Lucene search
K

107 matches found

RedhatCVE
RedhatCVE
added 2025/04/26 6:19 a.m.5 views

CVE-2025-29452

An issue in Seo Panel 4.11.0 allows a remote attacker to obtain sensitive information via the Proxy Manager component...

7.6CVSS6.5AI score0.00345EPSS
Exploits1References1
NVD
NVD
added 2025/04/17 9:15 p.m.12 views

CVE-2025-29452

An issue in Seo Panel 4.11.0 allows a remote attacker to obtain sensitive information via the Proxy Manager component...

7.6CVSS0.00345EPSS
Exploits1References1
OSV
OSV
added 2025/04/17 9:15 p.m.7 views

CVE-2025-29452

An issue in Seo Panel 4.11.0 allows a remote attacker to obtain sensitive information via the Proxy Manager component...

7.6CVSS6.3AI score
Exploits0References1
CNNVD
CNNVD
added 2025/04/17 12:0 a.m.4 views

Seo Panel 安全漏洞

Seo Panel is a free search engine optimization software from Seo Panel Open Source. A security vulnerability exists in Seo Panel version 4.11.0, which stems from mishandling of the Proxy Manager component and could allow a remote attacker to obtain sensitive information...

7.6CVSS6.5AI score0.00345EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/17 12:0 a.m.15 views

CVE-2025-29452

An issue in Seo Panel 4.11.0 allows a remote attacker to obtain sensitive information via the Proxy Manager component...

0.00345EPSS
Exploits1References1
CVE
CVE
added 2025/04/17 12:0 a.m.67 views

CVE-2025-29452

CVE-2025-29452 affects Seo Panel 4.11.0 with a vulnerability in the Proxy Manager component that allows a remote attacker to obtain sensitive information. The issue is confirmed across multiple feeds (including Red Hat, OSV, NVD entries) and has a CVSSv3.1 base score of 7.6 ( HIGH, NETWORK attack...

7.6CVSS6.1AI score0.00345EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.4 views

PT-2025-17234 · Seo Panel · Seo Panel

Name of the Vulnerable Software and Affected Versions: Seo Panel version 4.11.0 Description: An issue in the Proxy Manager component allows a remote attacker to obtain sensitive information. Recommendations: For Seo Panel version 4.11.0, at the moment, there is no information about a newer versio...

7.6CVSS6AI score0.00345EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/04/17 12:0 a.m.7 views

CVE-2025-29452

An issue in Seo Panel 4.11.0 allows a remote attacker to obtain sensitive information via the Proxy Manager component...

7.2AI score0.00345EPSS
Exploits1References1
Amazon
Amazon
added 2024/10/16 12:0 a.m.5 views

Medium: python-urllib3

Issue Overview: urllib3 is a user-friendly HTTP client library for Python. When using urllib3's proxy support with ProxyManager, the Proxy-Authorization header is only sent to the configured proxy, as expected. However, when sending HTTP requests without using urllib3's proxy support, it's possib...

6.5CVSS7AI score0.01141EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2024/10/03 12:0 a.m.7 views

The vulnerability of the `requestLetsEncryptSslWithDnsChallenge` function in the NGINX Proxy Manager proxy server allows a attacker to execute arbitrary code.

The vulnerability of the requestLetsEncryptSslWithDnsChallenge function in the NGINX Proxy Manager proxy server is related to the lack of data cleansing measures at the management level. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...

10CVSS7.4AI score0.01335EPSS
Exploits3References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.13 views

The vulnerability of the `requestLetsEncryptSsl` function in the NGINX Proxy Manager’s proxy server allows a hacker to execute arbitrary code.

The vulnerability of the requestLetsEncryptSsl function in the NGINX Proxy Manager’s proxy management module is related to the lack of measures taken to sanitize data at the control level. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by adding a specially craft...

9CVSS8.2AI score0.03084EPSS
Exploits2References4Affected Software1
CNNVD
CNNVD
added 2024/09/27 12:0 a.m.14 views

NginxProxyManager 安全漏洞

NginxProxyManager is NginxProxyManager individual developer's Docker container for managing Nginx proxy hosts with a simple, powerful interface. A security vulnerability exists in NginxProxyManager version 2.11.3, which stems from a command injection issue in the...

9.8CVSS8.2AI score0.03084EPSS
Exploits3References4
OSV
OSV
added 2024/08/02 11:8 a.m.3 views

OESA-2024-1947 python-urllib3 security update

Sanity-friendly HTTP client for Python Security Fixes: urllib3 is a user-friendly HTTP client library for Python. When using urllib3's proxy support with ProxyManager, the Proxy-Authorization header is only sent to the configured proxy, as expected. However, when sending HTTP requests without usi...

6.5CVSS7AI score0.01141EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/07/08 12:0 a.m.6 views

The vulnerability in the backend/script code of the proxy manager for NGINX Proxy Manager allows a perpetrator to execute arbitrary commands.

The vulnerability in the backend/script of the NGINX Proxy Manager for hosting management exists because measures to neutralize specific elements used in the operating system commands have not been taken. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by...

9CVSS6AI score0.00882EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2024/07/04 9:15 p.m.33 views

CVE-2024-39935

jc21 NGINX Proxy Manager before 2.11.3 allows backend/internal/certificate.js OS command injection by an authenticated user with certificate management privileges via untrusted input to the DNS provider configuration. NOTE: this is not part of any NGINX software shipped by F5...

8.8CVSS0.00882EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/07/04 12:0 a.m.7 views

Nginx Proxy Manager Security Vulnerability

Nginx Proxy Manager is a Docker container for Nginx Proxy Manager open source. It is used to manage Nginx proxy hosts through a simple and powerful interface. A security vulnerability exists in Nginx Proxy Manager versions prior to 2.11.3, which stems from a vulnerability that allows authenticate...

8.8CVSS6.8AI score0.00882EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/07/04 12:0 a.m.25 views

CVE-2024-39935

jc21 NGINX Proxy Manager before 2.11.3 allows backend/internal/certificate.js OS command injection by an authenticated user with certificate management privileges via untrusted input to the DNS provider configuration. NOTE: this is not part of any NGINX software shipped by F5...

0.00882EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/07/04 12:0 a.m.15 views

CVE-2024-39935

jc21 NGINX Proxy Manager before 2.11.3 allows backend/internal/certificate.js OS command injection by an authenticated user with certificate management privileges via untrusted input to the DNS provider configuration. NOTE: this is not part of any NGINX software shipped by F5...

7.5AI score0.00882EPSS
Exploits0References3
CVE
CVE
added 2024/07/04 12:0 a.m.97 views

CVE-2024-39935

CVE-2024-39935 affects jc21 NGINX Proxy Manager before 2.11.3. The vulnerability enables an authenticated user with certificate-management privileges to execute OS commands via untrusted input to the DNS provider configuration in the backend/internal/certificate.js, with potential for full impact...

8.8CVSS7.4AI score0.00882EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/01 12:0 a.m.9 views

PT-2024-6554 · Unknown · Nginx Proxy Manager

Name of the Vulnerable Software and Affected Versions: NginxProxyManager version 2.11.3 Description: A command injection vulnerability in the requestLetsEncryptSslWithDnsChallenge function allows an attacker to achieve remote code execution via the "Add Let's Encrypt Certificate" feature. This...

10CVSS7.9AI score0.03084EPSS
Exploits3References15
Rows per page
Query Builder