Lucene search
K
GithubRecent

33254 matches found

Github Security Blog
Github Security Blog
added 2026/02/25 6:58 p.m.6 views

Rucio WebUI Vulnerable to Stored Cross-site Scripting (XSS) through Custom Rule Function

Summary A stored Cross-site Scripting XSS vulnerability was identified in the Custom Rules function of the WebUI where attacker-controlled input is persisted by the backend and later rendered in the WebUI without proper output encoding. This allows arbitrary JavaScript execution in the context of...

7.3CVSS5.9AI score0.0026EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:57 p.m.13 views

Budibase: Remote Code Execution via Unsafe eval() in View Filter Map Function (Budibase Cloud)

Summary A critical unsafe eval vulnerability in Budibase's view filtering implementation allows any authenticated user including free tier accounts to execute arbitrary JavaScript code on the server. This vulnerability ONLY affects Budibase Cloud SaaS - self-hosted deployments use native CouchDB...

9.9CVSS6.4AI score0.00335EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:57 p.m.8 views

AVideo has Authenticated Server-Side Request Forgery via downloadURL in aVideoEncoder.json.php

Vulnerability Type Authenticated Server-Side Request Forgery SSRF Affected Product/Versions AVideo versions prior to 22 tested on AVideo 21.x. Root Cause Summary The aVideoEncoder.json.php API endpoint accepts a downloadURL parameter and fetches the referenced resource server-side without proper...

8.6CVSS5.5AI score0.00235EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:53 p.m.10 views

Rucio WebUI has Username Enumeration via Login Error Message

Summary The WebUI login endpoint returns distinct error messages depending on whether a supplied username exists, allowing unauthenticated attackers to enumerate valid usernames. Details When submitting invalid credentials to /ui/login, the WebUI responds with different error messages based on th...

5.3CVSS5.6AI score0.00327EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:53 p.m.11 views

Rucio WebUI has a Reflected Cross-site Scripting Vulnerability

Summary A reflected Cross-site Scripting vulnerability was located in the rendering of the ExceptionMessage of the WebUI 500 error which could allow attackers to steal login session tokens of users who navigate to a specially crafted URL. Details The WebUI error message renders ExceptionMessage...

8.1CVSS6.1AI score0.00263EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:37 p.m.11 views

Parse Dashboard has incomplete authentication on AI Agent endpoint

Impact The AI Agent API endpoint POST /apps/:appId/agent lacks authentication. Unauthenticated remote attackers can send requests to the endpoint and perform arbitrary database operations against any connected Parse Server using the master key. Patches The fix adds authentication middleware to th...

9.9CVSS5.6AI score0.0045EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:35 p.m.10 views

c3p0 vulnerable to Remote Code Execution via unsafe deserialization of userOverridesAsString property

Impact c3p0 is vulnerable to attack via maliciously crafted Java-serialized objects and javax.naming.Reference instances. Several c3p0 ConnectionPoolDataSource implementations have a property called userOverridesAsString which conceptually represents a Map. Prior to v0.12.0, that property was...

8.9CVSS6.1AI score0.00534EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:31 p.m.10 views

OpenFUN Richie Observable Timing Discrepancy in its sync_course_run_from_request function

An issue in OpenFUN Richie LMS in src/richie/apps/courses/api.py. The application used the non-constant time == operator for HMAC signature verification in the synccourserunfromrequest function. This allows remote attackers to forge valid signatures and bypass authentication by measuring response...

4.8CVSS5.5AI score0.00376EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:30 p.m.8 views

OpenKruise PodProbeMarker is Vulnerable to SSRF via Unrestricted Host Field

Summary PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configurations. Since kruise-daemon runs with hostNetwork=true, it executes probes from the node network namespace. An attacker with...

7.6CVSS5.8AI score0.00285EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:26 p.m.11 views

ENS DNSSEC Oracle Vulnerable to RSA Signature Forgery via Missing PKCS#1 v1.5 Padding Validation

Impact The RSASHA256Algorithm and RSASHA1Algorithm contracts fail to validate PKCS1 v1.5 padding structure when verifying RSA signatures. The contracts only check if the last 32 or 20 bytes of the decrypted signature match the expected hash. This enables Bleichenbacher's 2006 signature forgery...

7.5CVSS5.4AI score0.00177EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:20 p.m.7 views

mchange-commons-java: Remote Code Execution via JNDI Reference Resolution

Impact mchange-commons-java includes code that mirrors early implementations of JNDI functionality, including support for remote factoryClassLocation values, by which code can be downloaded and invoked within a running application. If an attacker can provoke an application to read a maliciously...

9.8CVSS6AI score0.00812EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:11 p.m.13 views

Astro is vulnerable to SSRF due to missing allowlist enforcement in remote image inferSize

Summary A bug in Astro's image pipeline allows bypassing image.domains / image.remotePatterns restrictions, enabling the server to fetch content from unauthorized remote hosts. Details Astro provides an inferSize option that fetches remote images at render time to determine their dimensions. Remo...

7.2CVSS5.8AI score0.00281EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:9 p.m.11 views

OneUptime: OS Command Injection in Probe NetworkPathMonitor via unsanitized destination in traceroute exec()

Summary An OS command injection vulnerability in NetworkPathMonitor.performTraceroute allows any authenticated project user to execute arbitrary operating system commands on the Probe server by injecting shell metacharacters into a monitor's destination field. Details The vulnerability exists in...

9.9CVSS6.5AI score0.01729EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 6:2 p.m.9 views

Hono is Vulnerable to Authentication Bypass by IP Spoofing in AWS Lambda ALB conninfo

Summary When using the AWS Lambda adapter hono/aws-lambda behind an Application Load Balancer ALB, the getConnInfo function incorrectly selected the first value from the X-Forwarded-For header. Because AWS ALB appends the real client IP address to the end of the X-Forwarded-For header, the first...

8.2CVSS5.5AI score0.00244EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 5:36 p.m.10 views

Sliver has Potential Zip Bomb Denial of Service in GzipEncoder

Summary GzipEncoder does not limit output size when processing compressed data. This allows unauthenticated remote attackers to crash sliver server by sending a http request with highly compressed gzip data aka zip bomb. Details In util/encoders/gzip.go, Decode method decompresses given data by...

5.8AI score
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 5:26 p.m.12 views

@enclave-vm/core is vulnerable to Sandbox Escape

Summary It is possible to escape the security boundraries set by @enclave-vm/core, which can be used to achieve remote code execution RCE. The issue has been fixed in version 2.11.1. --- Details It is possible to obtain the native Object constructor instead of the SafeObject wrapper. This can be...

10CVSS6.9AI score0.00878EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 4:18 p.m.18 views

OliveTin: OS Command Injection via `password` argument type and webhook JSON extraction bypasses shell safety checks

Summary OliveTin's shell mode safety check checkShellArgumentSafety blocks several dangerous argument types but not password. A user supplying a password-typed argument can inject shell metacharacters that execute arbitrary OS commands. A second independent vector allows unauthenticated RCE via...

9.9CVSS6.4AI score0.00448EPSS
Exploits2References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 4:9 p.m.6 views

pypdf has a possible infinite loop when loading circular /Prev entries in cross-reference streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires reading the file. Patches This has been fixed in pypdf==6.7.2. Workarounds If users cannot upgrade yet, consider applying the changes from PR 3655...

7.5CVSS5.3AI score0.00346EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 4:6 p.m.8 views

TypiCMS Core has Stored Cross-Site Scripting (XSS) via SVG File Upload

I. Summary A Stored Cross-Site Scripting XSS vulnerability exists in the file upload module of TypiCMS. The application allows users with file upload permissions to upload SVG files. While there is a MIME type validation, the content of the SVG file is not sanitized. An attacker can upload a...

6.8CVSS6.3AI score0.00188EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 4:6 p.m.7 views

Bugsink is vulnerable to Stored XSS via Pygments fallback in stacktrace rendering

Summary An unauthenticated attacker who can submit events to a Bugsink project can store arbitrary JavaScript in an event. The payload executes only if a user explicitly views the affected Stacktrace in the web UI. Details When Pygments returns more lines than it was given a known upstream quirk...

9.3CVSS5.8AI score0.00286EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 4:4 p.m.8 views

repostat: Reflected Cross-Site Scripting (XSS) via repo prop in RepoCard

Impact The RepoCard component is vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability occurs because the component uses React's dangerouslySetInnerHTML to render the repository name repo prop during the loading state without any sanitization. If a developer using this package passe...

6.1CVSS5.8AI score0.00196EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 4:0 p.m.9 views

FileBrowser Quantum: Password Protection Not Enforced on Shared File Links

Summary When users share password-protected files, the recipient can completely bypass the password and still download the file. Details This happens because the API returns a direct download link in the details of the share, which is accessible to anyone with JUST THE SHARE LINK, even without th...

7.1CVSS5.5AI score0.00307EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 3:24 p.m.12 views

Fickling has safety check bypass via REDUCE+BUILD opcode sequence

Assessment It is believed that the analysis pass works as intended, REDUCE and BUILD are not at fault here. The few potentially unsafe modules have been added to the blocklist https://github.com/trailofbits/fickling/commit/0c4558d950daf70e134090573450ddcedaf10400. Original report Summary All 5 of...

5.7AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/25 3:20 p.m.8 views

ImageMagick: Integer Overflow in PSB (PSD v2) RLE decoding path causes heap Out of Bounds reads for 32-bit builds

An integer overflow in the PSB PSD v2 RLE decoding path causes a heap out-of-bounds read on 32-bit builds. This can lead to information disclosure or a crash when processing crafted PSB files. ================================================================= ==3298==ERROR: AddressSanitizer:...

5.5AI score
Exploits0References5Affected Software19
Github Security Blog
Github Security Blog
added 2026/02/25 3:19 p.m.9 views

esm.sh is vulnerable to full-response SSRF

Summary esh.sh is vulnerable to a full-response SSRF, allowing an attacker to retrieve information from internal websites through the vulnerability. Details Vulnerable code location: https://github.com/esm-dev/esm.sh/blob/f80ff8c8d58749e77fa964abde468fc61f8bd89e/server/router.goL511 If the intern...

8.7CVSS5.6AI score0.00381EPSS
Exploits1References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 9:43 p.m.10 views

Dagu: Path traversal in DAG creation allows arbitrary YAML file write outside DAGs directory

The CreateNewDAG API endpoint POST /api/v1/dags does not validate the DAG name before passing it to the file store. While RenameDAG calls core.ValidateDAGName to reject names containing path separators line 273 in dags.go, CreateNewDAG skips this validation entirely and passes user input directly...

7.1CVSS6.1AI score0.00571EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 9:41 p.m.10 views

Fickling: OBJ opcode call invisibility bypasses all safety checks

Assessment The interpreter so it behaves closer to CPython when dealing with OBJ, NEWOBJ, and NEWOBJEX opcodes https://github.com/trailofbits/fickling/commit/ff423dade2bb1f72b2b48586c022fac40cbd9a4a. Original report Summary All 5 of fickling's safety interfaces -- islikelysafe, checksafety, CLI...

6AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 9:9 p.m.7 views

Statamic is vulnerable to account takeover via password reset link injection

Impact An attacker may leverage a vulnerability in the password reset feature to capture a user's token and reset the password on their behalf. The attacker must know the email address of a valid account on the site, and the actual user must blindly click the link in their email even though they...

9.3CVSS5.7AI score0.00459EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 9:8 p.m.7 views

Wasmtime can panic when adding excessive fields to a `wasi:http/types.fields` instance

Impact Wasmtime's implementation of the wasi:http/types.fields resource is susceptible to panics when too many fields are added to the set of headers. Wasmtime's implementation in the wasmtime-wasi-http crate is backed by a data structure which panics when it reaches excessive capacity and this...

7.5CVSS5.5AI score0.00466EPSS
Exploits0References10Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 9:4 p.m.8 views

Fiber has a Denial of Service Vulnerability via Route Parameter Overflow

A denial of service vulnerability exists in Fiber v2 and v3 that allows remote attackers to crash the application by sending requests to routes with more than 30 parameters. The vulnerability results from missing validation during route registration combined with an unbounded array write during...

7.5CVSS5.9AI score0.00594EPSS
Exploits1References7Affected Software2
Github Security Blog
Github Security Blog
added 2026/02/24 8:57 p.m.8 views

Fiber is Vulnerable to Denial of Service via Flash Cookie Unbounded Allocation

Summary The use of the fiberflash cookie can force an unbounded allocation on any server. A crafted 10-character cookie value triggers an attempt to allocate up to 85GB of memory via unvalidated msgpack deserialization. No authentication is required. Every GoFiber v3 endpoint is affected regardle...

7.5CVSS5.8AI score0.00396EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:51 p.m.16 views

Fiber has an Arbitrary File Read in Static Middleware on Windows

Summary Description A Path Traversal CWE-22 vulnerability in Fiber allows a remote attacker to bypass the static middleware sanitizer and read arbitrary files on the server file system on Windows. This affects Fiber v3 through version 3.0.0. This has been patched in Fiber v3 version 3.1.0. Detail...

8.7CVSS7.2AI score0.00618EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:47 p.m.13 views

Wasmtime WASI implementations are vulnerable to guest-controlled resource exhaustion

Impact Wasmtime's implementation of WASI host interfaces are susceptible to guest-controlled resource exhaustion on the host. Wasmtime did not appropriately place limits on resource allocations requested by the guests. This serves as a Denial of Service vector where a guest can induce a range of...

6.9CVSS6AI score0.00345EPSS
Exploits0References10Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:44 p.m.10 views

Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` future

The affected versions of Wasmtime can panic if the host embedder drops the future returned by wasmtime::component::TypedFunc::callasync before it resolves. Details Starting with Wasmtime 39.0.0, the component-model-async feature became the default, which brought with it a new implementation of...

7.5CVSS5.3AI score0.00362EPSS
Exploits0References9Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:39 p.m.6 views

Caddy: Unicode case-folding length expansion causes incorrect split_path index in FastCGI transport

Summary Caddy's FastCGI path splitting logic computes the split index on a lowercased copy of the request path and then uses that byte index to slice the original path. This is unsafe for Unicode because strings.ToLower can change UTF-8 byte length for some characters. As a result, Caddy can deri...

9.8CVSS6.5AI score0.00542EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:37 p.m.11 views

Caddy is vulnerable to cross-origin config application via local admin API /load

commit: e0f8d9b2047af417d8faf354b675941f3dac9891 as-of 2026-02-04 channel: GitHub security advisory per SECURITY.md summary The local caddy admin API default listen 127.0.0.1:2019 exposes a state-changing POST /load endpoint that replaces the entire running configuration. When origin enforcement ...

8.2CVSS5.7AI score0.00166EPSS
Exploits1References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:34 p.m.9 views

Caddy: MatchHost becomes case-sensitive for large host lists (>100), enabling host-based route/auth bypass

Summary Caddy's HTTP host request matcher is documented as case-insensitive, but when configured with a large host list 100 entries it becomes case-sensitive due to an optimized matching path. An attacker can bypass host-based routing and any access controls attached to that route by changing the...

9.1CVSS5.7AI score0.0037EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:31 p.m.9 views

Caddy: MatchPath %xx (escaped-path) branch skips case normalization, enabling path-based route/auth bypass

Summary Caddy's HTTP path request matcher is intended to be case-insensitive, but when the match pattern contains percent-escape sequences %xx it compares against the request's escaped path without lowercasing. An attacker can bypass path-based routing and any access controls attached to that rou...

9.1CVSS5.6AI score0.0037EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:22 p.m.8 views

Caddy: mTLS client authentication silently fails open when CA certificate file is missing or malformed

Summary Two swallowed errors in ClientAuthentication.provision cause mTLS client certificate authentication to silently fail open when a CA certificate file is missing, unreadable, or malformed. The server starts without error but accepts any client certificate signed by any system-trusted CA,...

9.3CVSS5.5AI score0.00267EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:16 p.m.11 views

Caddy: Improper sanitization of glob characters in file matcher may lead to bypassing security protections

Summary The path sanitization in file matcher doesn't sanitize backslashes which can lead to bypassing path related security protections. Details The tryfiles directive is used to rewrite the request uri. It accepts a list of patterns and checks if any files exist in the root that match the...

8.2CVSS5.6AI score0.00323EPSS
Exploits1References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:13 p.m.8 views

ActualBudget server is Missing Authentication for SimpleFIN and Pluggy AI bank sync endpoints

Summary Missing authentication middleware in the ActualBudget server component allows any unauthenticated user to query the SimpleFIN and Pluggy.ai integration endpoints and read sensitive bank account balance and transaction information. Impact This vulnerability allows an unauthenticated attack...

9.2CVSS5.7AI score0.00395EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:10 p.m.11 views

Payload: Server-Side Request Forgery (SSRF) in External File URL Uploads

Impact A Server-Side Request Forgery SSRF vulnerability exists in Payload's external file upload functionality. When processing external URLs for file uploads, insufficient validation of HTTP redirects could allow an authenticated attacker to access internal network resources. Users are affected ...

6.5CVSS5.6AI score0.00288EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:7 p.m.8 views

MindsDB: Path Traversal in /api/files Leading to Remote Code Execution

Summary There is a path traversal vulnerability in Mindsdb's /api/files interface, which an authenticated attacker can exploit to achieve remote command execution. Details The vulnerability exists in the "Upload File" module, which corresponds to the API endpoint /api/files. The affected code is...

8.8CVSS6.4AI score0.11113EPSS
Exploits4References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 8:3 p.m.6 views

Pimcore vulnerable to SQL injection via unsanitized filter value in Dependency Dao RLIKE clause

The filter query parameter in the dependency listing endpoints is JSON-decoded and the value field is concatenated directly into RLIKE clauses without sanitization or parameterized queries. Affected code in models/Dependency/Dao.php: - getFilterRequiresByPath lines 90, 95, 100 -...

6.9CVSS5.6AI score0.00457EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 7:56 p.m.11 views

NiceGUI vulnerable to XSS via Code Injection during client-side element function execution

Summary Several NiceGUI APIs that execute methods on client-side elements Element.runmethod, AgGrid.rungridmethod, EChart.runchartmethod, and others use an eval fallback in the JavaScript-side runMethod function. When user-controlled input is passed as the method name, an attacker can inject...

6.1CVSS5.8AI score0.00163EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 6:31 p.m.9 views

FUXA has JWT Authentication Bypass via HTTP Referer header spoofing

FUXA 1.2.8 and prior contains an Authentication Bypass vulnerability leading to Remote Code Execution RCE. The vulnerability exists in the server/api/jwt-helper.js middleware, which improperly trusts the HTTP "Referer" header to validate internal requests. A remote unauthenticated attacker can...

9.8CVSS6.3AI score0.05633EPSS
Exploits7References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 4:4 p.m.11 views

nats-server websockets are vulnerable to pre-auth memory DoS

Impact The WebSockets handling of NATS messages handles compressed messages via the WebSockets negotiated compression. The implementation bound the memory size of a NATS message but did not independently bound the memory consumption of the memory stream when constructing a NATS message which migh...

7.5CVSS5.6AI score0.00478EPSS
Exploits0References7Affected Software2
Github Security Blog
Github Security Blog
added 2026/02/24 4:3 p.m.12 views

Isso affected by Stored XSS via comment website field

Impact This is a stored Cross-Site Scripting XSS vulnerability affecting the website and author comment fields. The website field was HTML-escaped using quote=False, which left single and double quotes unescaped. Since the frontend inserts the website value directly into a single-quoted href...

6.1CVSS5.8AI score0.00216EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 4:0 p.m.9 views

OneUptime:: node:vm sandbox escape in probe allows any project member to achieve RCE

Summary OneUptime lets project members write custom JavaScript that runs inside monitors. The problem is it executes that code using Node.js's built-in vm module, which Node.js itself documents as "not a security mechanism — do not use it to run untrusted code." The classic one-liner escape gives...

9.9CVSS6.2AI score0.00504EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/24 3:51 p.m.13 views

Craft CMS: Cloud Metadata SSRF Protection Bypass via IPv6 Resolution

The SSRF validation in Craft CMS’s GraphQL Asset mutation uses gethostbyname, which only resolves IPv4 addresses. When a hostname has only AAAA IPv6 records, the function returns the hostname string itself, causing the blocklist comparison to always fail and completely bypassing SSRF protection...

7.1CVSS6.1AI score0.00421EPSS
Exploits1References5Affected Software1
Total number of security vulnerabilities33254