclosure and network access bypass via PolicyReference API

A flaw was found in Apache Neethi. When an application explicitly calls the PolicyReference API to retrieve a policy from a remote Uniform Resource Identifier URI, Apache Neethi does not impose restrictions on the URI. This allows a remote attacker to cause the application to make outbound reques...

7.2CVSS5.9AI score0.00497EPSS
Exploits0References5
CVE
CVE
added 2026/05/07 3:1 a.m.31 views

CVE-2026-42194

CVE-2026-32812 affects Admidio’s SSO Metadata endpoint (modules/sso/fetch_metadata.php). Versions 5.0.0–5.0.6 allow SSRF and local file reads because the code passes an arbitrary URL directly to file_get_contents() after validating the URL with FILTER_VALIDATE_URL, enabling abuse via various sche...

6.8CVSS5.7AI score0.00428EPSS
Exploits1References2
OSV
OSV
added 2026/05/05 8:3 p.m.5 views

GHSA-HCJJ-CHVW-FMW9 Admidio has an incomplete fix for CVE-2026-32812 (SSRF)

Summary The incomplete SSRF fix in Admidio's fetchmetadata.php validates the resolved IP address but passes the original hostname-based URL to curlinit, leaving a DNS rebinding TOCTOU window that allows redirecting requests to internal IPs. Affected Package - Ecosystem: Other - Package: admidio -...

6.8CVSS5.8AI score0.00236EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/05/05 8:3 p.m.14 views

Admidio has an incomplete fix for CVE-2026-32812 (SSRF)

Summary The incomplete SSRF fix in Admidio's fetchmetadata.php validates the resolved IP address but passes the original hostname-based URL to curlinit, leaving a DNS rebinding TOCTOU window that allows redirecting requests to internal IPs. Affected Package - Ecosystem: Other - Package: admidio -...

6.8CVSS5.9AI score0.00428EPSS
Exploits1References6Affected Software1
GithubExploit
GithubExploit
added 2026/01/09 1:14 a.m.261 views

Exploit for CVE-2025-45955

CVE-2025-45955 🕳️ Server-Side Request Forgery in DonWeb Ferozo...

6.8AI score
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-2342

Malware in sbrugna...

5CVSS6.4AI score0.03787EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-4180

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this...

4.3CVSS5.1AI score0.00754EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2025/08/07 8:47 p.m.139 views

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

CVE-2025-5777 Exploit Tool 🔥 A powerful educational tool...

9.3CVSS8.3AI score0.99897EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2003/03/15 12:0 a.m.64 views

Thunderstone Software Texis Crafted Request Information Disclosure

The remote installation of Texis can be abused to disclose potentially sensitive information about the remote host, such as its internal IP address and the path to various components eg, cmd.exe. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

5CVSS5.4AI score0.08451EPSS
Exploits0References2
Cvelist
Cvelist
added 2002/02/02 5:0 a.m.22 views

CVE-2001-1018

Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the server when NAT is enabled via a GET request that contains a long sequence of / slash characters...

6.6AI score0.02302EPSS
Exploits0References3
NVD
NVD
added 2001/09/20 4:0 a.m.15 views

CVE-2001-1018

Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the server when NAT is enabled via a GET request that contains a long sequence of / slash characters...

5CVSS6.6AI score0.02302EPSS
Exploits0References3
Cvelist
Cvelist
added 2000/08/03 4:0 a.m.32 views

CVE-2000-0649

IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined...

6.8AI score0.76558EPSS
Exploits3References2
NVD
NVD
added 2000/07/13 4:0 a.m.28 views

CVE-2000-0649

IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined...

2.6CVSS6.8AI score0.76558EPSS
Exploits3References2
Rows per page
Query Builder