Lucene search
K

168 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:34 a.m.15 views

CVE-2024-41117

streamlit-geospatial is a streamlit multipage app for geospatial applications. Prior to commit c4f81d9616d40c60584e36abb15300853a66e489, the visparams variable on line 115 in pages/10🌍EarthEngineDatasets.py takes user input, which is later used in the eval function on line 126, leading to remote...

9.8CVSS9.7AI score0.01322EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:33 a.m.10 views

CVE-2024-41113

streamlit-geospatial is a streamlit multipage app for geospatial applications. Prior to commit c4f81d9616d40c60584e36abb15300853a66e489, the visparams variable on line 383 or line 390 in pages/1📷Timelapse.py takes user input, which is later used in the eval function on line 395, leading to remote...

9.8CVSS9.7AI score0.01395EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-0164

Malicious code in bioql PyPI...

6.5CVSS5.8AI score0.00568EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-38931

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01395EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-38937

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00713EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-0247

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00407EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-38933

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01395EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-38932

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01395EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-38938

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01395EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-38934

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01475EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-0282

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.01323EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-38939

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00786EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-38935

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01322EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-38936

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01322EPSS
Exploits1References4
Snyk
Snyk
added 2025/09/04 6:45 a.m.0 views

Cross-site Scripting (XSS)

Overview streamlit-shortcuts is a Streamlit keyboard shortcuts for your buttons. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the addshortcuts function which fails to properly escape special characters when injecting JavaScript code into the DOM. Details...

6.1CVSS5.3AI score
Exploits0References3
GithubExploit
GithubExploit
added 2025/08/27 4:36 p.m.194 views

graph-rag-poc

Graph RAG Pipeline - Proof of Concept A locally-executable Gr...

7.4AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.1 views

Malicious code in figma-to-streamlit (npm)

The package figma-to-streamlit was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-20521 Malicious code in figma-to-streamlit (npm)

The package figma-to-streamlit was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 7:55 a.m.7 views

CVE-2024-42474

Streamlit is a data oriented application development framework for python. Snowflake Streamlit open source addressed a security vulnerability via the static file sharing feature. Users of hosted Streamlit apps on Windows were vulnerable to a path traversal vulnerability when the static file shari...

6.5CVSS6.9AI score0.00568EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:32 a.m.5 views

CVE-2023-27494

Streamlit, software for turning data scripts into web applications, had a cross-site scripting XSS vulnerability in versions 0.63.0 through 0.80.0. Users of hosted Streamlit apps were vulnerable to a reflected XSS vulnerability. An attacker could craft a malicious URL with Javascript payloads to ...

6.1CVSS5.2AI score0.00407EPSS
Exploits0References1
Rows per page
Query Builder