Lucene search
+L

46 matches found

euvd
euvd
added 2026/06/30 3:57 p.m.8 views

EUVD-2026-40359

SeaweedFS before 4.30 reflects the callback query parameter verbatim into responses served with Content-Type application/javascript in the shared writeJson helper weed/server/common.go, with no callback-name validation, no X-Content-Type-Options: nosniff header, and no CORS allow-list. Every JSON...

3.1CVSS5.7AI score0.0021EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/06/30 12:0 a.m.8 views

PT-2026-53929

Name of the Vulnerable Software and Affected Versions SeaweedFS versions prior to 4.30 Description An issue exists where the callback query parameter is reflected verbatim into responses served with the Content-Type application/javascript in the shared writeJson function weed/server/common.go. Th...

3.1CVSS5.9AI score0.0021EPSS
Exploits0References10
euvd
euvd
added 2026/06/19 7:35 p.m.12 views

EUVD-2026-36539

parse-server: Stored XSS via trailing-dot filename bypassing file upload extension blocklist...

2.1CVSS5.8AI score0.00281EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2026/06/17 12:0 a.m.13 views

PT-2026-50485

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.6 Description Open WebUI contains a stored Cross-Site Scripting XSS issue where the platform fails to validate profile images for models. While similar issues were patched for user and webhook profile images, t...

7.6CVSS5.9AI score0.00174EPSS
Exploits1References12
github
github
added 2026/06/08 11:8 p.m.15 views

nebula-mesh: Web UI and API responses lack security headers (CSP, X-Frame-Options, HSTS, etc.)

None of the response paths in internal/web/ or internal/api/ set the standard browser-security headers. grep for Content-Security-Policy, X-Frame-Options, Strict-Transport-Security, X-Content-Type-Options, Referrer-Policy returns zero matches across the codebase. Impact The admin UI signs CA...

5.5AI score0.00031EPSS
Exploits0References4Affected Software1
osv
osv
added 2026/06/08 11:8 p.m.8 views

GHSA-W7W5-5GCP-38RW nebula-mesh: Web UI and API responses lack security headers (CSP, X-Frame-Options, HSTS, etc.)

None of the response paths in internal/web/ or internal/api/ set the standard browser-security headers. grep for Content-Security-Policy, X-Frame-Options, Strict-Transport-Security, X-Content-Type-Options, Referrer-Policy returns zero matches across the codebase. Impact The admin UI signs CA...

7.1CVSS5.5AI score0.00031EPSS
Exploits0References4
github
github
added 2026/04/13 7:23 p.m.7 views

Note Mark has Stored XSS via Unrestricted Asset Upload

Summary A stored same-origin XSS vulnerability allows any authenticated user to upload an HTML, SVG, or XHTML file as a note asset and have it executed in a victim’s browser under the application’s origin. Because the application serves these files inline without a safe content type and without...

8.7CVSS5.8AI score0.00309EPSS
Exploits0References5Affected Software1
osv
osv
added 2026/04/13 7:23 p.m.4 views

GHSA-9PR4-RF97-79QH Note Mark has Stored XSS via Unrestricted Asset Upload

Summary A stored same-origin XSS vulnerability allows any authenticated user to upload an HTML, SVG, or XHTML file as a note asset and have it executed in a victim’s browser under the application’s origin. Because the application serves these files inline without a safe content type and without...

8.7CVSS5.8AI score0.00309EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/02/24 10:42 p.m.12 views

CVE-2026-27512

Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55multi contains a content-type confusion vulnerability in the administrative interface. Responses omit the X-Content-Type-Options: nosniff header and include attacker-influenced content that can be reflected into the response body. Under...

6.1CVSS5.7AI score0.00183EPSS
Exploits0References1
osv
osv
added 2026/02/23 5:23 p.m.5 views

CVE-2026-27512

Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55multi contains a content-type confusion vulnerability in the administrative interface. Responses omit the X-Content-Type-Options: nosniff header and include attacker-influenced content that can be reflected into the response body. Under...

6.1CVSS5.9AI score0.00183EPSS
Exploits0References2
cve
cve
added 2026/02/23 4:26 p.m.18 views

CVE-2026-27512

Affected product/firmware: Shenzhen Tenda F3 Wireless Router, firmware V12.01.01.55_multi. Issue: Content-type confusion in the administrative interface where responses omit the X-Content-Type-Options: nosniff header and reflect attacker-influenced content into the response body. MIME sniffing ma...

6.1CVSS5.7AI score0.00183EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/02/23 4:26 p.m.5 views

CVE-2026-27512 Tenda F3 Reflected Script Execution via Missing nosniff Header

Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55multi contains a content-type confusion vulnerability in the administrative interface. Responses omit the X-Content-Type-Options: nosniff header and include attacker-influenced content that can be reflected into the response body. Under...

6.1CVSS5.6AI score0.00183EPSS
Exploits0References2
cvelist
cvelist
added 2026/02/23 4:26 p.m.28 views

CVE-2026-27512 Tenda F3 Reflected Script Execution via Missing nosniff Header

Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55multi contains a content-type confusion vulnerability in the administrative interface. Responses omit the X-Content-Type-Options: nosniff header and include attacker-influenced content that can be reflected into the response body. Under...

6.1CVSS0.00183EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/02/23 12:0 a.m.15 views

PT-2026-21530

Name of the Vulnerable Software and Affected Versions Shenzhen Tenda F3 Wireless Router firmware version V12.01.01.55 multi Description The administrative interface of the software lacks the X-Content-Type-Options: nosniff header in responses and includes attacker-influenced content that can be...

6.1CVSS5.4AI score0.00183EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/01/29 9:24 a.m.12 views

CVE-2026-1466

Jirafeau normally prevents browser preview for text files due to the possibility that for example SVG and HTML documents could be exploited for cross site scripting. This was done by storing the MIME type of a file and allowing only browser preview for MIME types beginning with image except for...

6.1CVSS5AI score0.00566EPSS
Exploits0References1
nvd
nvd
added 2026/01/28 7:16 a.m.15 views

CVE-2026-1466

Jirafeau normally prevents browser preview for text files due to the possibility that for example SVG and HTML documents could be exploited for cross site scripting. This was done by storing the MIME type of a file and allowing only browser preview for MIME types beginning with image except for...

6.1CVSS0.00287EPSS
Exploits0References4
cve
cve
added 2026/01/28 6:33 a.m.34 views

CVE-2026-1466

CVE-2026-1466 concerns Jirafeau, where the MIME-type based preview guard (image/* except image/svg+xml, plus video/audio) could be bypassed by sending a crafted request with an invalid MIME type (e.g., image). During preview, browsers may sniff the MIME type and detect SVG, potentially executing ...

6.1CVSS5.4AI score0.00287EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2026/01/28 6:33 a.m.32 views

CVE-2026-1466 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jirafeau

Jirafeau normally prevents browser preview for text files due to the possibility that for example SVG and HTML documents could be exploited for cross site scripting. This was done by storing the MIME type of a file and allowing only browser preview for MIME types beginning with image except for...

6.1CVSS0.00287EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/01/28 6:33 a.m.5 views

CVE-2026-1466

Jirafeau normally prevents browser preview for text files due to the possibility that for example SVG and HTML documents could be exploited for cross site scripting. This was done by storing the MIME type of a file and allowing only browser preview for MIME types beginning with image except for...

6.1CVSS5AI score0.00566EPSS
Exploits0References5
euvd
euvd
added 2026/01/28 6:33 a.m.8 views

EUVD-2026-4867

Jirafeau normally prevents browser preview for text files due to the possibility that for example SVG and HTML documents could be exploited for cross site scripting. This was done by storing the MIME type of a file and allowing only browser preview for MIME types beginning with image except for...

6.1CVSS5AI score0.00566EPSS
Exploits0References4
Rows per page
Query Builder