Lucene search
K

34 matches found

RedhatCVE
RedhatCVE
added 2026/01/01 1:34 p.m.5 views

CVE-2025-62742

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Curator.io Curator.io curatorio allows Stored XSS.This issue affects Curator.io: from n/a through = 1.9.5...

6.5CVSS5.9AI score0.00127EPSS
Exploits0References1
NVD
NVD
added 2025/12/31 1:15 p.m.7 views

CVE-2025-62742

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Curator.io Curator.io curatorio allows Stored XSS.This issue affects Curator.io: from n/a through = 1.9.5...

6.5CVSS0.00127EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/31 1:3 p.m.5 views

EUVD-2025-205969

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Curator.Io allows Stored XSS.This issue affects Curator.Io: from n/a through 1.9.5...

6.5CVSS5.5AI score0.00127EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.7 views

PT-2025-54323

Name of the Vulnerable Software and Affected Versions Curator.Io versions through 1.9.5 Description A flaw exists in Curator.Io that allows for Stored Cross-site Scripting XSS. This issue involves improper neutralization of input during web page generation. The vulnerability could potentially all...

6.5CVSS5.9AI score0.00127EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/31 12:0 a.m.5 views

WordPress plugin Curator.Io 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-sit...

6.5CVSS5.9AI score0.00127EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-25828

Malicious code in bioql PyPI...

7.8CVSS6.7AI score0.00288EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-3431

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/30 6:18 p.m.5 views

CVE-2025-23307

NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by an attacker could allow code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS7.2AI score0.00288EPSS
Exploits0References1
Snyk
Snyk
added 2025/08/26 7:41 p.m.3 views

Arbitrary Code Injection

Overview nemo-curator is a Scalable Data Preprocessing Tool for Training Large Language Models Affected versions of this package are vulnerable to Arbitrary Code Injection via the processing of malicious files. An attacker can execute arbitrary code, escalate privileges, access sensitive...

8.5CVSS7.9AI score0.00288EPSS
Exploits0References2
OSV
OSV
added 2025/08/26 7:15 p.m.4 views

CVE-2025-23307

NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by an attacker could allow code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS5.9AI score0.00288EPSS
Exploits0References3
NVD
NVD
added 2025/08/26 7:15 p.m.3 views

CVE-2025-23307

NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by an attacker could allow code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS0.00288EPSS
Exploits0References3
CVE
CVE
added 2025/08/26 6:25 p.m.26 views

CVE-2025-23307

CVE-2025-23307 affects NVIDIA NeMo Curator (all platforms). The vulnerability arises from processing maliciously crafted files, enabling arbitrary code execution via code injection, with potential for escalation of privileges, information disclosure, and data tampering. Public advisories in multi...

7.8CVSS7.1AI score0.00288EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/08/26 6:25 p.m.9 views

CVE-2025-23307

NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by an attacker could allow code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS0.00288EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/26 6:25 p.m.1 views

CVE-2025-23307

NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by an attacker could allow code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS7.7AI score0.00288EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.4 views

NVIDIA NeMo Curator 代码注入漏洞

NVIDIA NeMo Curator is a software for building or customizing world base model videos from NVIDIA. NVIDIA NeMo Curator suffers from a code injection vulnerability that originates from a malicious file that could lead to code injection, which in turn could lead to code execution, elevation of...

7.8CVSS7.2AI score0.00288EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.5 views

PT-2025-34802

Name of the Vulnerable Software and Affected Versions: NVIDIA NeMo Curator affected versions not specified Description: NVIDIA NeMo Curator is susceptible to a code injection issue stemming from maliciously crafted files. Exploitation could result in code execution, privilege escalation,...

7.8CVSS7AI score0.00288EPSS
Exploits0References11
Nvidia
Nvidia
added 2025/08/26 12:0 a.m.9 views

Security Bulletin: NVIDIA NeMo Curator - August 2025

NVIDIA has released a software update for NVIDIA® NeMo Curator To protect your system, download and install the latest NVIDIA Nemo Curator from NVIDIA Github. Go to NVIDIA Product Security...

7.8CVSS7.1AI score0.00229EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 8:15 a.m.5 views

CVE-2024-9057

The Curator.io: Show all your social media posts in a beautiful feed. plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘feedid’ attribute in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS6.1AI score0.00295EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/05/06 4:38 p.m.6 views

aana (>=0.2.1 <=0.2.2.2), aios-core (>=0.0.1b1 <=0.0.1b2) +64 more potentially affected by CVE-2025-30165 via vllm (>=0.5.3.post1 <=0.9.2)

vllm PYPI version =0.5.3.post1, =0.2.1, =0.0.1b1, =0.2.2, =0.1.0, =0.1.15, =0.2.13, =0.1.0, =0.1.0, =0.0.2, =0.1.1, =0.1.1, =0.0.2, =1.1.4, =1.1.5 - expert-score =0.0.1 and more Source cves: CVE-2025-30165 Source advisory: SNYK:PYTHON-VLLM-10116727...

8CVSS7.8AI score0.00502EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/07 9:52 a.m.7 views

CVE-2025-23799

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tubegtld .TUBE Video Curator tube-video-curator allows Reflected XSS.This issue affects .TUBE Video Curator: from n/a through = 1.1.9...

7.1CVSS7.2AI score0.00303EPSS
Exploits0References1
Rows per page
Query Builder