7 matches found
CVE-2026-2376
A flaw was found in mirror-registry where an authenticated user can trick the system into accessing unintended internal or restricted systems by providing malicious web addresses. When the application processes these addresses, it automatically follows redirects without verifying the final...
CVE-2026-2376
A flaw was found in mirror-registry where an authenticated user can trick the system into accessing unintended internal or restricted systems by providing malicious web addresses. When the application processes these addresses, it automatically follows redirects without verifying the final...
How to Secure Enterprise Networks by Identifying Malicious IP Addresses
...
Allocation of Resources Without Limits or Throttling
Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the addImage or html methods. An attacker can cause excessive CPU utilization and application unresponsiveness by supplying malicious PNG image data or URLs. Details Denial of...
requests: Requests vulnerable to .netrc credentials leak via malicious URLs
A flaw was found in the Requests HTTP library. This vulnerability allows leakage of .netrc credentials to third parties via maliciously crafted URLs that exploit a URL parsing issue...
Mozilla Firefox and Firefox ESR Page Forgery Vulnerability
Firefox is an open source Web browser ; Firefox ESR is an extended support version of Firefox.Graphite is a set of Python language , written using the Django framework for enterprise-class open source system monitoring tools . Mozilla Firefox and Firefox ESR suffer from a security vulnerability i...
dotDefender Cross-Site Request Forgery Vulnerability
dotDefender is a suite of real-time network monitoring tools that provide comprehensive monitoring of networks, protection against malicious attacks by hackers, and more. A cross-site request forgery vulnerability exists in dotDefender that allows remote attackers to construct malicious URIs, tri...