EUVD-2022-29288

Malicious code in bioql PyPI...

EUVD-2023-1316

Malicious code in bioql PyPI...

EUVD-2024-17259

Malicious code in bioql PyPI...

Server-Side Request Forgery (SSRF) in activitypub_federation

Summary This vulnerability allows a user to bypass any predefined hardcoded URL path or security anti-Localhost mechanism and perform an arbitrary GET request to any Host, Port and URL using a Webfinger Request. Details The Webfinger endpoint takes a remote domain for checking accounts as a...

PT-2023-29440 · Unknown · Engelsystem

Name of the Vulnerable Software and Affected Versions: Engelsystem versions prior to the version containing commit ee7d30b33 Description: Engelsystem is a shift planning system for chaos events. A Blind SSRF in the "Import schedule" functionality makes it possible to perform a port scan against t...

Information Disclosure

puppet is vulnerable to information disclosure. The vulnerability exists due to leak sensitive information via metrics API which allows an attacker to access on localhost by default...

Debian Security Advisory DSA 2452-1 (apache2)

The remote host is missing an update to apache2 announced via advisory DSA 2452-1. OpenVAS Vulnerability Test $Id: deb24521.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2452-1 apache2 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

gnut gnutella client html injection

Hello I recently discovered a bug in gnut, a console/www Gnutella client for Linux and Windows, that allows the injection of html code in the Search Result Page of the Webfrontend. This is done by sharing a file with html tags embedded. testHR.mp3 for example More complex things are possible with...

Andrew Lewis

The Problem: ------------ Many admins who use Proxy+ configure the remote administration port which works over HTTP to only accept connections from the localhost. Fortunately enough, the admin port doesn't allow connections which have been bounced through the HTTP proxy. The telnet proxy, on the...