Lucene search
K

13 matches found

NVD
NVD
added 2026/06/11 1:16 p.m.10 views

CVE-2026-49214

guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Versions prior to 2.10.2 did not reject ASCII control characters, whitespace, or DEL in first-party URI host components. A vulnerable flow is: First, an application accepts a user-controlled URL. Second, the URL is used to...

5.3CVSS0.00189EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/23 12:0 a.m.13 views

PT-2026-42858

Name of the Vulnerable Software and Affected Versions Nezha Monitoring versions 1.4.0 through 2.0.7 Description The dashboard allows users with the RoleMember role to access notification routes that should be restricted to administrators. Specifically, the endpoints "POST /api/v1/notification" an...

8.5CVSS5.2AI score0.0027EPSS
Exploits0References7
CVE
CVE
added 2026/05/20 1:25 a.m.16 views

CVE-2026-6394

CVE-2026-6394 affects Nexa Blocks ≤ 1.1.1 (WordPress Gutenberg/FSE plugin). The import_demo() function accepts a user-supplied URL in demo_json_file via POST and forwards it to wp_remote_get() without URL validation or internal-network restrictions, enabling unauthenticated SSRF to arbitrary dest...

5.4CVSS5.9AI score0.00316EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.9 views

PT-2026-37097

Name of the Vulnerable Software and Affected Versions Incus versions prior to 7.0.0 Description An authenticated user can cause the daemon to make blind outbound HEAD requests to arbitrary destinations. This occurs because the image import flow issues a request to a user-supplied URL via the...

5.3CVSS5.9AI score0.00271EPSS
Exploits1References16
Snyk
Snyk
added 2026/04/03 9:36 p.m.2 views

Server-side Request Forgery (SSRF)

Overview curl-cffi is a python binding for curl-impersonate via cffi. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the handling of user-supplied URLs and automatic redirect following in the get function. An attacker can access internal network resources...

8.6CVSS5.9AI score0.00463EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/01/19 11:15 p.m.4 views

CVE-2026-22219 Chainlit < 2.9.4 SQLAlchemy Data Layer SSRF via /project/element

Chainlit versions prior to 2.9.4 contain a server-side request forgery SSRF vulnerability in the /project/element update flow when configured with the SQLAlchemy data layer backend. An authenticated client can provide a user-controlled url value in an Element, which is fetched by the SQLAlchemy...

8.3CVSS5.8AI score0.04439EPSS
Exploits1References3
OSV
OSV
added 2025/08/11 1:53 p.m.4 views

BIT-LIBPHP-2020-7066 get_headers() silently truncates after a null byte

In PHP versions 7.2.x below 7.2.29, 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while using getheaders with user-supplied URL, if the URL contains zero \0 character, the URL will be silently truncated at it. This may cause some software to make incorrect assumptions about the target of the getheade...

5.3CVSS6.9AI score0.02767EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2024/07/26 12:0 a.m.3 views

PT-2024-29276

Name of the Vulnerable Software and Affected Versions streamlit-geospatial versions prior to commit c4f81d9616d40c60584e36abb15300853a66e489 Description The issue arises from the url variable in the pages/9 🔲 Vector Data Visualization.py file, which takes user input. This input is then passed to...

9.8CVSS6.7AI score0.00786EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/03/07 12:0 a.m.3 views

PT-2024-18318 · WordPress · Embedpress

Name of the Vulnerable Software and Affected Versions: EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor plugin for WordPress versions up to, and including, 3.9.10 Description: The issue is related to Stored...

6.4CVSS6.2AI score0.0032EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/09/22 12:0 a.m.3 views

WordPress 插件 代码问题漏洞

WordPress Plugin is an open source application plugin for WordPress. A code issue vulnerability exists in the WordPress plugin, which stems from a user-supplied URL request value being invoked by a curl request, making the Telefication plugin susceptible to open proxies and server-side request...

5.8CVSS5.9AI score0.01333EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/06/17 11:47 a.m.5 views

curl: FTP PASV command response can cause curl to connect to arbitrary host

A malicious server can use the PASV response to trick curl into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. If cu...

4.3CVSS6.8AI score0.03851EPSS
Exploits0References5
OSV
OSV
added 2019/07/25 2:15 p.m.1 views

DEBIAN-CVE-2019-1010174

CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. The impact is: RCE. The component is: loadnetwork function. The attack vector is: Loading an image from a user-controllable url can lead to command injection, because no string sanitization is done on the url. The fixed...

9.8CVSS7.1AI score0.04912EPSS
Exploits0References1
OSV
OSV
added 2019/07/25 2:15 p.m.1 views

UBUNTU-CVE-2019-1010174

CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. The impact is: RCE. The component is: loadnetwork function. The attack vector is: Loading an image from a user-controllable url can lead to command injection, because no string sanitization is done on the url. The fixed...

9.8CVSS7.1AI score0.04912EPSS
Exploits0References4
Rows per page
Query Builder