88 matches found
EUVD-2024-40253
Malicious code in bioql PyPI...
EUVD-2022-0289
Malicious code in bioql PyPI...
EUVD-2024-1202
Malicious code in bioql PyPI...
EUVD-2024-0813
Malicious code in bioql PyPI...
EUVD-2021-8674
Malicious code in bioql PyPI...
Integrated Simulation Framework for Adversarial Attacks on Autonomous Vehicles
Autonomous vehicles AVs rely on complex perception and communication systems, making them vulnerable to adversarial attacks that can compromise safety. While simulation offers a scalable and safe environment for robustness testing, existing frameworks typically lack comprehensive supportfor...
Langflow Chatbot Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Langflow chatbot on the target application. Langflow is an open-source visual framework for building multi-agent and RAG. This detection is included in the AI and LLM category. No source data...
CVE-2021-43831
Gradio is an open source framework for building interactive machine learning models and demos. In versions prior to 2.5.0 there is a vulnerability that affects anyone who creates and publicly shares Gradio interfaces. File paths are not restricted and users who receive a Gradio link can access an...
CVE-2021-32824
Apache Dubbo is a java based, open source RPC framework. Versions prior to 2.6.10 and 2.7.10 are vulnerable to pre-auth remote code execution via arbitrary bean manipulation in the Telnet handler. The Dubbo main service port can be used to access a Telnet Handler which offers some basic methods t...
Bootstrap å®å Øę¼ę“
Bootstrap is an open source web front-end framework developed using HTML, CSS and JavaScript by Bootstrap Inc. A security vulnerability exists in Bootstrap versions prior to 3.4.1 through 4.0.0 that stems from improper input neutralization and could lead to a cross-site scripting attack...
CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
š« CAMEL is an open-source community dedicated to finding the scaling laws of agents. We believe that studying these agents on a large scale offers valuable insights into their behaviors, capabilities, and potential risks. To facilitate research in this field, we implement and support various type...
Maryam - Open-source Intelligence(OSINT) Framework
OWASP Maryam is a modular open-source framework based on OSINT and data gathering. It is designed to provide a robust environment to harvest data from open sources and search engines quickly and thoroughly. Installation Supported OS Linux FreeBSD Darwin OSX $ pip install maryam Alternatively, you...
Dragonfly å®å Øę¼ę“
Dragonfly is an open source framework from DragonflyDB that allows dynamic processing of any content type. A security vulnerability exists in Dragonfly 1.28.2 and earlier versions, which stems from a Lua library command that references a large negative integer, potentially leading to a denial of...
CVE-2025-27092 Path Traversal Vulnerability in GHOSTS Photo Retrieval Endpoint
GHOSTS is an open source user simulation framework for cyber experimentation, simulation, training, and exercise. A path traversal vulnerability was discovered in GHOSTS version 8.0.0.0 that allows an attacker to access files outside of the intended directory through the photo retrieval endpoint...
CVE-2024-54145
Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in the getdiscoveryresults function of automationdevices.php using the network parameter. This vulnerability is fixed in 1.2.29...
Letta å®å Øę¼ę“
Letta MemGPT is an open source framework for building stateful LLM applications from Letta Open Source. A security vulnerability exists in Letta version v0.3.17 that stems from incorrect access control. An attacker exploiting the vulnerability could access sensitive data...
data.all å®å Øę¼ę“
data.all is an open source development framework from data-dot-all open source. A security vulnerability exists in data.all that stems from the fact that a member of the data.all management team with access to an AWS account owned by a customer deploying data.all may be able to extract user data...
BYOB å®å Øę¼ę“
BYOB Build Your Own Botnet is an open source post-development framework for students, researchers and developers by malwaredllc individual developers. A security vulnerability exists in version 2.0 of BYOB, which stems from the inclusion of an arbitrary file write issue...
Webkul Software Bagisto Security Vulnerability
Webkul Software Bagisto is an open source e-commerce framework from Indian company Webkul Software. A security vulnerability exists in Webkul Software Bagisto version v.1.5.0, which stems from an insecure direct object reference IDOR issue that allows an attacker to obtain sensitive information v...
GPAC Denial of Service Vulnerability (CNVD-2024-06174)
GPAC is an open source multimedia framework. A denial of service vulnerability exists in GPAC version 2.3-DEV, which originates from an infinite loop in function av1uvlc in mediatools/avparsers.c. An attacker can exploit this vulnerability to cause a denial of service...