Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-0301

Malicious code in bioql PyPI...

9.6CVSS8.7AI score0.00203EPSS
Exploits1References6
CVE
CVEadded 2025/07/04 8:42 a.m.34 views

CVE-2025-24764

The CVE-2025-24764 entry pertains to the WordPress plugin “(Simply) Guest Author Name” (versions up to 4.36) and describes a DOM-based Cross-Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation. Public sources in the connected docs indicate this is...

6.5CVSS5.9AI score0.00143EPSS
Exploits0References1
OSV
OSVadded 2023/12/20 5:15 p.m.8 views

CVE-2023-7018

Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36...

7.8CVSS9.4AI score
Exploits0References2
PyPA
PyPAadded 2023/12/20 5:15 p.m.4 views

PYSEC-2023-301

Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36...

9.6CVSS6.7AI score0.00203EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2023/12/20 12:0 a.m.3 views

Hugging Face Transformers Code Issue Vulnerability

Hugging Face Transformers is advanced natural language processing for Jax, PyTorch and TensorFlow. A code issue vulnerability exists in Hugging Face Transformers versions prior to 4.36, which stems from the presence of a deserialization vulnerability...

9.6CVSS7AI score0.00203EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/12/20 12:0 a.m.2 views

PT-2023-32836 · Hugging Face · Transformers

Name of the Vulnerable Software and Affected Versions: huggingface/transformers versions prior to 4.36 Description: The issue concerns the deserialization of untrusted data, which can compromise model integrity and potentially lead to remote code execution RCE. This is particularly relevant when...

9.6CVSS8.9AI score0.00203EPSS
Exploits1References11
OPENSUSE Linux
OPENSUSE Linuxadded 2023/08/17 12:0 a.m.3 views

Security update for perl-Cpanel-JSON-XS (moderate)

openSUSE Security Update: Security update for perl-Cpanel-JSON-XS Announcement ID: openSUSE-SU-2023:0225-1 Rating: moderate References: Affected Products: openSUSE Backports SLE-15-SP5 An update that contains security fixes can now be installed. Description: This update for perl-Cpanel-JSON-XS...

5.5AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2012/04/02 6:55 p.m.1 views

CVE-2011-5085

Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors...

7.5CVSS5.6AI score0.0046EPSS
Exploits0References3
NVD
NVDadded 2006/12/04 11:28 a.m.11 views

CVE-2006-6249

Cross-site scripting XSS vulnerability in Chama Cargo 4.36 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.8CVSS5.7AI score0.01631EPSS
Exploits0References6
CVE
CVEadded 2006/12/04 11:0 a.m.36 views

CVE-2006-6249

CVE-2006-6249 is a cross-site scripting (XSS) vulnerability in Chama Cargo (a CGI Perl-based shopping site). Affected: Chama Cargo 4.36 and earlier. Root cause/impact: allows remote attackers to inject arbitrary web script or HTML that can execute in the victim’s browser (vector unspecified). Pub...

6.8CVSS6AI score0.01631EPSS
Exploits0References6Affected Software1
securityvulns
securityvulnsadded 2006/02/10 12:0 a.m.29 views

[SA18751] DataparkSearch Unspecified Cross-Site Scripting Vulnerability

TITLE: DataparkSearch Unspecified Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA18751 VERIFY ADVISORY: http://secunia.com/advisories/18751/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: DataparkSearch 4.x http://secunia.com/product/7889/ DESCRIPTION...

1.1AI score
Exploits0
Rows per page
Query Builder