CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Packet Storm News•added 2026/05/21 12:0 a.m.•5 views

Pretraining Data Exposure in Large Language Models: A Survey of Membership Inference, Data Contamination, and Security Implications

Large Language Models LLMs have become the predominant paradigm in NLP, advancing both research and industry. As model sizes and pretraining data grow, concerns about Pretraining Data Exposure PDE increase due to the scale and opacity of training datasets. PDE refers to determining whether specif...

5.8AI score

Exploits0

Packet Storm News•added 2025/10/14 12:0 a.m.•1 views

PromptLocate: Localizing Prompt Injection Attacks

Prompt injection attacks deceive a large language model into completing an attacker-specified task instead of its intended task by contaminating its input data with an injected prompt, which consists of injected instructions and data. Localizing the injected prompt within contaminated data is...

7.2AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-42518

Malicious code in bioql PyPI...

7.4CVSS9AI score0.00481EPSS

Exploits0References3

RedhatCVE•added 2025/02/05 3:48 a.m.•3 views

CVE-2024-27935

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 1.35.1 and prior to version 1.36.3, a vulnerability in Deno's Node.js compatibility runtime allows for cross-session data contamination during simultaneous asynchronous reads from Node.js streams sourced from sockets o...

8.3CVSS7AI score0.00396EPSS

Exploits1References1

Vulnrichment•added 2024/10/25 6:18 a.m.•10 views

CVE-2024-47549

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...

7.4CVSS7AI score0.00481EPSS

Exploits0References3

NVD•added 2024/03/21 2:52 a.m.•7 views

CVE-2024-27935

8.3CVSS7.2AI score0.00396EPSS

Exploits1References3

Prion•added 2024/03/14 10:53 p.m.•30 views

Cross site scripting

7.3AI score0.00396EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2024/03/06 9:2 p.m.•11 views

CVE-2024-27935 Deno's Node.js Compatibility Runtime has Cross-Session Data Contamination

7.2CVSS7.2AI score0.00396EPSS

Exploits1References3

CVE•added 2024/03/06 9:2 p.m.•73 views

CVE-2024-27935

Vulnerability summary (CVE-2024-27935): Deno’s Node.js compatibility runtime is vulnerable in versions 1.35.1 through 1.36.2 (up to but not including 1.36.3). A bug in stream_wrap.ts reuses a global buffer (BUF) to optimize asynchronous reads from Node.js streams, enabling cross-session data cont...

8.3CVSS7.2AI score0.00396EPSS

Exploits1References3Affected Software1

CNNVD•added 2021/12/08 12:0 a.m.•2 views

Fortinet FortiWLM SQL注入漏洞

Fortinet FortiWLM is a wireless manager from Fortinet, Inc. An SQL injection vulnerability exists in Fortinet FortiWLM versions 8.6.1 and below, which can be exploited by attackers to contaminate database data and extract sensitive information via crafted HTTP requests to be sent to alarms and...

8.8CVSS5.9AI score0.00422EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by