Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2026/05/13 8:23 p.m.11 views

CVE-2026-42882

oxyno-zeta/s3-proxy is an aws s3 proxy written in go. Prior to 5.0.0, s3-proxy contains an authentication bypass caused by inconsistent URL path interpretation between the authentication middleware and the bucket handler. The authentication middleware evaluates resource path patterns against the...

9.4CVSS5.8AI score0.00554EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.13 views

PT-2026-37288

Name of the Vulnerable Software and Affected Versions s3-proxy versions prior to 0.0.0-20260424211602-1320e4abd46a Description Inconsistent URL path normalization and routing logic lead to authorization bypasses, allowing unauthenticated access to protected objects. The issues stem from a mismatc...

9.4CVSS5.8AI score0.00554EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.6 views

wcurl 2024.12.08 < 2025.11.04 Path Traversal

The version of wcurl installed on the remote host is prior to 2025.11.04. It is, therefore, affected by a path traversal vulnerability when the URL contains a percent-encoded slash. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported versi...

4.6CVSS5.5AI score0.00302EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/09/28 12:0 a.m.7 views

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client relates to the presence of the %2F character in the URL address of the manifest file, which allows an attacker to disclose protected information.

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client is related to the presence of the slash character in the URL address of the manifest file. Exploiting this vulnerability can allow an attacker to disclose protected information...

7.8CVSS7AI score0.01272EPSS
Exploits0References14Affected Software5
OSV
OSV
added 2020/07/01 12:0 a.m.4 views

UBUNTU-CVE-2020-12415

When "%2F" was present in a manifest URL, Firefox's AppCache behavior may have become confused and allowed a manifest to be served from a subdirectory. This could cause the appcache to be used to service requests for the top level directory. This vulnerability affects Firefox 78...

6.5CVSS7AI score0.01272EPSS
Exploits0References5
Rows per page
Query Builder