Lucene search
+L

198 matches found

RedHat Linux
RedHat Linux
added 2022/11/02 10:40 a.m.5 views

cxf: OAuth 2 authorization service vulnerable to DDos attacks

CXF supports via JwtRequestCodeFilter passing OAuth 2 parameters via a JWT token as opposed to query parameters see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request JAR. Instead of sending a JWT token as a "request" parameter, the spec also supports specifying a URI from...

7.5CVSS7.4AI score0.06593EPSS
Exploits0References5
OSV
OSV
added 2022/07/25 1:15 p.m.5 views

CVE-2022-2189

The WP Video Lightbox WordPress plugin before 1.9.5 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

6.1CVSS5.8AI score0.0054EPSS
Exploits1References1
OSV
OSV
added 2022/07/17 11:15 a.m.5 views

CVE-2022-2187

The Contact Form 7 Captcha WordPress plugin before 0.1.2 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

6.1CVSS5.8AI score0.01428EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/06/13 1:15 p.m.7 views

CVE-2022-1756

The Newsletter WordPress plugin before 7.4.5 does not sanitize and escape the $SERVER'REQUESTURI' before echoing it back in admin pages. Although this uses addslashes, and most modern browsers automatically URLEncode requests, this is still vulnerable to Reflected XSS in older browsers such as...

6.1CVSS5.8AI score0.01785EPSS
Exploits2References3
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.30 views

WordPress plugin Newsletter 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.1CVSS5.7AI score0.01785EPSS
Exploits2References4
CNVD
CNVD
added 2022/06/09 12:0 a.m.34 views

WordPress WP Statistics Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of WordPress prior to WP Statistics 13.2....

6.1CVSS1.7AI score0.00857EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/06/08 10:15 a.m.9 views

CVE-2022-1005

The WP Statistics WordPress plugin before 13.2.2 does not sanitise the REQUESTURI parameter before outputting it back in the rendered page, leading to Cross-Site Scripting XSS in web browsers which do not encode characters...

6.1CVSS6.3AI score0.00857EPSS
Exploits2References2
CNNVD
CNNVD
added 2022/06/08 12:0 a.m.6 views

WordPress plugin WP Statistics 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of WordPress prior to WP Statistics 13.2....

6.1CVSS5.3AI score0.00857EPSS
Exploits2References2
OSV
OSV
added 2022/05/24 5:36 p.m.37 views

GHSA-JH7Q-5MWF-QVHW Keycloak vulnerable to Server-Side Request Forgery

A flaw was found in Keycloak before 13.0.0, where it is possible to force the server to call out an unverified URL using the OIDC parameter requesturi. This flaw allows an attacker to use this parameter to execute a Server-side request forgery SSRF attack...

5.3CVSS4.9AI score0.69724EPSS
Exploits5References8
RedHat Linux
RedHat Linux
added 2022/05/10 2:0 p.m.6 views

apache-httpclient: incorrect handling of malformed authority component in request URIs

Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution...

5.3CVSS7.2AI score0.08665EPSS
Exploits1References5
OSV
OSV
added 2022/04/04 4:15 p.m.6 views

CVE-2022-0901

The Ad Inserter Free and Pro WordPress plugins before 2.7.12 do not sanitise and escape the REQUESTURI before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters...

6.1CVSS6.4AI score0.03541EPSS
Exploits4References2
CNNVD
CNNVD
added 2022/04/04 12:0 a.m.8 views

WordPress plugins Ad Inserter Free and Pro 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platforms developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress Ad Inserter Free and Pro plugin has a cross-site scripting vulnerability that stems from the fact that before the request U...

6.1CVSS5.3AI score0.03541EPSS
Exploits4References4
Veracode
Veracode
added 2022/02/22 5:14 a.m.18 views

Open Redirect

rudloff/alltube is vulnerable to open redirect. An attacker can redirect users to malicious URLs through the REQUESTURI parameter in index.php...

6.1CVSS3.8AI score0.03378EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/02/04 8:15 p.m.4 views

CVE-2022-24129

The OIDC OP plugin before 3.0.4 for Shibboleth Identity Provider allows server-side request forgery SSRF due to insufficient restriction of the requesturi parameter. This allows attackers to interact with arbitrary third-party HTTP services...

8.2CVSS7.4AI score0.06139EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.5 views

Shibboleth 代码问题漏洞

Shibboleth is an open source SAML-based Web single sign-on system for Windows platforms from Shibboleth, UK. A security vulnerability exists in the Shibboleth Identity Provider, which stems from an under-restricted requesturi parameter, in the OIDC OP plugin for the Shibboleth Identity Provider...

8.2CVSS7.9AI score0.06139EPSS
Exploits1References4
WPVulnDB
WPVulnDB
added 2022/01/11 12:0 a.m.8 views

Adaptive Images < 0.6.69 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the REQUESTURI before outputting it back in a page, leading to a Reflected Cross-Site Scripting issue PoC https://example.com/wp-content/plugins/adaptive-images/adaptive-images-script.php/%3Cimg/src/onerror=alert/XSS/%3E/?debug=true...

0.3AI score
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2021/12/14 9:31 p.m.6 views

cxf: OAuth 2 authorization service vulnerable to DDos attacks

CXF supports via JwtRequestCodeFilter passing OAuth 2 parameters via a JWT token as opposed to query parameters see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request JAR. Instead of sending a JWT token as a "request" parameter, the spec also supports specifying a URI from...

7.5CVSS7.4AI score0.06593EPSS
Exploits0References5
Veracode
Veracode
added 2021/11/24 1:18 p.m.30 views

Remote Code Execution (RCE)

spring-cloud-netflix-hystrix-dashboard is vulnerable to remote code execution. Lack of secure validation of request URI path allows an attacker to send a malicious request at /hystrix/monitor;user-provided data,causing execution of malicious code because path elements following hystrix/monitor ar...

8.8CVSS4.2AI score0.13035EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2021/11/22 9:15 a.m.29 views

CVE-2021-43557

The uri-block plugin in Apache APISIX before 2.10.2 uses $requesturi without verification. The $requesturi is the full original request URI without normalization. This makes it possible to construct a URI to bypass the block list on some occasions. For instance, when the block list contains...

7.5CVSS0.14589EPSS
Exploits1References4
Cvelist
Cvelist
added 2021/11/19 3:56 p.m.76 views

CVE-2021-22053

Applications using both spring-cloud-netflix-hystrix-dashboard and spring-boot-starter-thymeleaf expose a way to execute code submitted within the request URI path during the resolution of view templates. When a request is made at /hystrix/monitor;user-provided data, the path elements following...

9.2AI score0.13035EPSS
Exploits0References1
Rows per page
Query Builder