Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/07 12:18 a.m.22 views

CVE-2025-32358

In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint returned a redirect response, Zammad would follow it automatically with another GET request. This coul...

4.1CVSS6.6AI score0.00239EPSS
Exploits0References1
NVD
NVD
added 2025/04/05 9:15 p.m.22 views

CVE-2025-32358

In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint returned a redirect response, Zammad would follow it automatically with another GET request. This coul...

4.1CVSS0.00239EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/03/16 2:48 a.m.2 views

SUSE CVE-2025-27616

Vela is a Pipeline Automation CI/CD framework built on Linux container technology written in Golang. Prior to versions 0.25.3 and 0.26.3, by spoofing a webhook payload with a specific set of headers and body data, an attacker could transfer ownership of a repository and its repo level secrets to ...

8.5CVSS6.7AI score0.00246EPSS
Exploits0References3
NVD
NVD
added 2025/03/10 7:15 p.m.9 views

CVE-2025-27616

Vela is a Pipeline Automation CI/CD framework built on Linux container technology written in Golang. Prior to versions 0.25.3 and 0.26.3, by spoofing a webhook payload with a specific set of headers and body data, an attacker could transfer ownership of a repository and its repo level secrets to ...

8.5CVSS0.00246EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2025/02/07 1:22 p.m.991 views

Exploit for Server-Side Request Forgery in Rocket.Chat

CVE-2024-39713: Rocket.Chat SSRF PoC Description A Server...

8.6CVSS8.8AI score0.03201EPSS
Exploits2
Rows per page
Query Builder