CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2026/05/14 7:58 p.m.•4 views

CVE-2026-42260

Open-WebSearch is a multi-engine MCP server, CLI, and local daemon for agent web search and content retrieval. Prior to 2.1.7, isPublicHttpUrl / assertPublicHttpUrl in src/utils/urlSafety.ts do not recognize bracketed IPv6 literals and do not resolve DNS, which combine to allow non-blind SSRF wit...

8.2CVSS5.8AI score0.00039EPSS

Exploits0References1

Github Security Blog•added 2026/05/05 8:51 p.m.•5 views

open-websearch has SSRF in `fetchWebContent` MCP tool: bracketed IPv6 literals and non-resolving hostname check bypass `isPrivateOrLocalHostname`

Summary src/utils/urlSafety.ts exposes isPublicHttpUrl / assertPublicHttpUrl, used to gate the MCP fetchWebContent tool against private-network targets. The check has two defects that together allow non-blind SSRF with the response body returned to the caller: 1. Bracketed IPv6 literals are never...

8.2CVSS6AI score0.00039EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2025/03/20 10:10 a.m.•3 views

CVE-2024-12882 SSRF in comfyanonymous/comfyui

comfyanonymous/comfyui version v0.2.4 suffers from a non-blind Server-Side Request Forgery SSRF vulnerability. This vulnerability can be exploited by combining the REST APIs POST /internal/models/download and GET /view, allowing attackers to abuse the victim server's credentials to access...

7.5CVSS7.5AI score0.00333EPSS

Exploits1References1

Patchstack•added 2024/07/10 8:24 a.m.•2 views

WordPress BerqWP plugin <= 1.7.5 - Unauthenticated Non-Blind Server Side Request Forgery (SSRF) vulnerability

Unauthenticated Non-Blind Server Side Request Forgery SSRF vulnerability discovered by Dave Jong Patchstack in WordPress Plugin BerqWP versions = 1.7.5...

7.2CVSS7AI score0.00335EPSS

Exploits0Affected Software1

OSV•added 2021/06/08 7:15 p.m.•2 views

CVE-2021-26474

Various Vembu products allow an attacker to execute a non-blind http-only Cross Site Request Forgery Other products or versions of products in this family may be affected too...

8.8CVSS5.8AI score0.00234EPSS

Exploits0References4

Prion•added 2021/06/08 7:15 p.m.•11 views

Cross site request forgery (csrf)

Various Vembu products allow an attacker to execute a non-blind http-only Cross Site Request Forgery Other products or versions of products in this family may be affected too...

6.8CVSS8.7AI score0.00234EPSS

Exploits0References4Affected Software2

Hacker One•added 2020/12/22 5:22 p.m.•32 views

Mail.ru: XSS on ub.icq.net

Not blind SSRF on ub.icq.net via url parameter value makes internal port scanning possible...

3.5AI score

Exploits0

Tenable Nessus•added 2020/06/09 12:0 a.m.•18 views

Server-Side Request Forgery

Web applications often rely on network requests to query external resources and retrieve data in order to process it. A Server-Side Request Forgery SSRF vulnerability exists when an attacker is able to control these outbound requests and send it to a resource he owns, to the localhost itself, or ...

7.6AI score

Exploits0References5

Hacker One•added 2019/10/11 1:25 p.m.•48 views

Mail.ru: SSRF in clients.city-mobil.ru

Limited non-blind SSRF in clients.city-mobil.ru the report was submitted before the launch of dedicated bug bounty scope for Citymobil Non-blind SSRF in apt-cacher, used for getting software updates, allowing limited requests to internal services...

2.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by