Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Cvelist
Cvelistadded 2026/05/28 7:10 p.m.23 views

CVE-2026-49129 Music Player Daemon < 0.24.11 SSRF via CurlInputPlugin

Music Player Daemon MPD before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPTFOLLOWLOCATION is set without CURLOPTREDIRPROTOCOLSSTR, allowing unauthenticated attackers to bypass the http/https scheme restriction by causing a malicious HTTP...

6.9CVSS0.00059EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2026/05/01 12:0 a.m.5 views

libcurl 7.12.0 < 8.20.0 Cross-Proxy Digest Auth State Leak

The version of libcurl installed on the remote host is 7.12.0 prior to 8.20.0. It is, therefore, affected by a cross-proxy digest auth state leak vulnerability: - libcurl improperly handles Digest authentication headers when reusing handles across different HTTP proxies. When a client switches fr...

5.3CVSS5.8AI score0.00079EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2016-8013

Malware in sbrugna...

7.5CVSS7.6AI score0.00524EPSS
Exploits0References19
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2012-0076

Malware in sbrugna...

7.5CVSS6.9AI score0.10342EPSS
Exploits0References18
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2014-0197

Malware in sbrugna...

6.4CVSS7.2AI score0.00903EPSS
Exploits1References26
OpenVAS
OpenVASadded 2025/07/11 12:0 a.m.2 views

libcurl Detection (Linux/Unix SSH Login)

SSH login-based detection of libcurl. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.119058";...

7.3AI score
Exploits0References1
Snyk
Snykadded 2025/05/28 7:41 a.m.1 views

Improper Certificate Validation

Overview Affected versions of this package are vulnerable to Improper Certificate Validation through pinning of the server certificate public key for HTTPS transfers. An attacker can impersonate a legitimate server and intercept or manipulate communications by presenting a fraudulent certificate...

6.5CVSS6.6AI score0.0006EPSS
Exploits2References2
OSV
OSVadded 2023/03/30 8:15 p.m.1 views

AZL-38512 CVE-2023-27535 affecting package tensorflow for versions less than 2.16.1-1

An authentication bypass vulnerability exists in libcurl 8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. Previously created connections are kept in a connection pool for reuse if they match the current setup. However, certain...

5.9CVSS6.7AI score0.00036EPSS
Exploits1References1
OSV
OSVadded 2023/03/20 12:0 a.m.0 views

UBUNTU-CVE-2023-27538

An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have prevented reuse. libcurl maintains a pool of previously used connections to reuse them for subsequen...

7.7CVSS6.8AI score0.00012EPSS
Exploits1References4
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.44 views

cURL Buffer Overflow Vulnerability

No description provided by source. cURL buffer overflow Wed 06 February 2013 Volema found remotely exploitable buffer overflow vulnerability in libcurl POP3, SMTP protocol handlers which lead to code execution RCE. When negotiating SASL DIGEST-MD5 authentication, the function...

7.5CVSS0.1AI score0.44202EPSS
Exploits6
Rows per page
Query Builder