Lucene search
K

77 matches found

Debian CVE
Debian CVE
added 2021/03/13 8:19 p.m.12 views

CVE-2021-28373

The authinternal plugin in Tiny Tiny RSS aka tt-rss before 2021-03-12 allows an attacker to log in via the OTP code without a valid password. NOTE: this issue only affected the git master branch for a short time. However, all end users are explicitly directed to use the git master branch in...

7.5CVSS7.6AI score0.00934EPSS
Exploits0
Cvelist
Cvelist
added 2021/03/13 8:19 p.m.21 views

CVE-2021-28373

The authinternal plugin in Tiny Tiny RSS aka tt-rss before 2021-03-12 allows an attacker to log in via the OTP code without a valid password. NOTE: this issue only affected the git master branch for a short time. However, all end users are explicitly directed to use the git master branch in...

7.7AI score0.00934EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/03/13 12:0 a.m.5 views

Tiny Tiny RSS 安全漏洞

Tiny Tiny RSStt-rss,tt-rss is an open source based browser-based news feed reader and aggregator. Tiny Tiny RSS before 2021-03-12 A security vulnerability exists that allows an attacker to log in via OTP code without a valid password...

7.5CVSS7.5AI score0.00934EPSS
Exploits0References3
0day.today
0day.today
added 2021/03/02 12:0 a.m.139 views

Tiny Tiny RSS - Remote Code Execution Exploit

Exploit Title: Tiny Tiny RSS - Remote Code Execution Exploit Author: Daniel Neagaru & Benjamin Nadarević Blog post: https://www.digeex.de/blog/tinytinyrss/ Software Link: https://git.tt-rss.org/fox/tt-rss Version: all before 2020-09-16 Commit with the fixes:...

10CVSS9.6AI score0.18417EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/03/02 12:0 a.m.232 views

Tiny Tiny RSS - Remote Code Execution

Exploit Title: Tiny Tiny RSS - Remote Code Execution Date: 21/09/2020 Exploit Author: Daniel Neagaru & Benjamin Nadarević Blog post: https://www.digeex.de/blog/tinytinyrss/ Software Link: https://git.tt-rss.org/fox/tt-rss Version: all before 2020-09-16 Commit with the fixes:...

10CVSS9.6AI score0.18417EPSS
Exploits4
OSV
OSV
added 2020/09/19 9:15 p.m.3 views

DEBIAN-CVE-2020-25789

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS6.8AI score0.00883EPSS
Exploits0References1
NVD
NVD
added 2020/09/19 9:15 p.m.14 views

CVE-2020-25789

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS0.00883EPSS
Exploits0References3
OSV
OSV
added 2020/09/19 9:15 p.m.7 views

CVE-2020-25789

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS6.7AI score
Exploits0References3
NVD
NVD
added 2020/09/19 9:15 p.m.33 views

CVE-2020-25787

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. It does not validate all URLs before requesting them...

10CVSS0.18417EPSS
Exploits4References4
NVD
NVD
added 2020/09/19 9:15 p.m.15 views

CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS0.01193EPSS
Exploits0References3
OSV
OSV
added 2020/09/19 9:15 p.m.7 views

CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS8AI score
Exploits0References3
OSV
OSV
added 2020/09/19 9:15 p.m.2 views

DEBIAN-CVE-2020-25787

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. It does not validate all URLs before requesting them...

9.8CVSS8.6AI score0.18417EPSS
Exploits4References1
OSV
OSV
added 2020/09/19 9:15 p.m.7 views

CVE-2020-25787

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. It does not validate all URLs before requesting them...

9.8CVSS9.4AI score
Exploits0References4
OSV
OSV
added 2020/09/19 9:15 p.m.2 views

DEBIAN-CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS7.9AI score0.01193EPSS
Exploits0References1
Prion
Prion
added 2020/09/19 9:15 p.m.14 views

Code injection

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

6.8CVSS7.9AI score0.01193EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/19 9:15 p.m.3 views

UBUNTU-CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS7.3AI score0.01193EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/09/19 9:15 p.m.16 views

CVE-2020-25789

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS6.8AI score0.00883EPSS
Exploits0References3
Prion
Prion
added 2020/09/19 9:15 p.m.13 views

Design/Logic Flaw

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

4.3CVSS6.4AI score0.00883EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/09/19 9:15 p.m.11 views

Design/Logic Flaw

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. It does not validate all URLs before requesting them...

10CVSS9.4AI score0.18417EPSS
Exploits4References3Affected Software1
UbuntuCve
UbuntuCve
added 2020/09/19 9:15 p.m.18 views

CVE-2020-25788

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message...

8.1CVSS7.2AI score0.01193EPSS
Exploits0References3
Rows per page
Query Builder