Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/06/05 6:0 p.m.8 views

CVE-2026-45748 Termix Vulnerable to Remote Code Execution via SSH Tunnel Forward Command Injection

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The POST /ssh/tunnel/connect endpoint in Termix prior to version 2.3.2 builds an SSH tunnel command by interpolating user-controlled host record fields endpointIP, endpointUsername,...

9.8CVSS5.5AI score0.01729EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2851

Malicious code in bioql PyPI...

9.3CVSS6.9AI score0.00631EPSS
Exploits0References8
Cvelist
Cvelist
added 2023/11/10 12:57 a.m.41 views

CVE-2023-46729 Sentry Next.js vulnerable to SSRF via Next.js SDK tunnel endpoint

sentry-javascript provides Sentry SDKs for JavaScript. An unsanitized input of Next.js SDK tunnel endpoint allows sending HTTP requests to arbitrary URLs and reflecting the response back to the user. This issue only affects users who have Next.js SDK tunneling feature enabled. The problem has bee...

9.3CVSS9.5AI score0.00631EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2023/11/09 10:3 p.m.43 views

Sentry Next.js vulnerable to SSRF via Next.js SDK tunnel endpoint

Impact An unsanitized input of Next.js SDK tunnel endpoint allows sending HTTP requests to arbitrary URLs and reflecting the response back to the user. This could open door for other attack vectors: client-side vulnerabilities: XSS/CSRF in the context of the trusted domain; interaction with...

9.3CVSS7AI score0.00631EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder