7 matches found
CVE-2024-5482 SSRF in add_webpage endpoint in parisneo/lollms-webui
A Server-Side Request Forgery SSRF vulnerability exists in the 'addwebpage' endpoint of the parisneo/lollms-webui application, affecting the latest version. The vulnerability arises because the application does not adequately validate URLs entered by users, allowing them to input arbitrary URLs,...
CVE-2024-5482
CVE-2024-5482 describes a Server-Side Request Forgery in the Parisneo/Lollms-WebUI - specifically the add_webpage/add webpage endpoint. The issue arises from insufficient URL validation, allowing attackers to supply arbitrary URLs (including localhost/127.0.0.1) and trigger unauthorized requests ...
CVE-2024-5482 SSRF in add_webpage endpoint in parisneo/lollms-webui
A Server-Side Request Forgery SSRF vulnerability exists in the 'addwebpage' endpoint of the parisneo/lollms-webui application, affecting the latest version. The vulnerability arises because the application does not adequately validate URLs entered by users, allowing them to input arbitrary URLs,...
What Is Programmatic Advertising And How To Use It
By Owais Sultan Programmatic is an advertising format on third-party resources, where placement is done automatically through special advertising platforms where… This is a post from HackRead.com Read the original post: What Is Programmatic Advertising And How To Use It...
CVE-2020-27611
BigBlueButton through 2.2.28 uses STUN/TURN resources from a third party, which may represent an unintended endpoint...
Code injection
BigBlueButton through 2.2.28 uses STUN/TURN resources from a third party, which may represent an unintended endpoint...
Vanilla: Stealing the ip addres from users
Hi team! Summary Pixel that steals your data. By creating an image in https://iplogger.org/ and inserting it in the forum we can steal some data ip, language, geo location of the users who see the message. Steps to reproduce + Set "wyswyg" on + Create an image from https://iplogger.org/ and use t...