Количество 2
Количество 2
CVE-2025-47241
9 месяцев назад
In browser-use (aka Browser Use) before 0.1.45, URL parsing of allowed_domains is mishandled because userinfo can be placed in the authority component.
CVSS3: 4
EPSS: Низкий
GHSA-x39x-9qw5-ghrf
9 месяцев назад
Browser Use allows bypassing `allowed_domains` by putting a decoy domain in http auth username portion of a URL
CVSS3: 9.3
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-47241 In browser-use (aka Browser Use) before 0.1.45, URL parsing of allowed_domains is mishandled because userinfo can be placed in the authority component. | CVSS3: 4 | 0% Низкий | 9 месяцев назад |
| GHSA-x39x-9qw5-ghrf Browser Use allows bypassing `allowed_domains` by putting a decoy domain in http auth username portion of a URL | CVSS3: 9.3 | 0% Низкий | 9 месяцев назад |
Уязвимостей на страницу
20