Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 13 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-24124 Dragonfly Manager Job API Allows Unauthenticated Access dragonflyossdragonfly 超危 -2026-01-22 22:20:21 Deep Dive
CVE-2025-59410 Dragonfly tiny file download uses hard coded HTTP protocol dragonflyossdragonfly--2025-09-17 19:58:54 Deep Dive
CVE-2025-59354 Dragonfly has weak integrity checks for downloaded files dragonflyossdragonfly--2025-09-17 19:57:07 Deep Dive
CVE-2025-59353 Manager generates mTLS certificates for arbitrary IP addresses dragonflyossdragonfly--2025-09-17 19:53:36 Deep Dive
CVE-2025-59352 Dragonfly allows arbitrary file read and write on a peer machine dragonflyossdragonfly--2025-09-17 19:50:39 Deep Dive
CVE-2025-59351 Dragonfly possibly panics due to nil pointer dereference when using variables created alongside an error dragonflyossdragonfly--2025-09-17 19:46:41 Deep Dive
CVE-2025-59350 Timing attacks against Proxy’s basic authentication are possible dragonflyossdragonfly--2025-09-17 19:43:24 Deep Dive
CVE-2025-59349 Directories created via os.MkdirAll are not checked for permissions dragonflyossdragonfly--2025-09-17 19:41:04 Deep Dive
CVE-2025-59348 Dragonfly incorrectly handles a task structure’s usedTraffic field dragonflyossdragonfly--2025-09-17 19:30:23 Deep Dive
CVE-2025-59347 Dragonfly Manager makes requests to external endpoints with disabled TLS authentication dragonflyossdragonfly--2025-09-17 19:23:21 Deep Dive
CVE-2025-59346 Dragonfly server-side request forgery vulnerability dragonflyossdragonfly--2025-09-17 19:20:23 Deep Dive
CVE-2025-59345 Dragonfly did not enable authentication for some Manager’s endpoints dragonflyossdragonfly--2025-09-17 19:05:53 Deep Dive
CVE-2023-27584 Dragonfly2 vulnerable to hard coded cyptographic key dragonflyossDragonfly2 Critical 9.8 2024-09-19 22:54:40 Deep Dive