Vadim

2 exploits Active since May 2021
CVE-2021-25939 WRITEUP LOW WRITEUP
ArangoDB 3.7.0-3.9.0-alpha.1 - Authenticated Server-Side Request Forgery via Foxx Service Download
In ArangoDB, versions v3.7.0 through v3.9.0-alpha.1 have a feature which allows downloading a Foxx service from a publicly available URL. This feature does not enforce proper filtering of requests performed internally, which can be abused by a highly-privileged attacker to perform blind SSRF and send internal requests to localhost.
CVSS 2.7
CVE-2021-25938 WRITEUP MEDIUM WRITEUP
ArangoDB 2.2.6.2-3.7.10 - Cross-Site Scripting via ZIP File Name
In ArangoDB, versions v2.2.6.2 through v3.7.10 are vulnerable to Cross-Site Scripting (XSS), since there is no validation of the .zip file name and filtering of potential abusive characters which zip files can be named to. There is no X-Frame-Options Header set, which makes it more susceptible for leveraging self XSS by attackers.
CVSS 6.1