CVE-2025-27152 Possible SSRF and Credential Leakage via Absolute URL in axios Requests

axios is a promise based HTTP client for the browser and node.js. The issue occurs when passing absolute URLs rather than protocol-relative URLs to axios. Even if ⁠baseURL is set, axios sends the request to the specified absolute URL, potentially causing SSRF and credential leakage. This issue...

F5 Networks BIG-IP : OpenSSL vulnerability (K15356)

The dtls1reassemblefragment function in d1both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service buffer overflow a...

Proof of Concept for MS10-006 SMB Client-Side Bug

No description provided by source. More Info: http://g-laurent.blogspot.com/2010/04/turning-smb-client-bug-to-server-side.html import sys,SocketServer,socket,threading,time,random from random import from time import sleep from socket import if lensys.argv=2: sys.exit'Usage: pwn.py Yourip...

MS10-006 SMB Client-Side Bug PoC

Exploit for windows platform in category dos / poc ================================================= Proof of Concept for MS10-006 SMB Client-Side Bug ================================================= More Info: http://g-laurent.blogspot.com/2010/04/turning-smb-client-bug-to-server-side.html impo...