Lucene search
K

8 matches found

OSV
OSV
added 2026/05/14 9:2 p.m.1 views

CVE-2026-44430 MCP Registry: Unauthenticated SSRF: HTTP namespace verification dials 6to4 / NAT64 / site-local IPv6 addresses, bypassing private-address allowlist

The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. Prior to 1.7.7, the Registry's HTTP-based namespace verification POST /v0/auth/http, POST /v0.1/auth/http uses safeDialContext internal/api/handlers/v0/auth/http.go:67-110 to refuse dialling...

6.3CVSS6.1AI score0.00285EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-5731

Malware in sbrugna...

8.8CVSS8.8AI score0.0046EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:19 a.m.6 views

CVE-2019-15533

XENFCoreSharp before 2019-07-16 allows SQL injection in web/verify.php...

9.8CVSS8AI score0.01371EPSS
Exploits0References1
Prion
Prion
added 2018/07/09 9:29 p.m.19 views

Cross site request forgery (csrf)

Multiple Cross Site Request Forgery CSRF vulnerabilities in the HTTP API in ABBYY FlexiCapture before 12 Release 1 Update 7 exist in Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login...

6.8CVSS8.9AI score0.0046EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2018/07/09 9:29 p.m.3 views

CVE-2018-13793

Multiple Cross Site Request Forgery CSRF vulnerabilities in the HTTP API in ABBYY FlexiCapture before 12 Release 1 Update 7 exist in Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login...

8.8CVSS5.8AI score0.0046EPSS
Exploits0References1
NVD
NVD
added 2018/07/09 9:29 p.m.26 views

CVE-2018-13793

Multiple Cross Site Request Forgery CSRF vulnerabilities in the HTTP API in ABBYY FlexiCapture before 12 Release 1 Update 7 exist in Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login...

8.8CVSS9.1AI score0.0046EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/07/09 9:0 p.m.26 views

CVE-2018-13793

Multiple Cross Site Request Forgery CSRF vulnerabilities in the HTTP API in ABBYY FlexiCapture before 12 Release 1 Update 7 exist in Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login...

9.1AI score0.0046EPSS
Exploits0References1
CVE
CVE
added 2018/07/09 9:0 p.m.51 views

CVE-2018-13793

CVE-2018-13793 concerns ABBYY FlexiCapture’s HTTP API with multiple CSRF vulnerabilities affecting Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login prior to 12 Release 1 Update 7. The affected surface is the HTTP API in the mentioned modules; exploitation deta...

8.8CVSS8.9AI score0.0046EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder