Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/14 12:0 a.m.10 views

The vulnerability of the PHP Snappy library, related to insufficient validation of requests on the server side, allows a attacker to perform an SSRF attack.

The vulnerability of the PHP Snappy library is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to execute an SSRF attack by sending a specially crafted HTTP request remotely...

5.8CVSS5.6AI score
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/29 12:0 a.m.3 views

PT-2025-29480 · Gnu · Snappy

Уязвимость библиотеки PHP Snappy связана с неверным ограничением имени пути к каталогу с ограниченным доступом. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, получить несанкционированный доступ к локальным файлам и директориям на сервере при обработке параметров...

7.8CVSS7.3AI score
Exploits0References2
Rosalinux
Rosalinux
added 2024/07/23 11:32 a.m.18 views

Advisory ROSA-SA-2024-2457

Software: snappy 1.1.8 OS: ROSA Virtualization 2.1 packageevrstring: snappy-1.1.8 CVE-ID: CVE-2023-28115 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the generateFromHtml function of the PHP Snappy library involves the recovery of invalid data from memory. Exploitation of the...

9.8CVSS7.8AI score0.0276EPSS
Exploits1
Rows per page
Query Builder