16 matches found
EUVD-2025-13633
Malicious code in bioql PyPI...
CVE-2025-45250
MrDoc v0.95 and before is vulnerable to Server-Side Request Forgery SSRF in the validateurl function of the appdoc/utils.py file...
CVE-2025-45250
MrDoc v0.95 and before is vulnerable to Server-Side Request Forgery SSRF in the validateurl function of the appdoc/utils.py file...
CVE-2025-45250
MrDoc v0.95 and before is vulnerable to Server-Side Request Forgery SSRF in the validateurl function of the appdoc/utils.py file...
CVE-2025-45250
MrDoc v0.95 and before is vulnerable to Server-Side Request Forgery SSRF in the validateurl function of the appdoc/utils.py file...
CVE-2025-45250
CVE-2025-45250 - MrDoc : MrDoc v0.95 and earlier is vulnerable to Server-Side Request Forgery (SSRF) in the validate_url function of app_doc/utils.py. The CVSS v3.1 base score is 5.5 (Medium) with low impact to confidentiality, integrity, and availability. Multiple sources (NVD, Red Hat, CVE list...
CVE-2025-45250
MrDoc v0.95 and before is vulnerable to Server-Side Request Forgery SSRF in the validateurl function of the appdoc/utils.py file...
PT-2025-19962 · Mrdoc · Mrdoc
Name of the Vulnerable Software and Affected Versions: MrDoc versions 0.95 and before Description: The issue is related to Server-Side Request Forgery SSRF in the validate url function of the app doc/utils.py file. This allows for potential exploitation. Recommendations: For MrDoc versions 0.95 a...
mrdoc 安全漏洞
mrdoc is a python based online documentation system by the individual developer of zmister2016. A security vulnerability exists in mrdoc 0.9.5 and earlier versions, which stems from the validateurl function leading to server-side request forgery...
Server-Side Request Forgery (SSRF) in zmister2016/mrdoc
Description ● SSRF in /uploaddocimg/, an attacker could abuse url to visit any intranet in the envioronment of MrDoc server, casuing breaking the border of network. ● Depending on the different env, it could leak sensitive meta-data,according to...
CVE-2021-32568
mrdoc is vulnerable to Deserialization of Untrusted Data...
CVE-2021-32568
mrdoc is vulnerable to Deserialization of Untrusted Data...
Deserialization of untrusted data
mrdoc is vulnerable to Deserialization of Untrusted Data...
CVE-2021-32568
CVE-2021-32568 affects mrdoc, a Python-based online documentation system. The connected Huntr entry indicates the vulnerability can lead to remote code execution via YAML.load in the import function, with a PoC showing an RCE payload. No official patch/version is provided in the supplied material...
CVE-2021-32568 Deserialization of Untrusted Data in zmister2016/mrdoc
mrdoc is vulnerable to Deserialization of Untrusted Data...
mrdoc 代码问题漏洞
mrdoc is an online documentation system developed in python. mrdoc has a security vulnerability that can be exploited by attackers to deserialize untrusted data...