Lucene search
K

6 matches found

NVD
NVD
added 6 days ago9 views

CVE-2026-2053

The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently validate or restrict user-controlled input within these headers. This omission allows an attacker to manipulate WS-Addressing headers to specify arbitrary destinations for server-initiated...

10CVSS0.00222EPSS
Exploits0References1
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-39638

The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently validate or restrict user-controlled input within these headers. This omission allows an attacker to manipulate WS-Addressing headers to specify arbitrary destinations for server-initiated...

8.3CVSS5.9AI score0.00222EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 6 days ago11 views

PT-2026-52667

Name of the Vulnerable Software and Affected Versions WSO2 API Manager affected versions not specified Description The message flow component fails to sufficiently validate or restrict user-controlled input within WS-Addressing headers. This allows an unauthenticated attacker to manipulate these...

10CVSS5.9AI score0.00222EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/02/12 9:42 p.m.22 views

CVE-2026-26075 Cross-Site Request Forgery (CSRF) in FastGPT

FastGPT is an AI Agent building platform. Due to the fact that FastGPT's web page acquisition nodes, HTTP nodes, etc. need to initiate data acquisition requests from the server, there are certain security issues. In addition to implementing internal network isolation in the deployment environment...

6.9CVSS0.00101EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/12 12:0 a.m.7 views

FastGPT 跨站请求伪造漏洞

FastGPT is an open-source knowledge base question-answering system based on large language models developed by Labring. Versions of FastGPT prior to 4.14.7 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from the fact that the web scraping node and HTTP nodes...

6.9CVSS5.8AI score0.00101EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-5003

Malware in sbrugna...

5CVSS6.4AI score0.02025EPSS
Exploits0References9
Rows per page
Query Builder