Lucene search
+L

52 matches found

osv
osv
added 2026/03/20 2:41 p.m.13 views

GHSA-M547-HP4W-J6JX Vikunja has a Rate-Limit Bypass for Unauthenticated Users via Spoofed Headers

Summary Unauthenticated users are able to bypass the application's built-in rate-limits by spoofing the X-Forwarded-For or X-Real-IP headers due to the rate-limit relying on the value of echo.Context.RealIP. Details In the first file below, the rate-limit for unauthenticated users can be observed...

5.3CVSS5.9AI score0.00328EPSS
Exploits1References5
cvelist
cvelist
added 2026/03/20 2:39 p.m.22 views

CVE-2026-29794 Vikunja has Rate-Limit Bypass for Unauthenticated Users via Spoofed Headers

Vikunja is an open-source self-hosted task management platform. Starting in version 0.8 and prior to version 2.2.0, unauthenticated users are able to bypass the application's built-in rate-limits by spoofing the X-Forwarded-For or X-Real-IP headers due to the rate-limit relying on the value of...

5.3CVSS0.00328EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2026/03/20 2:39 p.m.5 views

CVE-2026-29794 Vikunja has Rate-Limit Bypass for Unauthenticated Users via Spoofed Headers

Vikunja is an open-source self-hosted task management platform. Starting in version 0.8 and prior to version 2.2.0, unauthenticated users are able to bypass the application's built-in rate-limits by spoofing the X-Forwarded-For or X-Real-IP headers due to the rate-limit relying on the value of...

5.3CVSS5.8AI score0.00328EPSS
Exploits1References2
osv
osv
added 2026/03/20 2:39 p.m.10 views

CVE-2026-29794 Vikunja has Rate-Limit Bypass for Unauthenticated Users via Spoofed Headers

Vikunja is an open-source self-hosted task management platform. Starting in version 0.8 and prior to version 2.2.0, unauthenticated users are able to bypass the application's built-in rate-limits by spoofing the X-Forwarded-For or X-Real-IP headers due to the rate-limit relying on the value of...

5.3CVSS6.3AI score0.00328EPSS
Exploits1References4
cve
cve
added 2026/03/20 2:39 p.m.20 views

CVE-2026-29794

Vikunja (open-source self-hosted task management) before version 2.2.0 is affected by a rate-limit bypass vulnerability. The issue arises because rate-limiting is enforced using (echo.Context).RealIP, and unauthenticated requests can spoof headers X-Forwarded-For or X-Real-IP to bypass limits. Th...

5.3CVSS5.8AI score0.00328EPSS
Exploits1References2Affected Software1
gitlab
gitlab
added 2026/03/20 12:0 a.m.26 views

Vikunja has a Rate-Limit Bypass for Unauthenticated Users via Spoofed Headers

Unauthenticated users are able to bypass the application's built-in rate-limits by spoofing the X-Forwarded-For or X-Real-IP headers due to the rate-limit relying on the value of echo.Context.RealIP...

5.3CVSS5.8AI score0.00328EPSS
Exploits1References5Affected Software1
cve
cve
added 2026/03/16 11:53 a.m.11 views

CVE-2025-69240

Raytha CMS contains a vulnerability where an attacker can spoof X-Forwarded-Host or Host headers to direct a password reset email to a attacker-controlled domain. If a victim clicks the reset link, the token is exposed to the attacker, enabling password reset and account takeover. The issue is do...

8.8CVSS5.8AI score0.0015EPSS
Exploits0References2Affected Software1
redhatcve
redhatcve
added 2026/03/07 1:44 a.m.5 views

CVE-2026-28465

OpenClaw's voice-call plugin versions before 2026.2.3 contain an improper authentication vulnerability in webhook verification that allows remote attackers to bypass verification by supplying untrusted forwarded headers. Attackers can spoof webhook events by manipulating Forwarded or X-Forwarded-...

8.2CVSS5.8AI score0.00374EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/02/03 4:6 p.m.1 views

CVE-2026-21862 RustFS sourceIp bypass via spoofed X-Forwarded-For/Real-IP headers

RustFS is a distributed object storage system built in Rust. Prior to version alpha.78, IP-based access control can be bypassed: getconditionvalues trusts client-supplied X-Forwarded-For/X-Real-Ip without verifying a trusted proxy, so any reachable client can spoof aws:SourceIp and satisfy...

8.7CVSS5.3AI score0.00211EPSS
Exploits0References1
cve
cve
added 2026/02/03 4:6 p.m.17 views

CVE-2026-21862

RustFS had an authorization bypass vulnerability in IP-based access control prior to alpha.78. The get_condition_values logic trusts client-supplied X-Forwarded-For/X-Real-IP without proxy verification, allowing reachable clients to spoof aws:SourceIp and defeat IP allowlists. This can enable una...

8.7CVSS5.3AI score0.00211EPSS
Exploits0References1Affected Software1
osv
osv
added 2026/02/03 11:39 a.m.5 views

CVE-2026-1664 Insecure Direct Object Reference (IDOR) via Header-Based Email Routing

Summary An Insecure Direct Object Reference has been found to exist in createHeaderBasedEmailResolver function within the Cloudflare Agents SDK. The issue occurs because the Message-ID and References headers are parsed to derive the target agentName and agentId without proper validation or origin...

6.9CVSS6AI score0.00366EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/02/03 12:0 a.m.3 views

PT-2026-6412

Summary IP-based access control can be bypassed: get condition values trusts client-supplied X-Forwarded-For/X-Real-Ip without verifying a trusted proxy, so any reachable client can spoof aws:SourceIp and satisfy IP-allowlist policies. Details - Vulnerable code: rustfs/src/auth.rs:289-304 sets...

8.7CVSS5.6AI score0.00211EPSS
Exploits0References5
osv
osv
added 2026/01/08 2:15 a.m.4 views

DEBIAN-CVE-2026-21881

Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is vulnerable to a critical authentication bypass when REVERSEPROXYAUTH is enabled. The application blindly trusts HTTP headers for user authentication without verifying the request originated from a...

9.1CVSS5.5AI score0.00433EPSS
Exploits2References1
vulnrichment
vulnrichment
added 2026/01/08 1:8 a.m.4 views

CVE-2026-21881 Kanboard is Vulnerable to Reverse Proxy Authentication Bypass

Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is vulnerable to a critical authentication bypass when REVERSEPROXYAUTH is enabled. The application blindly trusts HTTP headers for user authentication without verifying the request originated from a...

9.1CVSS6.6AI score0.00433EPSS
Exploits2References3
cvelist
cvelist
added 2026/01/08 1:8 a.m.28 views

CVE-2026-21881 Kanboard is Vulnerable to Reverse Proxy Authentication Bypass

Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is vulnerable to a critical authentication bypass when REVERSEPROXYAUTH is enabled. The application blindly trusts HTTP headers for user authentication without verifying the request originated from a...

9.1CVSS0.00433EPSS
Exploits2References3
debiancve
debiancve
added 2026/01/08 1:8 a.m.4 views

CVE-2026-21881

Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is vulnerable to a critical authentication bypass when REVERSEPROXYAUTH is enabled. The application blindly trusts HTTP headers for user authentication without verifying the request originated from a...

9.1CVSS5.5AI score0.00433EPSS
Exploits2
nessus
nessus
added 2026/01/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-21881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is vulnerable to a critical authentication bypass when...

9.1CVSS7AI score0.00433EPSS
Exploits2References2
ptsecurity
ptsecurity
added 2026/01/08 12:0 a.m.13 views

PT-2026-2118

Name of the Vulnerable Software and Affected Versions Kanboard versions 1.2.48 and below Description Kanboard is project management software based on the Kanban methodology. When the REVERSE PROXY AUTH setting is enabled, the application does not properly verify the source of HTTP headers used fo...

9.1CVSS6.9AI score0.00433EPSS
Exploits2References15
euvd
euvd
added 2025/12/12 12:30 a.m.4 views

EUVD-2024-55343

xbtitFM 4.1.18 contains an insecure file upload vulnerability that allows authenticated attackers with administrative privileges to upload and execute arbitrary PHP code through the filehosting feature. Attackers can bypass file type restrictions by modifying the Content-Type header to image/gif,...

8.6CVSS7.2AI score0.00533EPSS
Exploits1References4
nvd
nvd
added 2025/12/05 7:15 p.m.4 views

CVE-2025-66577

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can supply X-Forwarded-For or X-Real-IP headers which...

5.3CVSS0.0024EPSS
Exploits1References2
Rows per page
Query Builder