Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

534 matches found

Tenable Nessus
Tenable Nessusadded 2022/04/29 12:0 a.m.37 views

SUSE SLES15 Security Update : python-requests (SUSE-SU-2022:1448-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1448-1 advisory. - The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-ht...

7.5CVSS6.9AI score0.00198EPSS
Exploits2References4
OSV
OSVadded 2022/04/28 8:18 a.m.6 views

SUSE-SU-2022:1448-1 Security update for python-requests

This update for python-requests fixes the following issues: - CVE-2018-18074: Fixed sending an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect bsc1111622...

7.5CVSS7.6AI score0.00198EPSS
Exploits2References3
OpenVAS
OpenVASadded 2022/04/28 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2022:1448-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.00198EPSS
Exploits2References4
Huntr
Huntradded 2022/02/25 5:2 a.m.17 views

Server-Side Request Forgery (SSRF)

Description The SSRF Protection is incomplete and can be bypassed via an HTTP redirect, the python-requests library will follow redirections by default can be disabled byallowredirects=False. An attacker can set up their HTTP server to respond with a 302 redirect to redirect the request to...

7.5CVSS0.4AI score0.00197EPSS
Exploits1References1
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2014-0409)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.00495EPSS
Exploits0References5
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.7 views

Mageia: Security Advisory (MGASA-2013-0376)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References7
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2015-0120)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.0114EPSS
Exploits0References5
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2018-0475)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.00198EPSS
Exploits2References5
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2013-0252)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS8.2AI score0.02979EPSS
Exploits5References8
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2019-0258)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.01015EPSS
Exploits1References4
wpexploit
wpexploitadded 2021/11/30 12:0 a.m.65 views

LiteSpeed Cache < 4.4.4 - IP Check Bypass to Unauthenticated Stored XSS

The plugin does not properly verify that requests are coming from QUIC.cloud servers, allowing attackers to make requests to certain endpoints by using a specific X-Forwarded-For header value. In addition, one of the endpoint could be used to set CSS code if a setting is enabled, which will then ...

6.1CVSS0.2AI score0.14825EPSS
Exploits2
Oracle linux
Oracle linuxadded 2021/11/16 12:0 a.m.58 views

python39:3.9 and python39-devel:3.9 security update

modwsgi 4.7.1-4 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz1877430 4.7.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora33MassRebuild 4.7.1-2 - Rebuilt for Python 3.9 4.7.1-1 - update to 4.7.1 1721376 numpy 1.19.4-3 - Adjusted the postun scriptlets to enable...

9.8CVSS7.5AI score0.02048EPSS
Exploits7
Gitee
Giteeadded 2021/08/20 11:48 p.m.4 views

Exploit for CVE-2018-9995

PoC exploit for CVE-2018-9995. This exploit targets a vulnerability in a DVR system, allowing for remote code execution. The exploit is written in Python and uses the requests library to send HTTP requests to the vulnerable system. The exploit first defines a function to get the system's response...

9.8CVSS9.4AI score0.94141EPSS
Exploits13
OSV
OSVadded 2021/06/28 4:59 p.m.7 views

SUSE-SU-2021:2195-1 Security update for python-urllib3, python-requests

This update for python-urllib3 and python-requests fixes the following issues: Security fix: - Improve performance of sub-authority splitting in URL. bsc1187045, CVE-2021-33503 Non-security changes: - Update python-urllib3 to version 1.25.10 to stay compatible with changes needed in the Server an...

7.5CVSS8.6AI score0.00863EPSS
Exploits0References5
OpenVAS
OpenVASadded 2021/06/09 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2019:1487-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.00198EPSS
Exploits2References2
Oracle linux
Oracle linuxadded 2021/05/25 12:0 a.m.59 views

python38:3.8 security update

python38 3.8.6-3 - Security fix for CVE-2021-3177 Resolves: rhbz1919161 3.8.6-2 - Add support for upstream architecture names https://fedoraproject.org/wiki/Changes/PythonUpstreamArchitectureNames Resolves: rhbz1868006 3.8.6-1 - Update to 3.8.6 - Security fix for CVE-2020-26116 python-requests...

9.8CVSS8.7AI score0.01246EPSS
Exploits3
Rockylinux
Rockylinuxadded 2021/05/18 6:24 a.m.12 views

new module: python39:3.9

An update is available for python-more-itertools, pytest, python-psycopg2, python-lxml, python-PyMySQL, python3x-six, python-toml, python-urllib3, PyYAML, python-attrs, python-iniconfig, python-requests, modwsgi, python3x-pip, python-py, python-chardet, python-pluggy, Cython, python-psutil,...

0.2AI score
Exploits0
OpenVAS
OpenVASadded 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2016:0114-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.0114EPSS
Exploits0References7
OpenVAS
OpenVASadded 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2020:0555-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.00198EPSS
Exploits2References9
Tenable Nessus
Tenable Nessusadded 2021/02/01 12:0 a.m.49 views

CentOS 8 : python27:2.7 (CESA-2020:1605)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1605 advisory. - python-requests: Redirect from HTTPS to HTTP does not remove Authorization header CVE-2018-18074 - python-urllib3: Cross-host redirect does not remov...

9.8CVSS7.1AI score0.02456EPSS
Exploits5References7
Rows per page
Query Builder