Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/06/15 11:56 p.m.29 views

CVE-2026-12162

Improper host validation in the social login autofill feature in Devolutions Remote Desktop Manager 2026.2.8 allows an attacker to disclose stored social login credentials via a crafted web entry pointing to a provider lookalike domain...

0.00112EPSS
Exploits0References1
NVD
NVD
added 2026/06/01 7:16 p.m.15 views

CVE-2026-43625

CodexBar prior to 0.32.0 contains a session cookie leakage vulnerability that allows network attackers to intercept imported browser session cookies by exploiting improper redirect handling for Amp and Ollama provider sessions. Attackers can position themselves on the network path to receive...

8.2CVSS0.00186EPSS
Exploits0References4
CVE
CVE
added 2026/06/01 6:46 p.m.16 views

CVE-2026-43625

CodexBar vulnerability CVE-2026-43625 affects versions prior to 0.32.0. Affected component: CodexBar session handling for Amp and Ollama provider sessions. Root cause: improper redirect handling allows an on-path attacker to observe imported browser session cookies in cleartext HTTP requests when...

8.2CVSS5.8AI score0.00186EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/01 6:46 p.m.8 views

CVE-2026-43625

CodexBar prior to 0.32.0 contains a session cookie leakage vulnerability that allows network attackers to intercept imported browser session cookies by exploiting improper redirect handling for Amp and Ollama provider sessions. Attackers can position themselves on the network path to receive...

8.2CVSS5.8AI score0.00186EPSS
Exploits0References5
Rows per page
Query Builder