Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Circl
Circladded 2025/12/15 10:7 p.m.2 views

CVE-2025-68142

creationtimestamp| type| source ---|---|--- 2025-12-15 22:07:58+00:00| published-proof-of-concept| https://github.com/facelessuser/pymdown-extensions/security/advisories/GHSA-r6h4-mm7h-8pmq...

6.9CVSS5.8AI score0.00084EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-1568

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01181EPSS
Exploits1References5
Snyk
Snykadded 2025/07/21 3:26 a.m.1 views

Regular Expression Denial of Service (ReDoS)

Overview pymdown-extensions is an Extension pack for Python Markdown. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via the figure caption extension, pymdownx.blocks.caption. A user could exploit this vulnerability by crafting a malicious input tha...

6.9CVSS6.8AI score0.00084EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 2:50 a.m.3 views

CVE-2023-32309

PyMdown Extensions is a set of extensions for the Python-Markdown markdown project. In affected versions an arbitrary file read is possible when using include file syntax. By using the syntax --8--"/etc/passwd" or --8--"/proc/self/environ" the content of these files will be rendered in the...

7.5CVSS6.6AI score0.01181EPSS
Exploits1References1
NVD
NVDadded 2023/05/15 9:15 p.m.15 views

CVE-2023-32309

PyMdown Extensions is a set of extensions for the Python-Markdown markdown project. In affected versions an arbitrary file read is possible when using include file syntax. By using the syntax --8--"/etc/passwd" or --8--"/proc/self/environ" the content of these files will be rendered in the...

7.5CVSS7.6AI score0.01181EPSS
Exploits1References2
CVE
CVEadded 2023/05/15 8:42 p.m.66 views

CVE-2023-32309

CVE-2023-32309 affects PyMdown Extensions (Python-Markdown extensions) and specifically the Snippets feature. The vulnerability allows arbitrary file read via include-file syntax and directory-tr traversal beyond a configured base path, e.g. paths like /etc/passwd or /proc/self/environ can be exp...

7.5CVSS7.4AI score0.01181EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2023/05/15 8:42 p.m.17 views

CVE-2023-32309 Arbitrary file inclusion with the pymdowm-snippets extension

PyMdown Extensions is a set of extensions for the Python-Markdown markdown project. In affected versions an arbitrary file read is possible when using include file syntax. By using the syntax --8--"/etc/passwd" or --8--"/proc/self/environ" the content of these files will be rendered in the...

7.5CVSS7.4AI score0.01181EPSS
Exploits1References4
CNNVD
CNNVDadded 2023/05/15 12:0 a.m.1 views

PyMdown Extensions 路径遍历漏洞

PyMdown Extensions is a collection of extensions for Python Markdown. PyMdown Extensions suffers from a path traversal vulnerability that stems from vulnerability to directory traversal attacks, which could be exploited by an attacker to read arbitrary files...

7.5CVSS7.5AI score0.01181EPSS
Exploits1References3
Rows per page
Query Builder