Lucene search
K

9 matches found

EUVD
EUVD
added 2026/06/29 5:17 p.m.12 views

EUVD-2026-40160

LibreTranslate through 1.9.7, fixed in commit 397fd22, contains an IP spoofing vulnerability in the getremoteaddress function that allows unauthenticated attackers to spoof client IP addresses by injecting arbitrary values into the X-Forwarded-For header without trusted proxy validation. Attacker...

6.9CVSS5.9AI score0.00192EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.14 views

PT-2026-47626

Impact Puma is vulnerable to source IP spoofing when set remote address proxy protocol: :v1 is enabled and persistent connections are used. PROXY protocol v1 is a connection-level protocol. Support was added to Puma in v5.5.0. A proxy sends one PROXY header at the beginning of a TCP connection,...

7.5CVSS5.6AI score0.00015EPSS
Exploits0References5
RubySec
RubySec
added 2026/05/27 12:0 a.m.11 views

Puma PROXY Protocol v1 Accepts Repeated Protocol Headers on Persistent Connections

Impact Puma is vulnerable to source IP spoofing when setremoteaddress proxyprotocol: :v1 is enabled and persistent connections are used. PROXY protocol v1 is a connection-level protocol. Support was added to Puma in v5.5.0. A proxy sends one PROXY header at the beginning of a TCP connection, befo...

5.6AI score0.00015EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/12/30 12:16 p.m.5 views

OESA-2025-2858 cpp-httplib security update

A C++11 single-file header-only cross platform HTTP/HTTPS library. It's extremely easy to setup. Just include httplib.h file in your code! Security Fixes: cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled...

10CVSS7AI score0.00307EPSS
Exploits2References3
OSV
OSV
added 2024/06/07 8:2 p.m.4 views

GHSA-XFFP-6W68-4775 Zendframework Remote Address Spoofing Vector in `Zend\Http\PhpEnvironment\RemoteAddress`

The Zend\Http\PhpEnvironment\RemoteAddress class provides features around detecting the internet protocol IP address for an incoming proxied request via the X-Forwarded-For header, taking into account a provided list of trusted proxy server IPs. Prior to 2.2.5, the class was not taking into accou...

7.5CVSS7AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/06/07 8:2 p.m.19 views

Zendframework Remote Address Spoofing Vector in `Zend\Http\PhpEnvironment\RemoteAddress`

The Zend\Http\PhpEnvironment\RemoteAddress class provides features around detecting the internet protocol IP address for an incoming proxied request via the X-Forwarded-For header, taking into account a provided list of trusted proxy server IPs. Prior to 2.2.5, the class was not taking into accou...

7AI score
Exploits0References4Affected Software1
Friends Of PHP
Friends Of PHP
added 2013/10/31 10:35 a.m.8 views

Potential Remote Address Spoofing Vector in Zend\Http\PhpEnvironment\RemoteAddress

More info at https://framework.zend.com/security/advisory/ZF2013-04...

7.2AI score
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2008/06/16 11:41 p.m.28 views

CVE-2008-2723

embed.php in Menalto Gallery before 2.2.5 allows remote attackers to obtain the full path via unknown vectors related to "spoofing the remote address."...

5CVSS5.9AI score0.01522EPSS
Exploits0References1
Cvelist
Cvelist
added 2008/06/16 11:0 p.m.23 views

CVE-2008-2723

embed.php in Menalto Gallery before 2.2.5 allows remote attackers to obtain the full path via unknown vectors related to "spoofing the remote address."...

6.2AI score0.01522EPSS
Exploits0References7
Rows per page
Query Builder