Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-22192

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.0047EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 7:29 a.m.19 views

CVE-2024-24829

Sentry is an error tracking and performance monitoring platform. Sentry’s integration platform provides a way for external services to interact with Sentry. One of such integrations, the Phabricator integration maintained by Sentry with version =24.1.1 contains a constrained SSRF vulnerability. A...

5.3CVSS5.3AI score0.0047EPSS
Exploits0References1
Prion
Prion
added 2024/02/09 12:15 a.m.27 views

Server side request forgery (ssrf)

Sentry is an error tracking and performance monitoring platform. Sentry’s integration platform provides a way for external services to interact with Sentry. One of such integrations, the Phabricator integration maintained by Sentry with version =24.1.1 contains a constrained SSRF vulnerability. A...

5CVSS7.4AI score0.0047EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/02/08 11:44 p.m.63 views

CVE-2024-24829 SSRF in Sentry via Phabricator integration

Sentry is an error tracking and performance monitoring platform. Sentry’s integration platform provides a way for external services to interact with Sentry. One of such integrations, the Phabricator integration maintained by Sentry with version =24.1.1 contains a constrained SSRF vulnerability. A...

4.3CVSS5.6AI score0.0047EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/08 12:0 a.m.5 views

PT-2024-20595 · Sentry · Sentry

Name of the Vulnerable Software and Affected Versions: Sentry versions =24.1.1 Description: Sentry is an error tracking and performance monitoring platform with an integration platform for external services. The Phabricator integration contains a constrained SSRF vulnerability, allowing an attack...

5.3CVSS5.3AI score0.0047EPSS
Exploits0References7
Hacker One
Hacker One
added 2015/05/11 9:42 p.m.38 views

Slack: Bypass of the SSRF protection (Slack commands, Phabricator integration)

Abstract Some Slack features like "Integrations / Phabricator" and "Integration / Slash Commands" allow users to submit URL that will be accessed by the backend servers. A blacklist tries to forbid access to internal resources loopback, 10.0.0.0/8, 192.168.0.0/24, .... This blacklist can be...

0.1AI score
Exploits0
Rows per page
Query Builder