83 matches found
EUVD-2021-0830
Malware in sbrugna...
EUVD-2020-1493
Malware in sbrugna...
EUVD-2022-2592
Malicious code in bioql PyPI...
EUVD-2022-0648
Malicious code in bioql PyPI...
EUVD-2022-0496
Malicious code in bioql PyPI...
EUVD-2022-3176
Malicious code in bioql PyPI...
EUVD-2022-1244
Malicious code in bioql PyPI...
CVE-2022-0239
corenlp is vulnerable to Improper Restriction of XML External Entity Reference...
CVE-2021-3869
corenlp is vulnerable to Improper Restriction of XML External Entity Reference...
CVE-2021-3878
corenlp is vulnerable to Improper Restriction of XML External Entity Reference...
Oracle Business Intelligence Enterprise Edition (OAS 7.0) (July 2024 CPU)
The version of Oracle Business Intelligence Enterprise Edition OAS 7.0.0.0 installed on the remote host is affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory, including the following: - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of...
Security Bulletin: IBM Cognos Analytics is affected but not classified as vulnerable to multiple vulnerabilities
Summary IBM Cognos Analytics is affected but not classified as vulnerable to vulnerabilities, based on current information, in the following 3rd-party components: Stanford coreNLP, FasterXML jackson-databind, SnakeYAML, Dromera Hutool, jsoup, Node.js vm2 and Node.js http-cache-semantics. These...
Stanford CoreNlp 代码注入漏洞
Stanford CoreNlp is a suite of open source, natural language parsing tools written in Java by the Stanford Nlp Group team. A security vulnerability exists in Stanford CoreNlp stanford-parser v3.9.2 and earlier versions, which stems from a code injection vulnerability in the component...
Improper Restriction of XML External Entity Reference in Stanford CoreNLP
corenlp is vulnerable to Improper Restriction of XML External Entity Reference...
GHSA-8GF7-W3CP-GFH3 Improper Restriction of XML External Entity Reference in Stanford CoreNLP
corenlp is vulnerable to Improper Restriction of XML External Entity Reference...
GHSA-5H9G-8XCV-QJQ9 Improper Restriction of XML External Entity Reference in Stanford CoreNLP
corenlp is vulnerable to Improper Restriction of XML External Entity Reference...
Improper Restriction of XML External Entity Reference in Stanford CoreNLP
corenlp is vulnerable to Improper Restriction of XML External Entity Reference...
HTTP Header Injection
stanford-corenlp is vulnerable to HTTP header injection. The addResults function of NERServlet.java does not properly validate the data in an HTTP response, allowing an attacker to inject malicious headers in requests...
Access Control vulnerability within CoreNLP
An Incorrect Access Control vulnerability exists in CoreNLP 4.3.2 via the classifier in NERServlet.java lines 158 and 159...
ae.teletronics.nlp:entityextraction (>=1.3 <=1.4), ai.tock:tock-nlp-model-stanford (>=19.9.0 <=22.3.2) +202 more potentially affected by CVE-2021-44550 via edu.stanford.nlp:stanford-corenlp (>=1.2.0 <=4.3.2)
edu.stanford.nlp:stanford-corenlp MAVEN version =1.2.0, =1.3, =19.9.0, =2.09, =2.7.3, =2.7.3, =2.7.3, =2.0.0, =2.0.1, =2.5, =3.0.1 - com.github.hungntbka:htime =1.0 - com.github.jenshaase.uimascala:arktweetpostagger2.11 =0.6.1 - com.github.jenshaase.uimascala:arktweettokenizer2.11 =0.6.1 -...