Lucene search
K

7 matches found

Packet Storm News
Packet Storm News
added 2025/05/21 12:0 a.m.4 views

Leveraging Large Language Models for Command Injection Vulnerability Analysis in Python: an Empirical Study on Popular Open-Source Projects

Command injection vulnerabilities are a significant security threat in dynamic languages like Python, particularly in widely used open-source projects where security issues can have extensive impact. With the proven effectiveness of Large Language ModelsLLMs in code-related tasks, such as testing...

7.9AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/03/20 12:32 p.m.4 views

api-python-bet-project (>=0.1.9 <=0.1.22), argosml (>=0.0.1 <=0.1.3) +33 more potentially affected by CVE-2025-1473 via mlflow (>=2.17.0 <=2.20.2)

mlflow PYPI version =2.17.0, =0.1.9, =0.0.1, =1.0.6, =1.9.23, =0.1.0, =0.0.10, =1.1.5, =0.1.2370984012, =1.6.0, =0.14.0, =0.14.0, =0.14.0, =0.1.1, =0.1.2 and more Source cves: CVE-2025-1473 Source advisory: OSV:GHSA-969W-GQQR-G6J3...

7.1CVSS6.3AI score0.00202EPSS
Exploits1
NVD
NVD
added 2024/06/26 12:15 a.m.55 views

CVE-2024-38526

pdoc provides API Documentation for Python Projects. Documentation generated with pdoc --math linked to JavaScript files from polyfill.io. The polyfill.io CDN has been sold and now serves malicious code. This issue has been fixed in pdoc 14.5.1...

7.2CVSS0.03832EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/25 11:53 p.m.205 views

CVE-2024-38526 pdoc embeds link to malicious CDN if math mode is enabled

pdoc provides API Documentation for Python Projects. Documentation generated with pdoc --math linked to JavaScript files from polyfill.io. The polyfill.io CDN has been sold and now serves malicious code. This issue has been fixed in pdoc 14.5.1...

7.2CVSS0.03832EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.3 views

SUSE CVE-2022-36069

Poetry is a dependency manager for Python. When handling dependencies that come from a Git repository instead of a registry, Poetry uses various commands, such as git clone. These commands are constructed using user input e.g. the repository URL. When building the commands, Poetry correctly avoid...

7.3CVSS7.8AI score0.01475EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/09/11 12:0 a.m.50 views

Fedora 30 : python38 (2019-4954d8773c)

This is a beta preview of Python 3.8 Python 3.8 is still in development. This release, 3.8.0b4 is the last of four planned beta release previews. Beta release previews are intended to give the wider community the opportunity to test new features and bug fixes and to prepare their projects to...

7.5CVSS7.1AI score0.05366EPSS
Exploits0References13
Fedora
Fedora
added 2014/03/19 8:39 a.m.92 views

[SECURITY] Fedora 20 Update: python-logilab-common-0.61.0-1.fc20

This package contains several modules providing low level functionality shared among some python projects developed by logilab...

4.4CVSS2.5AI score0.00355EPSS
Exploits0
Rows per page
Query Builder