CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

5 matches found

Github Security Blog•added 2022/01/26 10:13 p.m.•35 views

Server side request forgery in @isomorphic-git/cors-proxy

The package @isomorphic-git/cors-proxy before 2.7.1 is vulnerable to Server-side Request Forgery SSRF due to missing sanitization and validation of the redirection action in middleware.js...

8.6CVSS3.2AI score0.0029EPSS

Exploits1References4Affected Software1

OSV•added 2022/01/21 8:15 p.m.•8 views

CVE-2021-23664

The package @isomorphic-git/cors-proxy before 2.7.1 are vulnerable to Server-side Request Forgery SSRF due to missing sanitization and validation of the redirection action in middleware.js...

7.5CVSS7.6AI score

Exploits0References2

NVD•added 2022/01/21 8:15 p.m.•7 views

CVE-2021-23664

The package @isomorphic-git/cors-proxy before 2.7.1 are vulnerable to Server-side Request Forgery SSRF due to missing sanitization and validation of the redirection action in middleware.js...

8.6CVSS0.0029EPSS

Exploits1References2

Prion•added 2022/01/21 8:15 p.m.•14 views

Server side request forgery (ssrf)

The package @isomorphic-git/cors-proxy before 2.7.1 are vulnerable to Server-side Request Forgery SSRF due to missing sanitization and validation of the redirection action in middleware.js...

5CVSS7.5AI score0.0029EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/01/21 8:0 p.m.•13 views

CVE-2021-23664 Server-side Request Forgery (SSRF)

The package @isomorphic-git/cors-proxy before 2.7.1 are vulnerable to Server-side Request Forgery SSRF due to missing sanitization and validation of the redirection action in middleware.js...

8.6CVSS8.8AI score0.0029EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by