The product does not properly verify that the source of data or communication is valid.
479 vulnerabilities with CWE-346
CVE-2025-30466
CRITICAL
Safari <18.4 - Open Redirect
CVSS 9.8
CVE-2025-5320
LOW
Pypi Gradio - Origin Validation Error
CVSS 3.7
CVE-2025-5263
MEDIUM
Mozilla Firefox < 115.24.0 - Origin Validation Error
CVSS 4.3
CVE-2025-4839
LOW
Itwanger Paicoding - Permissive CORS Policy
CVSS 3.1
CVE-2025-46737
HIGH
SEL-5037 Grid Configurator - SSRF
CVSS 7.4
CVE-2025-4542
LOW
Freeebird Hotel < 1.2 - Permissive CORS Policy
CVSS 3.1
CVE-2025-4515
MEDIUM
Pribai Privategpt < 0.6.2 - Permissive CORS Policy
CVSS 4.3
CVE-2025-3462
HIGH
ASUS DriverHub - SSRF
CVE-2025-43929
MEDIUM
Kovidgoyal Kitty < 0.41.0 - Origin Validation Error
CVSS 4.1
CVE-2025-3651
CRITICAL
Work Desktop for Mac <10.8.2.33 - RCE
CVE-2025-3071
MEDIUM
Google Chrome < 135.0.7049.52 - Origin Validation Error
CVSS 5.4
CVE-2025-2346
MEDIUM
IROAD Dash Cam X5-X6 <20250308 - Origin Validation Error
CVSS 5.6
CVE-2025-25306
CRITICAL
Misskey < 2025.2.1 - Origin Validation Error
CVSS 9.3
CVE-2025-25302
MEDIUM
Rembg <2.0.57 - SSRF
CVSS 6.5
CVE-2025-23117
MEDIUM
UniFi Protect < - Privilege Escalation
CVSS 6.8
CVE-2025-1102
MEDIUM
Q-free Maxtime < 2.11.0 - Origin Validation Error
CVSS 5.5
CVE-2025-1083
LOW
Mindskip xzs-mysql 3.9.0 - SSRF
CVSS 3.1
CVE-2025-23023
HIGH
Discourse < 3.3.2 - Origin Validation Error
CVSS 8.2
CVE-2025-21542
MEDIUM
Oracle Communications Order And Servi... - Origin Validation Error
CVSS 6.3
CVE-2025-21511
HIGH
Oracle JD Edwards Enterpriseone Tools - Origin Validation Error
CVSS 7.5
CVE-2025-21497
MEDIUM
Oracle Mysql Server < 8.0.40 - Origin Validation Error
CVSS 5.5
CVE-2025-24010
MEDIUM
Vite <6.0.9, 5.4.12, 4.5.6 - SSRF
CVSS 6.5
CVE-2025-23109
MEDIUM
Mozilla Firefox < 134.0 - Origin Validation Error
CVSS 6.5
CVE-2024-32642
HIGH
Masacms < 7.2.8 - Origin Validation Error
CVSS 8.8
CVE-2024-14006
MEDIUM
Nagios XI < 2024 - Origin Validation Error
CVSS 6.1
Details
Vulnerabilities
479