Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

78 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 8:59 a.m.7 views

CVE-2023-49782

Collabora Online is a collaborative online office suite based on LibreOffice technology. Users of Nextcloud with Collabora Online - Built-in CODE Server app can be vulnerable to attack via proxy.php. The bug was fixed in Collabora Online - Built-in CODE Server richdocumentscode release 23.5.601...

7.1CVSS6.9AI score0.0041EPSS
Exploits0References1
CVE
CVEadded 2025/12/03 6:25 p.m.17 views

CVE-2025-66208

CVE-2025-66208 affects Collabora Online – Built-in CODE Server (richdocumentscode proxy). The vulnerability is a configuration-dependent OS command injection (RCE) in the richdocumentscode proxy present in versions prior to 25.04.702, exploitable by attackers via proxy.php and an intermediate rev...

9.8CVSS6.5AI score0.00948EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2025/11/24 7:16 a.m.3 views

CVE-2025-13588

A vulnerability was found in lKinderBueno Streamity Xtream IPTV Player up to 2.8. The impacted element is an unknown function of the file public/proxy.php. Performing manipulation results in server-side request forgery. The attack can be initiated remotely. The exploit has been made public and...

5.3CVSS6.7AI score
Exploits0References6
Vulnrichment
Vulnrichmentadded 2025/11/24 6:32 a.m.3 views

CVE-2025-13588 lKinderBueno Streamity Xtream IPTV Player proxy.php server-side request forgery

A vulnerability was found in lKinderBueno Streamity Xtream IPTV Player up to 2.8. The impacted element is an unknown function of the file public/proxy.php. Performing manipulation results in server-side request forgery. The attack can be initiated remotely. The exploit has been made public and...

6.5CVSS6.3AI score0.00218EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2007-6714

Malware in sbrugna...

7.5CVSS7.6AI score0.01305EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2013-6682

Malware in sbrugna...

6.1CVSS6.3AI score0.0138EPSS
Exploits2References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2014-1920

Malware in sbrugna...

4.3CVSS6.2AI score0.01864EPSS
Exploits3References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-19011

Malware in sbrugna...

9.8CVSS9.3AI score0.02433EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-16104

Malicious code in bioql PyPI...

8.8CVSS7AI score0.00482EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-53703

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.0041EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 4:17 a.m.3 views

CVE-2023-48314

Collabora Online is a collaborative online office suite based on LibreOffice technology. Users of Nextcloud with Collabora Online Built-in CODE Server app can be vulnerable to attack via proxy.php. This vulnerability has been fixed in Collabora Online - Built-in CODE Server richdocumentscode...

7.1CVSS6.8AI score0.00406EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 5:28 a.m.4 views

CVE-2019-9642

An issue was discovered in proxy.php in pydio-core in Pydio through 8.2.2. Through an unauthenticated request, it possible to evaluate malicious PHP code by placing it on the fourth line of a .php file, as demonstrated by a PoC.php created by the guest account, with execution via a...

9.8CVSS7.2AI score0.02433EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2024/01/25 12:0 a.m.3 views

The vulnerability of the proxy.php component in the Collabora Online online office suite, related to the lack of protective measures for the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the proxy.php component in the Collabora Online online office suite is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS6.2AI score0.00406EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/01/08 10:0 a.m.15 views

CVE-2024-0308 Inis Proxy.php server-side request forgery

A vulnerability was found in Inis up to 2.0.1. It has been rated as critical. This issue affects some unknown processing of the file app/api/controller/default/Proxy.php. The manipulation of the argument purl leads to server-side request forgery. The attack may be initiated remotely. The exploit...

6.5CVSS8.9AI score0.00482EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/01/08 12:0 a.m.4 views

Inis Code Issues Vulnerabilities

Inis is a web application. A code issue vulnerability exists in Inis 2.0.1 and earlier versions, which stems from a server request forgery SSRF vulnerability in the file app/api/controller/default/Proxy.php...

8.8CVSS7.1AI score0.00482EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/01/08 12:0 a.m.4 views

PT-2024-15459 · Inis · Inis

Name of the Vulnerable Software and Affected Versions: Inis versions up to 2.0.1 Description: A critical issue affects some unknown processing of the file app/api/controller/default/Proxy.php. The manipulation of the argument p url leads to server-side request forgery. The attack may be initiated...

8.8CVSS6.6AI score0.00482EPSS
Exploits0References8
NVD
NVDadded 2023/12/08 8:15 p.m.6 views

CVE-2023-49782

Collabora Online is a collaborative online office suite based on LibreOffice technology. Users of Nextcloud with Collabora Online - Built-in CODE Server app can be vulnerable to attack via proxy.php. The bug was fixed in Collabora Online - Built-in CODE Server richdocumentscode release 23.5.601...

7.1CVSS0.0041EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/12/01 10:2 p.m.15 views

CVE-2023-48314 Unescaped passing of the request URL in Collabora Online

Collabora Online is a collaborative online office suite based on LibreOffice technology. Users of Nextcloud with Collabora Online Built-in CODE Server app can be vulnerable to attack via proxy.php. This vulnerability has been fixed in Collabora Online - Built-in CODE Server richdocumentscode...

7.1CVSS7.1AI score0.00406EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/09/04 12:0 a.m.3 views

PT-2023-5342 · Librey · Librey

Name of the Vulnerable Software and Affected Versions: LibreY versions prior to commit 8f9b9803f231e2954e5b49987a532d28fe50a627 Description: The issue is related to a Server-Side Request Forgery SSRF vulnerability in the image proxy.php file. This vulnerability allows remote attackers to use the...

9.4CVSS9AI score0.00717EPSS
Exploits1References8
F5 Networks
F5 Networksadded 2023/02/21 6:31 p.m.62 views

K03861222: ExtJS vulnerability CVE-2007-2285

Security Advisory Description Directory traversal vulnerability in examples/layout/feed-proxy.php in Jack Slocum Ext 1.0 alpha1 Ext JS allows remote attackers to read arbitrary files via a .. dot dot in the feed parameter. NOTE: analysis by third party researchers indicates that this issue might ...

7.8CVSS6.9AI score0.09855EPSS
Exploits0
Rows per page
Query Builder