Advanced Threat Data Export

Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.

Vulnerability Keyword

Date Range

Severity

Format

Upgrade Package

Data export is locked. Upgrade your package to enable filtering and downloading.

← Back to CVE List

CVE-2026-9372NVD

Description

A flaw has been found in ItzCrazyKns Vane up to 1.12.1. This vulnerability affects unknown code of the file src/app/api/providers/route.ts of the component Model Provider API. This manipulation of the argument baseURL causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Severity Level

HIGH (7.3)

Published Date

24/05/2026

Last Modified

24/05/2026

Exploitation Status

UNKNOWN

References

https://vuldb.com/vuln/365336
https://vuldb.com/vuln/365336/cti
https://vuldb.com/submit/813211
https://github.com/ItzCrazyKns/Vane/issues/1124
https://github.com/ItzCrazyKns/Vane/

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

Advanced Threat Data Export

CVE-2026-9372NVD

Description

References