Lucene search
K
GithubRecent

33255 matches found

Github Security Blog
Github Security Blog
added 2026/05/11 4:17 p.m.11 views

LiteLLM has a sandbox escape in custom-code guardrail

Impact The POST /guardrails/testcustomcode endpoint runs user-supplied Python inside a hand-rolled sandbox. The sandbox can be escaped using bytecode-level techniques, allowing arbitrary code execution in the proxy process — which runs as root in the default Docker image. Reaching the endpoint...

8.8CVSS6.2AI score0.06496EPSS
Exploits2References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 4:16 p.m.10 views

GitHub Copilot CLI: Nested Bare Repository Can Execute Arbitrary Commands via core.fsmonitor

Summary A security vulnerability has been identified in GitHub Copilot CLI where a malicious bare git repository nested inside a project directory can achieve arbitrary code execution when the agent performs git operations. By exploiting git's automatic bare repository discovery during directory...

8.5CVSS6.3AI score0.0035EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 4:15 p.m.10 views

Local Path Provisioner Vulnerable to HelperPod Template Injection

Impact A malicious user with permission to edit the local-path-config ConfigMap in the local-path-storage namespace can manipulate the helperPod.yaml template used by rancher/local-path-provisioner. The helperPod.yaml template is loaded by the provisioner and used to create HelperPods during PVC...

8.7CVSS6AI score0.00368EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 4:12 p.m.17 views

Next.js's Middleware / Proxy redirects can be cache-poisoned

Impact Next.js uses the x-nextjs-data request header for internal data requests. On affected versions, an external client could send this header on a normal request to a path handled by middleware that returns a redirect. When that happened, the middleware/proxy could treat the request as a data...

5.9CVSS5.8AI score0.00195EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 4:11 p.m.20 views

elFinder MySQL has a SQL Injection in its Volume Driver (elFinderVolumeMySQL)

Summary An authenticated SQL injection vulnerability in the elFinder MySQL volume driver elFinderVolumeMySQL allows any logged-in user, including users with read-only access to the affected volume, to inject SQL through a crafted target file hash. Successful exploitation can lead to unauthorized...

8.8CVSS5.8AI score0.00243EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 4:11 p.m.14 views

Valtimo has sensitive data exposure through HTTP request/response logging in LoggingRestClientCustomizer

Summary The LoggingRestClientCustomizer in the web module automatically intercepts all outgoing HTTP calls made via Spring's RestClient and logs the full request body, response body, and response headers. When an error response is received, this information is included in the thrown...

7.6CVSS5.9AI score0.002EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 4:10 p.m.14 views

@theecryptochad/merge-guard has Prototype Pollution in its deepMerge() function

Summary @theecryptochad/merge-guard versions prior to 1.0.1 are vulnerable to Prototype Pollution via the deepMerge function. An attacker who controls the source object can inject proto keys that mutate Object.prototype, affecting all objects in the Node.js runtime. Details The deepMerge function...

5.9AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 4:9 p.m.10 views

@rvf/set-get has a prototype pollution issue that's reachable via @rvf/core preprocessFormData (HTTP form data)

Summary setPath in @rvf/set-get used by @rvf/core to flatten incoming form data into a nested object does not block the keys proto, constructor, or prototype when walking a path. Because field names in submitted form data are passed directly to setPath via preprocessFormData and through...

8.2CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:59 p.m.13 views

CloudNativePG's metrics exporter allows privilege escalation to PostgreSQL superuser and OS RCE

Impact The CloudNativePG metrics exporter opens its PostgreSQL connection as the postgres superuser via the pod-local Unix socket, then demotes the session with SET ROLE pgmonitor. SET ROLE changes only currentuser; sessionuser remains postgres. That residual superuser identity is the foothold fo...

9.9CVSS6.1AI score0.0048EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:57 p.m.14 views

Next.js vulnerable to cross-site scripting in App Router applications using CSP nonces

Impact App Router applications that rely on CSP nonces can be vulnerable to stored cross-site scripting when deployed behind shared caches. In affected versions, malformed nonce values derived from request headers could be reflected into rendered HTML in an unsafe way, allowing an attacker to...

4.7CVSS5.8AI score0.00222EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:56 p.m.24 views

Next.js vulnerable to cache poisoning via collisions in React Server Component cache-busting

Impact React Server Component responses can be vulnerable to cache poisoning in deployments that rely on shared caches with insufficient response partitioning. In affected conditions, collisions in the rsc cache-busting value can allow an attacker to poison cache entries so users receive the wron...

3.7CVSS5.8AI score0.00203EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:56 p.m.31 views

Next.js has cross-site scripting in beforeInteractive scripts with untrusted input

Impact Applications that use beforeInteractive scripts together with untrusted content can be vulnerable to cross-site scripting. In affected versions, serialized script content was not escaped safely before being embedded into the document, which could allow attacker-controlled input to break ou...

6.1CVSS5.7AI score0.00205EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:56 p.m.10 views

Next.js vulnerable to Denial of Service via connection exhaustion in applications using Cache Components

Impact Applications using Partial Prerendering through the Cache Components feature can be vulnerable to connection exhaustion through crafted POST requests to a server action. In affected configurations, a malicious request can trigger a request-body handling deadlock that leaves connections ope...

7.5CVSS5.8AI score0.00546EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:56 p.m.100 views

Next.js has a Denial of Service in the Image Optimization API

Impact When self-hosting Next.js with the default image loader, the Image Optimization API fetches local images entirely into memory without enforcing a maximum size limit. An attacker could cause out-of-memory conditions by requesting large local assets from the /next/image endpoint that match t...

7.5CVSS5.8AI score0.00705EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:55 p.m.15 views

Next.js vulnerable to server-side request forgery in applications using WebSocket upgrades

Impact Self-hosted applications using the built-in Node.js server can be vulnerable to server-side request forgery through crafted WebSocket upgrade requests. An attacker can cause the server to proxy requests to arbitrary internal or external destinations, which may expose internal services or...

8.6CVSS5.9AI score0.38811EPSS
Exploits9References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:54 p.m.12 views

Next.js vulnerable to cache poisoning in React Server Component responses

Impact Applications using React Server Components can be vulnerable to cache poisoning when shared caches do not correctly partition response variants. Under affected conditions, an attacker can cause an RSC response to be served from the original URL and poison shared cache entries so later...

5.4CVSS5.8AI score0.0025EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:54 p.m.32 views

Next.js has a Middleware / Proxy bypass in App Router applications via segment-prefetch routes

Impact App Router applications that rely on middleware or proxy-based checks for authorization can allow unauthorized access through transport-specific route variants used for segment prefetching. In affected configurations, specially crafted .rsc and segment-prefetch URLs can resolve to the same...

7.5CVSS5.8AI score0.01523EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:54 p.m.29 views

Next.js has a Middleware / Proxy bypass through dynamic route parameter injection

Impact Applications that rely on middleware to protect dynamic routes can be vulnerable to authorization bypass. In affected deployments, specially crafted query parameters can alter the dynamic route value seen by the page while leaving the visible path unchanged, which can allow protected conte...

8.1CVSS5.8AI score0.00485EPSS
Exploits2References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:53 p.m.29 views

Next.js has a Middleware / Proxy bypass in Pages Router applications using i18n

Impact Applications using the Pages Router with i18n configured and middleware/proxy-based authorization can allow unauthorized access to protected page data through locale-less /next/data//.json requests. In affected configurations, middleware does not run for the unprefixed data route, allowing...

7.5CVSS5.8AI score0.00592EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:29 p.m.9 views

Ella Core has handover failures during concurrent Security Mode Command

Summary Ella Core didn't enforce security rules on concurrent running of security procedures defined in TS 33.501 §6.9.5.1 — it could send a NAS Security Mode Command while an N2 handover was still pending and vice versa. Impact Concurrent Security Mode Command and N2 handover produce a KgNB...

3.7CVSS5.8AI score0.00134EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:29 p.m.11 views

Ella Core has a UE Security Capability bypass on NGAP PathSwitchRequest

Summary Ella Core does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against its locally stored values. A malicious gNB can overwrite Ella Core's stored UE security capabilities for any UE with arbitrary values by sending a single crafted PathSwitchRequest...

6.1CVSS5.9AI score0.00148EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 3:18 p.m.17 views

Ella Core Vulnerable to UE Downlink Redirection via Forged PDUSessionResourceSetupResponse

Summary A radio with a valid NG Setup can send a forged PDUSessionResourceSetupResponse carrying any UE's AMF-UE-NGAP-ID. Ella Core does not verify the message arrived on the SCTP association bound to that UE's logical NG-connection, then creates a GTP tunnel towards that radio. Impact Downlink...

7.1CVSS5.8AI score0.00166EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:57 p.m.14 views

python-liquid: Absolute paths escape filesystem loader search path

Impact The built-in FileSystemLoader and CachingFileSystemLoader do not guard against reading files outside their search paths when given an absolute path to resolve. This allows malicious template authors to load and render arbitrary files via the % include % and % render % tags. Targeted files...

8.2CVSS5.9AI score0.00335EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:53 p.m.12 views

oxidize-pdf: NaN/inf bypass in colour content-stream emission causes PDF rejection (DoS)

Impact oxidize-pdf defines Color as a pub enum with public tuple-struct variants Rgbf64, f64, f64, Grayf64, and Cmykf64, f64, f64, f64. The constructors Color::rgb, Color::gray, and Color::cmyk clamp incoming components to 0.0, 1.0, but because the variants are pub, callers can construct values...

5.9AI score
Exploits0References2Affected Software2
Github Security Blog
Github Security Blog
added 2026/05/11 2:51 p.m.20 views

urllib3: Decompression-bomb safeguards bypassed in parts of the streaming API

Impact urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decompression based on the HTTP Content-Encoding header e.g., gzip, deflate, br, or...

8.9CVSS5.8AI score0.0068EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:51 p.m.11 views

urllib3: Sensitive headers forwarded across origins in proxied low-level redirects

Impact When following cross-origin redirects for requests made using urllib3’s high-level APIs, such as urllib3.request, PoolManager.request, and ProxyManager.request, sensitive headers — Authorization, Cookie, and Proxy-Authorization defined in Retry.DEFAULTREMOVEHEADERSONREDIRECT — are stripped...

8.2CVSS5.8AI score0.00527EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:50 p.m.32 views

@vitejs/plugin-rsc has a Denial of Service Vulnerability in React Server Components

Impact @vitejs/plugin-rsc vendors react-server-dom-webpack, which contained a vulnerability in versions prior to 19.2.6. See details in React repository's advisory https://github.com/facebook/react/security/advisories/GHSA-rv78-f8rc-xrxh Patches Upgrade immediately to @vitejs/[email protected] or...

7.5CVSS5.8AI score0.01533EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:50 p.m.17 views

Next.js Vulnerable to Denial of Service with Server Components

A vulnerability affects certain React Server Components packages for versions 19.x and frameworks that use the affected packages, including Next.js 13.x, 14.x, 15.x, and 16.x using the App Router. The issue is tracked upstream as CVE-2026-23870. A specially crafted HTTP request can be sent to any...

7.5CVSS5.8AI score0.01533EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:50 p.m.11 views

Facebook React has a Denial of Service Vulnerability in React Server Components

Impact A denial of service vulnerability could be triggered by sending specially crafted HTTP requests to server function endpoints, this could lead to out-of-memory exceptions or excessive CPU usage. We recommend updating immediately. The vulnerability exists in versions 19.0.0 through 19.0.5,...

7.5CVSS5.9AI score0.01533EPSS
Exploits1References5Affected Software3
Github Security Blog
Github Security Blog
added 2026/05/11 2:48 p.m.23 views

go-git's improper parsing of specially crafted objects may lead to inconsistent interpretation compared to upstream Git

Impact go-git may parse malformed Git objects in a way that differs from upstream Git. When commit or tag objects contain ambiguous or malformed headers, go-git’s decoded representation may expose values differently from how Git itself would interpret or reject the same object. Additionally,...

7.5CVSS5.8AI score0.00159EPSS
Exploits0References3Affected Software2
Github Security Blog
Github Security Blog
added 2026/05/11 2:45 p.m.15 views

GuardDog has a blind GitHub URL rewrite in remote project scanning causes SSRF and `GH_TOKEN` exfiltration

Summary The programmatic remote project scanning path rewrites attacker-controlled repository URLs using a blind string replacement and then sends the caller's GitHub credentials with the resulting request. This allows an attacker who can influence the scanned repository URL to trigger SSRF and...

8.2CVSS5.9AI score0.00198EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:43 p.m.16 views

GuardDog: Unsanitized human-readable scan output allows terminal escape injection from malicious package content

Summary GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject ANSI or OSC escape sequences into analyst terminals or CI logs...

5CVSS5.8AI score0.00113EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:42 p.m.18 views

Keylime has a hardcoded attestation challenge nonce that allows replay attacks

CVE-2026-6420: Hardcoded attestation challenge nonce allows replay attacks Impact The CertificationParameters.generatechallenge method in the push attestation protocol uses a hardcoded challenge nonce instead of generating a cryptographically random value. This removes the nonce-based replay...

6.3CVSS5.8AI score0.00121EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:42 p.m.19 views

Prometheus exporter process crash via malformed HTTP request

Summary A single malformed HTTP request crashes any Node.js process running the OpenTelemetry JS Prometheus exporter. The metrics endpoint default 0.0.0.0:9464 has no error handling around URL parsing, so a request with an invalid URI causes an uncaught TypeError that terminates the process. You...

7.5CVSS5.9AI score0.00455EPSS
Exploits0References3Affected Software3
Github Security Blog
Github Security Blog
added 2026/05/11 2:40 p.m.27 views

Steamworks game clients/servers using P2P authentication vulnerable to denial of service

Processing the raw ValidateAuthTicketResponset callback data panics when the meAuthSessionResponse field is kEAuthSessionResponseAuthTicketNetworkIdentityFailure. This can lead to denial of service in game clients and servers using the beginauthenticationsession API to authenticate players if a...

5.8AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:28 p.m.8 views

Streamlink has an arbitrary local file read via file:// URI in HLS and DASH

Summary Streamlink's HLS and DASH parsers do not validate the URI scheme of segment entries and other resources. A remote .m3u8 HLS playlist or .mpd DASH manifest can list file:///path/to/file as a segment, and streamlink will read that local file and write its contents to the output stream...

6.5CVSS6AI score0.00345EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:27 p.m.12 views

Dockerfile command injection via envs[*].name in bentofile.yaml (sibling fix-bypass of CVE-2026-33744 and CVE-2026-35043)

BentoML envs.name Dockerfile command injection — sibling of CVE-2026-33744 / CVE-2026-35043 A malicious bentofile.yaml containing a newline-injected value in envs.name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentoml containerize on the imported...

8.8CVSS6AI score0.00321EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:27 p.m.11 views

BentoML Dockerfile command injection via docker.base_image (sister of pending GHSA-w2pm-x38x-jp44 / CVE-2026-33744 / CVE-2026-35043)

The same Dockerfile template that mishandles envs.name pending GHSA-w2pm-x38x-jp44 also interpolates docker.baseimage raw with no escaping, newline filtering, or validation. A malicious bento.yaml with a multi-line docker.baseimage value smuggles arbitrary Dockerfile directives into the generated...

8.8CVSS6AI score0.00317EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:25 p.m.10 views

Open WebUI has inconsistent authorization controls within memories API

Summary Authorization controls surrounding the memories API were inconsistent, resulting in the ability of a standard user to delete, restore, and view the contents of other users' memories. Details Using a newly created non-admin user with no existing memories, it is possible to view existing...

8.3CVSS5.8AI score0.00294EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:7 p.m.10 views

Dozzle's Cross-Site WebSocket Hijacking (CSWSH) on exec/attach endpointsbypasses authentication

Summary The WebSocket upgrader for the /exec and /attach endpoints uses CheckOrigin: funcr http.Request bool return true , accepting upgrade requests from any origin. Combined with the JWT cookie using SameSite: Lax, this enables Cross-Site WebSocket Hijacking CSWSH — even when authentication is...

9.6CVSS5.9AI score0.00195EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:5 p.m.18 views

Open WebUI's Improper Authorization in Standard Channels Allows Message Updates with Read Permission

Vulnerability Description In standard channels i.e., channels whose channel.type is neither group nor dm, the endpoint POST /api/v1/channels/channelid/messages/messageid/update can be accessed with read permission only. When accesscontrol is set to None, the authorization check hasaccess...,...

6.5CVSS5.7AI score0.00277EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:4 p.m.13 views

Open WebUI's Insecure Message Access Breaks Authorization

Description There's an IDOR in the channels message management system that allows authenticated users to modify or delete any message within channels they have read access to. The vulnerability exists in the message update and delete endpoints, which implement channel-level authorization but...

7.1CVSS5.8AI score0.00266EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:3 p.m.14 views

Open WebUI Arbitrary File Write, Delete via Path Traversal

CONFIDENTIAL Vulnerability Disclosure Analysis Documentation ----------------------------------------------- Vulnerability Details --------------------- 1. Discoverer: Taylor Pennington of KoreLogic, Inc. 2. Date Submitted: June 11, 2024 3. Title: Open WebUI Arbitrary File Write, Delete via Path...

8.1CVSS5.9AI score0.00454EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 2:2 p.m.12 views

Open WebUI has a CORS misconfiguration and session validation issue

GitHub Security Lab GHSL Vulnerability Report, open-webui: GHSL-2024-174, GHSL-2024-175 The GitHub Security Lab team has identified potential security vulnerabilities in open-webui. We are committed to working with you to help resolve these issues. In this report you will find everything you need...

6.6AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 1:59 p.m.13 views

PraisonAI's symlink-extraction bypass of `_safe_extractall` writes outside `dest_dir`

Summary The safeextractall helper that all recipe pull, recipe publish, and recipe unpack flows route through validates each archive member's name for absolute paths, .. segments, and resolved-path escape — but does not validate member.linkname, does not reject symlink/hardlink members, and calls...

8.7CVSS6AI score0.00433EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 1:59 p.m.12 views

PraisonAI has unsafe tool resolution in `ToolExecutionMixin.execute_tool`: undeclared `__main__` callables execute

Summary praisonaiagents resolves unresolved tool names against module globals and main after it fails to match the declared tool list and the registry. With the default agent configuration, permallow is None, so undeclared non-dangerous tool names are not rejected by the permission gate. An...

8.6CVSS6AI score0.00363EPSS
Exploits1References3Affected Software2
Github Security Blog
Github Security Blog
added 2026/05/11 1:58 p.m.12 views

PraisonAI MCP `tools/call` path-traversal => RCE via Python `.pth` injection

Summary PraisonAI's MCP Model Context Protocol server praisonai mcp serve registers four file-handling tools by default — praisonai.rules.create, praisonai.rules.show, praisonai.rules.delete, and praisonai.workflow.show. Each accepts a path or filename string from MCP tools/call arguments and joi...

9.6CVSS6.3AI score0.00619EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 1:57 p.m.11 views

PraisonAI knowledge-store backends interpolate unvalidated collection names into SQL and CQL queries

Summary PraisonAI exposes optional SQL/CQL-backed knowledge-store implementations that build table and index identifiers from unvalidated name and collection arguments. Applications that pass untrusted collection names into these backends can trigger SQL or CQL injection. Details This issue affec...

6.3CVSS6AI score0.00216EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 1:56 p.m.12 views

PraisonAI ships and generates a legacy API server with authentication disabled by default, allowing unauthenticated workflow execution

Summary PraisonAI ships a legacy Flask API server with authentication disabled by default. When that server is used, any caller that can reach it can access /agents and trigger the configured agents.yaml workflow through /chat without providing a token. Details The vulnerable server is the shippe...

7.3CVSS6AI score0.26799EPSS
Exploits3References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/11 1:51 p.m.14 views

Gotenberg: Server-Side Request Forgery via Chromium URL Endpoint with Redirect-Based Deny-List Bypass

A review of 4 published Gotenberg security advisories exposed an SSRF issue. GHSA-pjrr-jgp4-v2fm covers SSRF via the downloadFrom endpoint. GHSA-pcrp-7g9h-7qhp covers SSRF via the webhook endpoint. Neither advisory addresses SSRF through the primary Chromium URL-to-PDF conversion endpoint...

8.6CVSS6AI score0.00313EPSS
Exploits1References3Affected Software1
Total number of security vulnerabilities33255