Lucene search
K

8 matches found

Vulnrichment
Vulnrichment
added 2025/11/13 1:46 a.m.2 views

CVE-2025-64716 Anubis vulnerable to possible XSS via redir parameter when using subrequest auth mode

Anubis is a Web AI Firewall Utility that challenges users' connections in order to protect upstream resources from scraper bots. Prior to version 1.23.0, when using subrequest authentication, Anubis did not perform validation of the redirect URL and redirects user to any URL scheme. While most...

5.1CVSS6.3AI score0.00483EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.6 views

PT-2025-46775

Name of the Vulnerable Software and Affected Versions Anubis versions prior to 1.23.0 Description Anubis, a Web AI Firewall Utility designed to protect upstream resources from scraper bots, had a flaw in its subrequest authentication process. Before version 1.23.0, the software did not validate t...

5.1CVSS6.7AI score0.00483EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2025-22776

Malicious code in bioql PyPI...

5.1CVSS6.4AI score0.0048EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/07/28 4:32 a.m.24 views

CVE-2025-54414

Anubis is a Web AI Firewall Utility that weighs the soul of users' connections using one or more challenges in order to protect upstream resources from scraper bots. In versions 1.21.2 and below, attackers can craft malicious pass-challenge pages that cause a user to execute arbitrary JavaScript...

5.1CVSS7.9AI score0.0048EPSS
Exploits0References1
NVD
NVD
added 2025/07/26 4:16 a.m.18 views

CVE-2025-54414

Anubis is a Web AI Firewall Utility that weighs the soul of users' connections using one or more challenges in order to protect upstream resources from scraper bots. In versions 1.21.2 and below, attackers can craft malicious pass-challenge pages that cause a user to execute arbitrary JavaScript...

5.1CVSS0.0048EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/26 3:30 a.m.7 views

CVE-2025-54414 Anubis accepts crafted redirect URLs in pass-challenge 'Try Again' buttons

Anubis is a Web AI Firewall Utility that weighs the soul of users' connections using one or more challenges in order to protect upstream resources from scraper bots. In versions 1.21.2 and below, attackers can craft malicious pass-challenge pages that cause a user to execute arbitrary JavaScript...

5.1CVSS7.1AI score0.0048EPSS
Exploits0References3
OSV
OSV
added 2025/07/26 3:30 a.m.10 views

CVE-2025-54414 Anubis accepts crafted redirect URLs in pass-challenge 'Try Again' buttons

Anubis is a Web AI Firewall Utility that weighs the soul of users' connections using one or more challenges in order to protect upstream resources from scraper bots. In versions 1.21.2 and below, attackers can craft malicious pass-challenge pages that cause a user to execute arbitrary JavaScript...

5.1CVSS7.3AI score0.0048EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/26 12:0 a.m.7 views

PT-2025-30951 · Anubis · Anubis

Name of the Vulnerable Software and Affected Versions: Anubis versions 1.21.2 and below Description: Anubis is a Web AI Firewall Utility designed to protect upstream resources from scraper bots. Attackers can craft malicious pass-challenge pages that cause a user to execute arbitrary JavaScript...

5.1CVSS7AI score0.0048EPSS
Exploits0References6
Rows per page
Query Builder