Lucene search
K

5 matches found

OSV
OSV
added 2025/11/24 7:16 a.m.4 views

CVE-2025-13588

A vulnerability was found in lKinderBueno Streamity Xtream IPTV Player up to 2.8. The impacted element is an unknown function of the file public/proxy.php. Performing manipulation results in server-side request forgery. The attack can be initiated remotely. The exploit has been made public and...

5.3CVSS6.7AI score
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/11/24 6:32 a.m.3 views

CVE-2025-13588 lKinderBueno Streamity Xtream IPTV Player proxy.php server-side request forgery

A vulnerability was found in lKinderBueno Streamity Xtream IPTV Player up to 2.8. The impacted element is an unknown function of the file public/proxy.php. Performing manipulation results in server-side request forgery. The attack can be initiated remotely. The exploit has been made public and...

6.5CVSS6.3AI score0.00218EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/01/25 12:0 a.m.5 views

The vulnerability of the proxy.php component in the Collabora Online online office suite, related to the lack of protective measures for the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the proxy.php component in the Collabora Online online office suite is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS6.2AI score0.00406EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.4 views

Inis Code Issues Vulnerabilities

Inis is a web application. A code issue vulnerability exists in Inis 2.0.1 and earlier versions, which stems from a server request forgery SSRF vulnerability in the file app/api/controller/default/Proxy.php...

8.8CVSS7.1AI score0.00482EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2015/10/05 12:0 a.m.5 views

VulnCheck KEV: CVE-2015-5065

Absolute path traversal vulnerability in proxy.php in the google currency lookup in the Paypal Currency Converter Basic For WooCommerce plugin before 1.4 for WordPress allows remote attackers to read arbitrary files via a full pathname in the requrl parameter...

5CVSS6AI score0.16324EPSS
Exploits1References1
Rows per page
Query Builder