12454 matches found
Ruby on Rails - Open Redirect via Host Header Injection
Ruby on Rails action pack before 6.1.2.1, 6.0.3.5 contains an open redirect caused by special crafted Host headers in combination with allowed host formats, letting attackers redirect users to malicious websites, exploit requires attacker to control Host headers. id: CVE-2021-22881 info: name: Ru...
CVE-2026-61439
creationtimestamp| type| source ---|---|--- 2026-07-11 14:29:50+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqeuscng642d 2026-07-11 15:02:03+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mqewlowpp32d 2026-07-11 16:22:33+00:00| seen|...
CVE-2026-4661
creationtimestamp| type| source ---|---|--- 2026-07-11 07:38:03+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqe5rxtqrn2e 2026-07-11 07:50:05+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqe6hic4ql2k 2026-07-11 08:00:38+00:00| seen|...
CVE-2026-13461
creationtimestamp| type| source ---|---|--- 2026-07-10 21:14:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqd2wabcgv22...
CVE-2026-11992
creationtimestamp| type| source ---|---|--- 2026-07-10 21:05:54+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqd2hn2jul2d 2026-07-10 21:05:55+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mqd2ho65xv2o...
CVE-2025-3110
creationtimestamp| type| source ---|---|--- 2026-07-10 20:02:11+00:00| seen| https://bsky.app/profile/bootintel.bsky.social/post/3mqcwvoh5dv26...
CVE-2026-2397
creationtimestamp| type| source ---|---|--- 2026-07-10 18:50:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqcsuqvxt52v 2026-07-11 00:15:08+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdezymksw2w 2026-07-11 18:00:55+00:00| seen|...
CVE-2026-13247
creationtimestamp| type| source ---|---|--- 2026-07-10 12:01:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqc3zimgbx25 2026-07-10 13:22:48+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcaljdi6z2y 2026-07-10 21:32:04+00:00| seen|...
CVE-2026-55490
creationtimestamp| type| source ---|---|--- 2026-07-10 00:02:34+00:00| seen| https://bsky.app/profile/bootintel.bsky.social/post/3mqatulwmip2n...
CVE-2026-8996
creationtimestamp| type| source ---|---|--- 2026-07-09 23:09:50+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqaqwcx4mf2y...
CVE-2026-47829
creationtimestamp| type| source ---|---|--- 2026-07-09 08:26:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq77krzyza2e 2026-07-09 17:36:07+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqa6blpc522y...
CVE-2026-15112
creationtimestamp| type| source ---|---|--- 2026-07-09 01:30:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116887429378642543 2026-07-09 01:30:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mq6icwy3iv23 2026-07-09 04:45:15+00:00| seen|...
CVE-2026-8801
creationtimestamp| type| source ---|---|--- 2026-07-08 22:13:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq65cl2ju42g 2026-07-09 19:26:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqaeg6yw7v2h 2026-07-10 19:56:03+00:00| seen|...
CVE-2026-53634
creationtimestamp| type| source ---|---|--- 2026-07-08 22:12:23+00:00| seen| https://gist.github.com/alon710/f5073530cad3dd719e641dcee2ba88b8...
CVE-2019-10658
creationtimestamp| type| source ---|---|--- 2026-07-08 12:37:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mq553y2np223 2026-07-08 12:37:07+00:00| seen| https://bsky.app/profile/potato.software/post/3mq553zg7nw2t...
CVE-2026-57251
creationtimestamp| type| source ---|---|--- 2026-07-08 12:31:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq54sobdmj2t...
CVE-2026-49033
creationtimestamp| type| source ---|---|--- 2026-07-08 00:22:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq3tzxvs5x2q...
CVE-2021-25150
creationtimestamp| type| source ---|---|--- 2026-07-07 20:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mq3frplwgy22...
Malicious code in evm-typechain (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a78b4d04410e295cbe340c95e6800a0777717d46ce136f0c30b5593d1bd9738 On require, index.js issues an HTTPS GET to https://www.jsonkeeper.com/b/PC5CK, passes the returned JSON cookie field to new Function'require',..., a...
Malicious code in rnx-align-deps (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fd85779926afc494fd03f154fa151e30ee831b5aa8f260e01b29ee8f7a676d5 No a static rule matches and no behavioral findings were produced for this package version. There is no evidence of credential access, network...