RedPacket SecurityHackerOne Bug Bounty Disclosure: -click-account-takeover-via-open-redirect-through-regex-bypass-in-domain-validation-farr - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-click-account-takeover-via-open-redirect-through-regex-bypass-in-domain-validation-farr/
Hugo | DevOps | Cybersecurity
EUVD Bot๐จ EUVD-2024-55642
๐ Score: 9.3/10 (CVSS v3.1)
๐ฆ Product: Flowise
๐ข Vendor: Flowise
๐
Updated: 2026-06-20
๐ Flowise before 2.1.4 allows configuration to be injected into the Chainflow during execution via the overrideConfig option, supported in both the frontend web integration and the backend Prediction API. Because this feature is enabled by default with no allo...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-55642
๐จ EUVD-2026-38112
๐ Score: 2.3/10 (CVSS v3.1)
๐ฆ Product: nuxt, nuxt
๐ข Vendor: nuxt
๐
Updated: 2026-06-20
๐ Nuxt before 4.4.7 (and the 3.x branch before 3.21.7) contains a cross-site scripting vulnerability in the NoScript component that writes slot content to innerHTML without escaping. Attackers can inject malicious scripts through untrusted data in NoScript slo...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-38112
๐จ EUVD-2026-38113
๐ Score: 2.3/10 (CVSS v3.1)
๐ฆ Product: capgo
๐ข Vendor: Capgo
๐
Updated: 2026-06-20
๐ Capgo before 12.128.2 uses ILIKE pattern matching instead of exact matching for app_id lookup in the preview subdomain resolver, allowing underscore characters in app_id to act as SQL wildcards. Attackers can create apps with app_ids differing by one character a...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-38113
๐จ EUVD-2025-210289
๐ Score: 5.1/10 (CVSS v3.1)
๐ฆ Product: Flowise
๐ข Vendor: Flowise
๐
Updated: 2026-06-20
๐ Flowise before 3.0.8 contains a cross-site scripting (XSS) vulnerability caused by insufficient input filtering in chat messages and custom agent functions. An attacker can inject malicious JavaScript by sending an iframe payload (e.g., <iframe src="javasc...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-210289
๐จ EUVD-2026-38114
๐ Score: 6.9/10 (CVSS v3.1)
๐ฆ Product: capgo
๐ข Vendor: Capgo
๐
Updated: 2026-06-20
๐ Capgo before 12.128.2 fails to strip EXIF metadata including GPS geolocation data from uploaded images, allowing information disclosure. Attackers can download uploaded images and extract precise latitude and longitude coordinates revealing user physical locatio...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-38114
๐จ EUVD-2026-38115
๐ Score: 5.3/10 (CVSS v3.1)
๐ฆ Product: capgo
๐ข Vendor: Capgo
๐
Updated: 2026-06-20
๐ Capgo before 12.128.2 contains a server-side request forgery vulnerability in webhook URL validation that allows loopback and internal addresses. Organization admins can configure webhooks pointing to localhost or 127.0.0.1, and when triggered, the backend perfo...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-38115
๐จ EUVD-2026-38116
๐ Score: 6.9/10 (CVSS v3.1)
๐ฆ Product: capgo
๐ข Vendor: Capgo
๐
Updated: 2026-06-20
๐ Capgo before 12.128.2 fails to enforce a maximum value on the minimum password length field in its password policy configuration. An authenticated organization administrator can set an extremely large numeric value (e.g., billions of characters) as the minimum p...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-38116
๐จ EUVD-2026-38117
๐ Score: 6.9/10 (CVSS v3.1)
๐ฆ Product: capgo
๐ข Vendor: Cap-go
๐
Updated: 2026-06-20
๐ Cap-go capgo before 12.128.2 contains an authorization bypass in several Supabase PostgREST RPC functions (get_app_metrics, get_global_metrics, get_total_metrics) that are granted to the anon role without enforcing org membership or permission checks. An unauth...
๐ https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-38117
