Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/05/20 7:57 p.m.9 views

CVE-2026-30118

scalar/astro v0.1.13 was discovered to contain a Server-Side Request Forgery SSRF in the scalarurl query parameter of the Scalar Proxy endpoint. This vulnerability allows unauthenticated attackers to force the backend server to send HTTP requests to attacker-controlled URLs, leading to...

9.8CVSS5.8AI score0.00471EPSS
Exploits0References1
NVD
NVD
added 2026/05/19 4:16 p.m.12 views

CVE-2026-30118

scalar/astro v0.1.13 was discovered to contain a Server-Side Request Forgery SSRF in the scalarurl query parameter of the Scalar Proxy endpoint. This vulnerability allows unauthenticated attackers to force the backend server to send HTTP requests to attacker-controlled URLs, leading to...

9.8CVSS0.00471EPSS
Exploits0References1
NVD
NVD
added 2026/05/19 4:16 p.m.12 views

CVE-2026-30117

scalar/astro v0.1.13 was discovered to contain an arbitrary file upload vulnerability in the the scalarurl query parameter of the Scalar Proxy endpoint. This vulnerability allows attackers to execute arbitrary code via uploading a crafted SVG file...

9.8CVSS0.00526EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/19 12:0 a.m.11 views

EUVD-2026-30944

scalar/astro v0.1.13 was discovered to contain an arbitrary file upload vulnerability in the the scalarurl query parameter of the Scalar Proxy endpoint. This vulnerability allows attackers to execute arbitrary code via uploading a crafted SVG file...

6.2AI score0.00526EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/19 12:0 a.m.7 views

CVE-2026-30118

scalar/astro v0.1.13 was discovered to contain a Server-Side Request Forgery SSRF in the scalarurl query parameter of the Scalar Proxy endpoint. This vulnerability allows unauthenticated attackers to force the backend server to send HTTP requests to attacker-controlled URLs, leading to...

5.8AI score0.00471EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.12 views

Scalar 安全漏洞

Scalar is an interactive API documentation and testing tool developed by Scalar OpenSource. Version 0.1.13 of Scalar contains a security vulnerability. This vulnerability stems from the scalarurl query parameter on the Scalar Proxy endpoint, which involves server-side request forgeing. This could...

9.8CVSS5.8AI score0.00471EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/19 12:0 a.m.10 views

EUVD-2026-30948

scalar/astro v0.1.13 was discovered to contain a Server-Side Request Forgery SSRF in the scalarurl query parameter of the Scalar Proxy endpoint. This vulnerability allows unauthenticated attackers to force the backend server to send HTTP requests to attacker-controlled URLs, leading to...

5.8AI score0.00471EPSS
Exploits0References1
CVE
CVE
added 2026/05/19 12:0 a.m.34 views

CVE-2026-30117

The CVE-2026-30117 entry affects scalar/astro v0.1.13, exposing an arbitrary file-upload vulnerability in the Scalar Proxy endpoint via the scalar_url parameter. This leads to remote code execution by uploading a crafted SVG file, as described across multiple sources. The CVSSv3.1 score is 9.8 (C...

9.8CVSS6.2AI score0.00526EPSS
Exploits0References1
CVE
CVE
added 2026/05/19 12:0 a.m.20 views

CVE-2026-30118

CVE-2026-30118 affects scalar/astro v0.1.13. The vulnerability is a Server-Side Request Forgery (SSRF) in the scalar_url query parameter of the Scalar Proxy endpoint. Unauthenticated attackers can coerce the backend to perform HTTP requests to attacker-controlled URLs, leading to exposure of auth...

9.8CVSS5.8AI score0.00471EPSS
Exploits0References1
Rows per page
Query Builder