EUVD-2026-33399

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, corsProxyMiddleware forwards req.params.url directly into fetchurl, .... It only blocks circular...

SillyTavern 代码问题漏洞

SillyTavern is a frontend interface for the SillyTavern open-source language model. Versions of SillyTavern prior to 1.18.0 had code vulnerabilities. This vulnerability stemmed from the corsProxyMiddleware module, which directly forwarded req.params.url to fetchurl, .... This allowed loop request...

EUVD-2010-0713

Malware in sbrugna...

EUVD-2025-6149

Malicious code in bioql PyPI...

PT-2023-27179 · Unknown · Wiremock Studio

Name of the Vulnerable Software and Affected Versions: WireMock Studio affected versions not specified Description: WireMock is a tool for mocking HTTP services. When certain request URLs like "@127.0.0.1:1234" are used in WireMock Studio configuration fields, the request might be forwarded to an...

pingree.org XSS vulnerability

Vulnerable URL: http://www.pingree.org/cfnews/forward.cfm?dest=javascript:alert/XSSPOSED/ Details: Description| Value ---|--- Patched:| Yes, at 11.04.2016 Latest check for patch:| 11.04.2016 17:28 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 684657 Google...

Spoofing

WebAccess in VMware VirtualCenter 2.0.2 and 2.5, VMware Server 2.0, and VMware ESX 3.0.3 and 3.5 allows remote attackers to leverage proxy-server functionality to spoof the origin of requests via unspecified vectors, related to a "URL forwarding vulnerability."...

CVE-2010-0686

WebAccess in VMware VirtualCenter 2.0.2 and 2.5, VMware Server 2.0, and VMware ESX 3.0.3 and 3.5 allows remote attackers to leverage proxy-server functionality to spoof the origin of requests via unspecified vectors, related to a "URL forwarding vulnerability."...

CVE-2010-0686

WebAccess in VMware VirtualCenter 2.0.2 and 2.5, VMware Server 2.0, and VMware ESX 3.0.3 and 3.5 allows remote attackers to leverage proxy-server functionality to spoof the origin of requests via unspecified vectors, related to a "URL forwarding vulnerability."...

CVE-2010-0686

Summary: CVE-2010-0686 concerns VMware WebAccess in VMware VirtualCenter (2.0.2/2.5), VMware Server 2.0, and VMware ESX (3.0.3/3.5). The issue is a URL forwarding vulnerability where the WebAccess proxy functionality does not properly validate/limit inbound requests, allowing an attacker to spoof...

AJAX combined with URL forwarding vulnerability a cross-domain submit data-vulnerability warning-the black bar safety net

by emptiness prodigal heart Chrome browser, when using ajax, the url forwarding vulnerability with cross-domain submit data but can not read the returned data. IE6 with certain versions of Don't know what version at home and a cafe is successful, the user click“OK”after, but also can be a...

Important: Red Hat Security Advisory: mod_jk security update

Updated modjk packages that fix a security issue are now available for Red Hat Application Stack v1.1. This update has been rated as having Important security impact by the Red Hat Security Response Team. modjk is a Tomcat connector that can be used to communicate between Tomcat and the Apache HT...