Lucene search
+L

49 matches found

SUSE CVE
SUSE CVE
added 2024/07/03 3:14 a.m.4 views

SUSE CVE-2024-39573

Potential SSRF in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by modproxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

6.5CVSS8.6AI score0.35447EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/01/01 2:18 p.m.27 views

CVE-2023-5877 affiliate-toolkit < 3.4.3 - Unauthenticated SSRF

The affiliate-toolkit WordPress plugin before 3.4.3 lacks authorization and authentication for requests to it's affiliate-toolkit-starter/tools/atkpimagereceiver.php endpoint, allowing unauthenticated visitors to make requests to arbitrary URL's, including RFC1918 private addresses, leading to a...

9.9AI score0.00898EPSS
Exploits2References1
OSV
OSV
added 2022/09/12 7:6 a.m.12 views

SUSE-SU-2022:3250-1 Security update for nodejs16

This update for nodejs16 fixes the following issues: - CVE-2022-35949: Fixed SSRF when an application takes in user input into the path/pathname option of undici.request bsc1202382. - CVE-2022-35948: Fixed CRLF injection via Content-Type bsc1202383. - CVE-2022-29244: Fixed npm pack ignores...

9.8CVSS6.8AI score0.03465EPSS
Exploits3References10
Prion
Prion
added 2022/04/18 6:15 p.m.17 views

Server side request forgery (ssrf)

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs...

6.5CVSS6.8AI score0.01313EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2020/12/30 2:15 a.m.8 views

CVE-2020-35850

An SSRF issue was discovered in cockpit-project.org Cockpit 234. NOTE: this is unrelated to the Agentejo Cockpit product. NOTE: the vendor states "I don't think it is a big real-life issue...

6.5CVSS6.3AI score
Exploits0References2
exploitpack
exploitpack
added 2016/03/15 12:0 a.m.15 views

Kaltura Community Edition 11.1.0-2 - Multiple Vulnerabilities

Kaltura Community Edition 11.1.0-2 - Multiple Vulnerabilities , , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /| / \ /||| / / /.-. / /:wq x.0 '=.|w|.=' =''"''=. presents.. Kaltura Community Edition Multiple Vulnerabilities Affected versions: Kaltura Community...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2016/03/12 12:0 a.m.20 views

Kaltura Community Edition 11.1.0-2 Code Execution / File Upload / File Read

, , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /| / \ /||| / / /.-. / /:wq x.0 '=.|w|.=' =''"''=. presents.. Kaltura Community Edition Multiple Vulnerabilities Affected versions: Kaltura Community Edition =11.1.0-2 PDF:...

Exploits0
Prion
Prion
added 2013/07/08 8:55 p.m.35 views

Server side request forgery (ssrf)

The HTTP API in WordPress before 3.5.2 allows remote attackers to send HTTP requests to intranet servers via unspecified vectors, related to a Server-Side Request Forgery SSRF issue, a similar vulnerability to CVE-2013-0235...

4.3CVSS7.3AI score0.28857EPSS
Exploits3References4Affected Software1
Debian CVE
Debian CVE
added 2013/07/08 8:0 p.m.48 views

CVE-2013-2199

The HTTP API in WordPress before 3.5.2 allows remote attackers to send HTTP requests to intranet servers via unspecified vectors, related to a Server-Side Request Forgery SSRF issue, a similar vulnerability to CVE-2013-0235...

4.3CVSS5.3AI score0.02044EPSS
Exploits0
Rows per page
Query Builder