CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2020/03/22 4:15 p.m.•9 views

CVE-2020-10807

authsvc in Caldera before 2.6.5 allows authentication bypass for REST API requests via a forged "localhost" string in the HTTP Host header...

5.3CVSS5.5AI score0.00297EPSS

Hacker One•added 2020/03/19 6:17 p.m.•104 views

Internet Bug Bounty: URN Request bypass ACL Checks

Summary: Attacker can bypass ACL checks gaining access to restricted HTTP servers such as those running on localhost. Attacker could also gain access to CacheManager if VIA header is turned off. Only lines with : will be readable though, and the response must be less than 4096 bytes or it'll...

6.4CVSS8.7AI score0.00618EPSS

OSV•added 2020/03/11 11:15 p.m.•21 views

CVE-2020-7943

Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types which may contain sensitive information as well as function names...

7.5CVSS6.2AI score0.65366EPSS

OSV•added 2020/03/11 11:15 p.m.•2 views

DEBIAN-CVE-2020-7943

7.5CVSS7.6AI score0.65366EPSS

OSV•added 2020/03/11 11:15 p.m.•0 views

UBUNTU-CVE-2020-7943

7.5CVSS5.8AI score0.65366EPSS

Exploits0References3

Debian CVE•added 2020/03/11 9:56 p.m.•16 views

CVE-2020-7943

7.5CVSS7.6AI score0.65366EPSS

FreeBSD•added 2020/03/10 12:0 a.m.•23 views

puppetserver and puppetdb -- Puppet Server and PuppetDB may leak sensitive information via metrics API

Puppetlabs reports: Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types which may contain sensitive information as we...

7.5CVSS7.2AI score0.65366EPSS

Kitploit•added 2020/02/18 8:16 p.m.•84 views

CVE Api - Parse & filter the latest CVEs from cve.mitre.org

Parse & filter the latest CVEs from https://cve.mitre.org. Docs Usage http://localhost:4000/cve?target=KEYWORD The year parameter is optional. http://localhost:4000/cve?target=KEYWORD&year=YEAR Examples http://localhost:4000/cve?target=ruby%20on%20rails...

7.3AI score

Exploits0References5

Packet Storm•added 2020/02/05 12:0 a.m.•100 views

AVideo Platform 8.1 Cross Site Request Forgery

Exploit Title: AVideo Platform 8.1 - Cross Site Request Forgery Password Reset Dork: N/A Date: 2020-02-05 Exploit Author: Ihsan Sencan Vendor Homepage: https://avideo.com Software Link: https://github.com/WWBN/AVideo Version: 8.1 Tested on: Linux CVE: N/A POC: 1...

0.4AI score

Hacker One•added 2020/01/26 12:6 a.m.•26 views

lemlist: SSRF in img.lemlist.com that leads to Localhost Port Scanning

Summary: A SSRF attack can be performed leading to localhost port scanning. Link : https://img.lemlist.com/api/image-templates/itpvBBNpQuMsy6FYLQAc/?preview=true&email=email@ Steps To Reproduce: To perform this port scan you'll need to setup a few files. First of all you need to change the url in...

7.1AI score

OSV•added 2020/01/18 12:15 a.m.•1 views

CVE-2019-19696

A RootCA vulnerability found in Trend Micro Password Manager for Windows and macOS exists where the localhost.key of RootCA.crt might be improperly accessed by an unauthorized party and could be used to create malicious self-signed SSL certificates, allowing an attacker to misdirect a user to...

5.5CVSS5.8AI score

Hacker One•added 2020/01/13 9:25 a.m.•280 views

curl: Port and service scanning on localhost due to improper URL validation.

Summary: Generally web masters and developers protect user-accessible CURL from requesting forbidden domains so that the attacker is not able to access internal resources. It is usually done using regular expressions. Mostly addresses like 127.x.x.x, 192.168.x.x and "integer" notation of IP...

6.9AI score

0day.today•added 2020/01/06 12:0 a.m.•64 views

Codoforum 4.8.3 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Codoforum 4.8.3 - Persistent Cross-Site Scripting Google Dork: intext:"Powered by Codoforum" Exploit Author: Prasanth c41m, Vyshnav Vizz Vendor Homepage: https://codoforum.com/index.php Software Link: https://codoforum.com/buy...

NVD•added 2019/12/20 3:15 p.m.•20 views

CVE-2012-6094

cups Common Unix Printing System 'Listen localhost:631' option not honored correctly which could provide unauthorized access to the system...

9.8CVSS9.4AI score0.00685EPSS

Exploits0References7

OSV•added 2019/12/19 1:15 a.m.•1 views

CVE-2019-15006

There was a man-in-the-middle MITM vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data Center. This plugin was used to facilitate communication with the Atlassian Companion application. The Confluence Previews plugin in Confluence Server and Confluence...

6.5CVSS6.5AI score0.0764EPSS

Exploits0References5

OSV•added 2019/11/26 5:15 p.m.•1 views

DEBIAN-CVE-2019-12523

An issue was discovered in Squid before 4.9. When handling a URN request, a corresponding HTTP request is made. This HTTP request doesn't go through the access checks that incoming HTTP requests go through. This causes all access checks to be bypassed and allows access to restricted HTTP servers,...

9.1CVSS6.7AI score0.00618EPSS

UbuntuCve•added 2019/11/26 5:15 p.m.•32 views

CVE-2019-12523

9.1CVSS6.7AI score0.00618EPSS