Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Github Security Blog
Github Security Blogadded 2026/06/16 5:36 p.m.74 views

vLLM: OpenAI auth bypass

Summary A vulnerability in ASGI web servers and starlette's trust on those web servers enables an authentication bypass of the OpenAI API AuthenticationMiddleware, which was discovered during @x41sec's source code audit. It allows to use the API without providing the configured VLLMAPIKEY or...

9.1CVSS5.5AI score0.0074EPSS
Exploits0References4Affected Software1
CNNVD
CNNVDadded 2026/06/03 12:0 a.m.4 views

Django daphne 资源管理错误漏洞

Daphne is an open-source ASGI server developed by Django that supports HTTP, HTTP2, and WebSocket protocols. Versions of Daphne prior to 4.2.2 contained security vulnerabilities. These vulnerabilities stemmed from the lack of passing the maximum frame size or the payload size of messages, allowin...

7.5CVSS6AI score0.00328EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2026/01/14 4:52 p.m.8 views

BlackSheep's ClientSession is vulnerable to CRLF injection

Impact The HTTP Client implementation in BlackSheep is vulnerable to CRLF injection. Missing headers validation makes it possible for an attacker to modify the HTTP requests e.g. insert a new header or even create a new HTTP request. Exploitation requires developers to pass unsanitized user input...

6.3CVSS6.7AI score0.00307EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder