Lucene search
K

11 matches found

Snyk
Snyk
added 2026/05/29 10:29 p.m.9 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview praisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere via the direct-prompt CLI. An attacker can access sensitive local...

6.9CVSS5.5AI score0.00014EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/15 8:37 p.m.18 views

EUVD-2026-30631

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, the validateurl function in backend/openwebui/retrieval/web/utils.py only validates the initial URL submitted by the caller. The HTTP clients used downstream sync requests, async...

8.5CVSS5.8AI score0.003EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2017-0348

Malware in sbrugna...

8.1CVSS8AI score0.02415EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-0339

Malware in sbrugna...

9.8CVSS9.3AI score0.02032EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 8:45 a.m.7 views

CVE-2024-0862

The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains a Server-Side Request Forgery vulnerability that allows an authenticated user to relay HTTP requests from the Protection server to otherwise private network addresses...

5CVSS6.7AI score0.00192EPSS
Exploits0References1
NVD
NVD
added 2024/05/14 7:15 p.m.16 views

CVE-2024-0862

The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains a Server-Side Request Forgery vulnerability that allows an authenticated user to relay HTTP requests from the Protection server to otherwise private network addresses...

5CVSS5AI score0.00192EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/14 7:7 p.m.25 views

CVE-2024-0862

The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains a Server-Side Request Forgery vulnerability that allows an authenticated user to relay HTTP requests from the Protection server to otherwise private network addresses...

5CVSS6.9AI score0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/14 7:7 p.m.33 views

CVE-2024-0862

The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains a Server-Side Request Forgery vulnerability that allows an authenticated user to relay HTTP requests from the Protection server to otherwise private network addresses...

5CVSS5.3AI score0.00192EPSS
Exploits0References1
OSV
OSV
added 2017/11/29 11:21 p.m.20 views

GHSA-HXHJ-HP9M-QWC4 private_address_check vulnerable to bypass of Resolv.getaddresses method

The privateaddresscheck ruby gem before 0.4.0 is vulnerable to a bypass due to use of Ruby's Resolv.getaddresses method, which is OS-dependent and should not be relied upon for security measures, such as when used to blacklist private network addresses to prevent server-side request forgery...

8.1CVSS8AI score0.02415EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2017/11/29 11:21 p.m.30 views

private_address_check vulnerable to bypass of Resolv.getaddresses method

The privateaddresscheck ruby gem before 0.4.0 is vulnerable to a bypass due to use of Ruby's Resolv.getaddresses method, which is OS-dependent and should not be relied upon for security measures, such as when used to blacklist private network addresses to prevent server-side request forgery...

8.1CVSS1.5AI score0.02415EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2017/11/13 5:0 p.m.35 views

CVE-2017-0904

The privateaddresscheck ruby gem before 0.4.0 is vulnerable to a bypass due to use of Ruby's Resolv.getaddresses method, which is OS-dependent and should not be relied upon for security measures, such as when used to blacklist private network addresses to prevent server-side request forgery...

8.1AI score0.02415EPSS
Exploits0References5
Rows per page
Query Builder