Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.19 views

EUVD-2021-0751

Malware in sbrugna...

9.8CVSS9.3AI score0.02949EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 3:26 p.m.9 views

CVE-2020-28360

Insufficient RegEx in private-ip npm package v1.0.5 and below insufficiently filters reserved IP ranges resulting in indeterminate SSRF. An attacker can perform a large range of requests to ARIN reserved IP ranges, resulting in an indeterminable number of critical attack vectors, allowing remote...

9.8CVSS7.8AI score0.02949EPSS
Exploits0
Hacker One
Hacker One
added 2022/11/27 8:42 p.m.73 views

Cloudflare Public Bug Bounty: Using special IPv4-mapped IPv6 addresses to bypass local IP ban

Vulnerability description not provided...

7.1AI score
Exploits0
OSV
OSV
added 2021/04/13 3:18 p.m.21 views

GHSA-43CH-2H55-2VJ7 Server-Side Request Forgery in private-ip

Insufficient RegEx in private-ip npm package v1.0.5 and below insufficiently filters reserved IP ranges resulting in indeterminate SSRF. An attacker can perform a large range of requests to ARIN reserved IP ranges, resulting in an indeterminable number of critical attack vectors, allowing remote...

9.8CVSS9.7AI score0.02949EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2021/04/13 3:18 p.m.46 views

Server-Side Request Forgery in private-ip

Insufficient RegEx in private-ip npm package v1.0.5 and below insufficiently filters reserved IP ranges resulting in indeterminate SSRF. An attacker can perform a large range of requests to ARIN reserved IP ranges, resulting in an indeterminable number of critical attack vectors, allowing remote...

9.8CVSS9.4AI score0.02949EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2020/11/23 8:33 p.m.56 views

CVE-2020-28360

CVE-2020-28360 describes an SSRF vulnerability in the npm package private-ip (versions 1.0.5 and earlier). The root cause is an insufficient RegEx filter for reserved IP ranges, allowing an attacker to craft requests to ARIN/other reserved ranges, which can lead to remote server-side resource req...

9.8CVSS9.7AI score0.02949EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder