Lucene search
+L

425 matches found

OSV
OSV
added 2025/10/23 3:15 p.m.5 views

CVE-2025-61136

A Host Header Injection vulnerability in the password reset component in axewater sharewarez v2.4.3 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of the Host header when Flask's urlforexternal=True generates reset links without a fixed SERVERNAM...

7.1CVSS5.8AI score0.0041EPSS
Exploits0References5
NVD
NVD
added 2025/10/23 3:15 p.m.7 views

CVE-2025-61136

A Host Header Injection vulnerability in the password reset component in axewater sharewarez v2.4.3 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of the Host header when Flask's urlforexternal=True generates reset links without a fixed SERVERNAM...

7.1CVSS0.0041EPSS
Exploits0References5
OSV
OSV
added 2025/10/23 3:15 p.m.9 views

CVE-2025-61132

A Host Header Injection vulnerability in the password reset component in levlaz braindump v0.4.14 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of the Host header when Flask's urlforexternal=True generates reset links without a fixed SERVERNAME...

7.1CVSS5.8AI score0.0034EPSS
Exploits0References5
CVE
CVE
added 2025/10/23 12:0 a.m.11 views

CVE-2025-61136

The CVE-2025-61136 entry describes a Host Header Injection vulnerability in the password reset component of axewater sharewarez v2.4.3. The underlying issue is an unfixed SERVER_NAME causing Flask url_for(_external=True) to generate reset links that can be manipulated via the Host header, enablin...

7.1CVSS6.9AI score0.0041EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/23 12:0 a.m.4 views

SharewareZ 安全漏洞

SharewareZ is a game folder conversion tool by Axe Personal Developers. A security vulnerability exists in SharewareZ version 2.4.3, which stems from an unfixed SERVERNAME in the password reset component, which could lead to password reset poisoning and account takeover...

7.1CVSS6.8AI score0.0041EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/10/23 12:0 a.m.4 views

CVE-2025-61132

A Host Header Injection vulnerability in the password reset component in levlaz braindump v0.4.14 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of the Host header when Flask's urlforexternal=True generates reset links without a fixed SERVERNAME...

6.9AI score0.0034EPSS
Exploits0References5
CVE
CVE
added 2025/10/23 12:0 a.m.22 views

CVE-2025-61132

CVE-2025-61132 describes a Host Header Injection in the password reset component of levlaz braindump v0.4.14. The vulnerability arises when Flask’s url_for(_external=True) generates reset links without a fixed SERVER_NAME, allowing an attacker to manipulate the Host header to perform password res...

7.1CVSS6.9AI score0.0034EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-0120

Malware in sbrugna...

1.9CVSS5.7AI score0.00404EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-7188

Malware in sbrugna...

4.3CVSS5AI score0.00343EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-7192

Malware in sbrugna...

4.3CVSS5AI score0.00343EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-14368

Malware in sbrugna...

5.5CVSS5.8AI score0.00613EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-3262

Malware in sbrugna...

4.3CVSS6.1AI score0.01679EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-1514

Malware in sbrugna...

7.5CVSS6.4AI score0.05786EPSS
Exploits2References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-21399

Malware in sbrugna...

8.6CVSS6AI score0.01684EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-1999-1340

Malware in sbrugna...

7.5CVSS6.4AI score0.03934EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-1551

Malware in sbrugna...

7.2CVSS6.4AI score0.00333EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-1219

Malware in sbrugna...

6.4CVSS6.1AI score0.01899EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2004-0345

Malware in sbrugna...

10CVSS6.4AI score0.06016EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-56423

Malicious code in bioql PyPI...

6.9CVSS5.8AI score0.00358EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-37267

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00344EPSS
Exploits0References1
Rows per page
Query Builder