Lucene search
K

121793 matches found

Debian CVE
Debian CVE
added 2026/03/27 4:13 p.m.5 views

CVE-2026-28367

A flaw was found in Undertow. A remote attacker can exploit this vulnerability by sending \r\r\r as a header block terminator. This can be used for request smuggling with certain proxy servers, such as older versions of Apache Traffic Server and Google Cloud Classic Application Load Balancer,...

9.1CVSS5.4AI score0.00706EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/03/27 4:13 p.m.4 views

CVE-2026-28369

A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, it incorrectly processes the request by stripping these leading spaces. This behavior, which violates HTTP standards, can be exploited by a remote attacker to perform...

9.1CVSS5.5AI score0.00677EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/03/27 4:13 p.m.5 views

CVE-2026-28368 Undertow: undertow: request smuggling via inconsistent header parsing

A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by Undertow compared to upstream proxies. This discrepancy in header interpretation can be exploited to launch request smuggling attacks,...

8.7CVSS5.9AI score0.00704EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/27 4:13 p.m.5 views

CVE-2026-28368

A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by Undertow compared to upstream proxies. This discrepancy in header interpretation can be exploited to launch request smuggling attacks,...

8.7CVSS5.9AI score0.00704EPSS
Exploits0References3
CVE
CVE
added 2026/03/27 4:13 p.m.39 views

CVE-2026-28368

A vulnerability (CVE-2026-28368) affects Undertow and involves a discrepancy in header parsing between Undertow and upstream proxies, enabling HTTP request smuggling. Reported across multiple sources (NVD, Debian/Ubuntu OSV, Circl, GitHub advisories, and Nessus plugin) with confirmed references t...

9.1CVSS5.9AI score0.00704EPSS
Exploits0References4Affected Software10
Cvelist
Cvelist
added 2026/03/27 4:13 p.m.25 views

CVE-2026-28368 Undertow: undertow: request smuggling via inconsistent header parsing

A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by Undertow compared to upstream proxies. This discrepancy in header interpretation can be exploited to launch request smuggling attacks,...

8.7CVSS0.00704EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/03/27 4:13 p.m.3 views

CVE-2026-28368

A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by Undertow compared to upstream proxies. This discrepancy in header interpretation can be exploited to launch request smuggling attacks,...

9.1CVSS5.4AI score0.00704EPSS
Exploits0
Cvelist
Cvelist
added 2026/03/27 4:9 p.m.21 views

CVE-2026-4961 Tenda AC6 POST Request QuickIndex formQuickIndex stack-based overflow

A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...

9CVSS0.00773EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/27 4:9 p.m.2 views

CVE-2026-4961 Tenda AC6 POST Request QuickIndex formQuickIndex stack-based overflow

A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...

9CVSS7.9AI score0.00773EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/27 4:9 p.m.3 views

CVE-2026-4960

A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed remotel...

9CVSS8AI score0.00773EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/27 4:9 p.m.7 views

CVE-2026-4960 Tenda AC6 POST Request WizardHandle fromWizardHandle stack-based overflow

A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed remotel...

9CVSS8AI score0.00773EPSS
Exploits1References5
NVD
NVD
added 2026/03/27 3:16 p.m.3 views

CVE-2026-30637

Server-Side Request Forgery SSRF vulnerability exists in the AnnounContent of the /admin/read.php in OTCMS V7.66 and before. The vulnerability allows remote attackers to craft HTTP requests, without authentication, containing a URL pointing to internal services or any remote server...

7.5CVSS0.00499EPSS
Exploits1References1
OSV
OSV
added 2026/03/27 2:31 p.m.8 views

CVE-2026-33766 AVideo has SSRF Protection Bypass via HTTP Redirect in Image Download Endpoints

WWBN AVideo is an open source video platform. In versions up to and including 26.0, isSSRFSafeURL validates URLs against private/reserved IP ranges before fetching, but urlgetcontents follows HTTP redirects without re-validating the redirect target. An attacker can bypass SSRF protection by...

5.3CVSS5.9AI score0.00233EPSS
Exploits1References4
CVE
CVE
added 2026/03/27 2:31 p.m.16 views

CVE-2026-33766

WWBN AVideo (open-source video platform) versions up to 26.0 are affected by an SSRF protection bypass in image-download endpoints. The root cause is that isSSRFSafeURL() validates the URL against private/reserved IP ranges at check-time, but url_get_contents() follows HTTP redirects without re-v...

6.5CVSS5.9AI score0.00233EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/27 2:26 p.m.9 views

CVE-2021-27113

An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/addRouting route. This could lead to Command Injection via Shell Metacharacters...

10CVSS7.4AI score0.03459EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/27 2:26 p.m.10 views

CVE-2021-27214

A Server-side request forgery SSRF vulnerability in the ProductConfig servlet in Zoho ManageEngine ADSelfService Plus through 6013 allows a remote unauthenticated attacker to perform blind HTTP requests or perform a Cross-site scripting XSS attack against the administrative interface via an HTTP...

10CVSS6.4AI score0.03287EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/27 2:24 p.m.43 views

CVE-2021-27715

An issue was discovered in MoFi Network MOFI4500-4GXeLTE-V2 3.5.6-xnet-5052 allows attackers to bypass the authentication and execute arbitrary code via crafted HTTP request...

9.8CVSS8.1AI score0.01056EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 2:23 p.m.9 views

CVE-2021-27931

LumisXP aka Lumis Experience Platform before 10.0.0 allows unauthenticated blind XXE via an API request to PageControllerXml.jsp. One can send a request crafted with an XXE payload and achieve outcomes such as reading local server files or denial of service...

9.1CVSS6.8AI score0.18607EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/27 1:53 p.m.4 views

EUVD-2026-16612

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, a path traversal vulnerability exists in Calibre' handling of images in Markdown and other similar text-based files allowing an attacker to include arbitrary files from the...

8.2CVSS5.9AI score0.00208EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/03/27 1:53 p.m.7 views

CVE-2026-33206

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, a path traversal vulnerability exists in Calibre' handling of images in Markdown and other similar text-based files allowing an attacker to include arbitrary files from the...

8.2CVSS5.5AI score0.00208EPSS
Exploits1
Rows per page
Query Builder