Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.11 views

CVE-2026-45179

Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' IP addresses may be leaked. Since version 0.9.0, the IP address is no...

5.3CVSS5.4AI score0.00219EPSS
Exploits0References1
NVD
NVD
added 2026/05/10 8:16 p.m.17 views

CVE-2026-45179

Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' IP addresses may be leaked. Since version 0.9.0, the IP address is no...

5.3CVSS0.00219EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-7289

Malware in sbrugna...

4.3CVSS4.9AI score0.00407EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-6697

Malware in sbrugna...

7.8CVSS6.4AI score0.02665EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-19522

Malware in sbrugna...

6.8CVSS6.1AI score0.00842EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/08/31 12:0 a.m.5 views

PT-2022-23141 · Unknown · Zulip Server

Name of the Vulnerable Software and Affected Versions: Zulip Server versions prior to 5.6 Description: The issue arises when displaying messages with embedded remote images. Normally, Zulip loads the image preview via a go-camo proxy server. However, an attacker who can send messages could includ...

4.3CVSS4.4AI score0.00507EPSS
Exploits0References4
CVE
CVE
added 2021/03/24 5:3 p.m.64 views

CVE-2021-22169

GitLab EE 13.4+ is identified as leaking internal IP addresses via error messages (CVE-2021-22169). Available sources consistently describe an information-disclosure issue in GitLab Enterprise Edition that reveals internal IPs through error handling. The concrete details beyond the high-level des...

4.3CVSS4.2AI score0.00831EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2021/01/07 2:15 p.m.21 views

CVE-2020-35111

When an extension with the proxy permission registered to receive , the proxy.onRequest callback was not triggered for view-source URLs. While web content cannot navigate to such URLs, a user opening View Source could have inadvertently leaked their IP address. This vulnerability affects Firefox...

4.3CVSS5.4AI score0.01172EPSS
Exploits0References4
Prion
Prion
added 2021/01/07 2:15 p.m.28 views

Design/Logic Flaw

When an extension with the proxy permission registered to receive , the proxy.onRequest callback was not triggered for view-source URLs. While web content cannot navigate to such URLs, a user opening View Source could have inadvertently leaked their IP address. This vulnerability affects Firefox...

4.3CVSS5AI score0.01172EPSS
Exploits0References4Affected Software3
RedHat Linux
RedHat Linux
added 2020/12/17 3:12 p.m.4 views

Mozilla: The proxy.onRequest API did not catch view-source URLs

The Mozilla Foundation Security Advisory describes this flaw as: When an extension with the proxy permission registered to receive , the proxy.onRequest callback was not triggered for view-source URLs. While web content cannot navigate to such URLs, a user opening View Source could have...

4.3CVSS7.3AI score0.01172EPSS
Exploits0References5
Mageia
Mageia
added 2020/12/17 1:10 p.m.60 views

Updated firefox packages fix security vulnerabilities

When a BigInt was right-shifted the backing store was not properly cleared, allowing uninitialized memory to be read CVE-2020-16042. Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow in WebGL on some video drivers CVE-2020-26971. Certain inpu...

8.8CVSS1.1AI score0.01876EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2020/10/26 12:31 p.m.49 views

Experts Warn of Privacy Risks Caused by Link Previews in Messaging Apps

Cybersecurity researchers over the weekend disclosed new security risks associated with link previews in popular messaging apps that cause the services to leak IP addresses, expose links sent via end-to-end encrypted chats, and even unnecessarily download gigabytes of data stealthily in the...

6.8AI score
Exploits0
CVE
CVE
added 2020/03/13 4:34 p.m.114 views

CVE-2020-10087

GitLab before 12.8.2 has a CVE-2020-10087 information-disclosure vulnerability: badge images were not proxied, causing mixed-content warnings and leaking the user IP address. The issue affects GitLab’s self-hosted Git repository platform prior to the 12.8.2 release. Remediation is to upgrade to G...

7.5CVSS7.4AI score0.01174EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/09/29 7:0 p.m.78 views

CVE-2018-17780

CVE-2018-17780 affects Telegram Desktop (tdesktop) 1.3.14 and Telegram 3.3.0.0 WP8.1 on Windows. The root cause is an unsafe default that accepts P2P connections from outside the user’s My Contacts list, enabling leakage of both public and private IP addresses during calls. The vulnerability is d...

6.5CVSS6.7AI score0.01779EPSS
Exploits1References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.26 views

Fedora 22 : mediawiki (2015-122a831a05)

T94116 SECURITY: Compare API watchlist token in constant time - T97391 SECURITY: Escape error message strings in thumb.php - T106893 SECURITY: Don't leak autoblocked IP addresses on Special:DeletedContributions - T102562 Fix InstantCommons parameters to handle the new HTTPS-only policy of...

5CVSS5.3AI score0.02322EPSS
Exploits0References2
OSV
OSV
added 2006/12/31 5:0 a.m.7 views

CVE-2006-6893

Tor allows remote attackers to discover the IP address of a hidden service by accessing this service at a high rate, thereby changing the server's CPU temperature and consequently changing the pattern of time values visible through 1 ICMP timestamps, 2 TCP sequence numbers, and 3 TCP timestamps, ...

6.3AI score
Exploits0References3
CVE
CVE
added 2006/08/25 10:0 a.m.42 views

CVE-2006-4352

CVE-2006-4352 affects Cisco 11000 series Content Service Switches where the ArrowPoint cookie functionality can reveal an internal IP address if a string option is not specified. The underlying issue is exposure of internal networking information, enabling remote attackers to obtain sensitive inf...

5CVSS6.8AI score0.01252EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.871 views

Private IP address leaked in HTTP headers

This web server leaks a private IP address through its HTTP headers. SPDX-FileCopyrightText: 2001 Alert4Web.com, 2003 Westpoint Ltd Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

2.6CVSS6.7AI score0.76558EPSS
Exploits3References3
exploitpack
exploitpack
added 2002/09/28 12:0 a.m.15 views

SafeTP 1.46 - Passive Mode Internal IP Address Revealing

SafeTP 1.46 - Passive Mode Internal IP Address Revealing source: https://www.securityfocus.com/bid/5822/info SafeTP is a freely available, open source secure ftp client-server software package. It is available for Unix, Linux, and Microsoft Operating Systems. It has been reported that under some...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2000/09/28 12:0 a.m.41 views

DST2K0032: Multiple Issues with Talentsoft WebPlus Application Server

============================================================================ Delphis Consulting Plc ============================================================================ Security Team Advisories 19/09/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...

6.8AI score
Exploits0
Rows per page
Query Builder