Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7427 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.33 views

EUVD-2025-23144

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00184EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-25402

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00074EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-1358

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.03397EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-22182

Malicious code in bioql PyPI...

7.3CVSS7.1AI score0.02003EPSS
Exploits1References11
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-1313

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00452EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-29638

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00557EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-46495

Malicious code in bioql PyPI...

4.9CVSS5.3AI score0.0042EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-30670

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.0015EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-18847

Malicious code in bioql PyPI...

6.1CVSS8.1AI score0.00303EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-25212

Malicious code in bioql PyPI...

7.1CVSS6.8AI score0.00523EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-35293

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00313EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.20 views

EUVD-2022-7111

Malicious code in bioql PyPI...

7.3CVSS7.4AI score0.00341EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-33946

Malicious code in bioql PyPI...

3.6CVSS4.5AI score0.00243EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-34422

Malicious code in bioql PyPI...

6.4CVSS6.3AI score0.0031EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-48206

Malicious code in bioql PyPI...

4.9CVSS4.9AI score0.00258EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-33698

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00729EPSS
Exploits0References3
Snyk
Snykadded 2025/09/30 5:1 p.m.2 views

Arbitrary Command Injection

Overview figma-developer-mcp is a Give your coding agent access to your Figma data. Implement designs in any framework in one-shot. Affected versions of this package are vulnerable to Arbitrary Command Injection via the childprocess.exec call using unvalidated user input directly within...

8CVSS7.9AI score0.07417EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2025/09/30 5:1 p.m.16 views

figma-developer-mcp vulnerable to command injection in get_figma_data tool

Summary A command injection vulnerability exists in the figma-developer-mcp MCP Server. The vulnerability is caused by the unsanitized use of input parameters within a call to childprocess.exec, enabling an attacker to inject arbitrary system commands. Successful exploitation can lead to remote...

8CVSS9.5AI score0.07417EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2025/09/30 5:1 p.m.3 views

GHSA-GXW4-4FC5-9GR5 figma-developer-mcp vulnerable to command injection in get_figma_data tool

Summary A command injection vulnerability exists in the figma-developer-mcp MCP Server. The vulnerability is caused by the unsanitized use of input parameters within a call to childprocess.exec, enabling an attacker to inject arbitrary system commands. Successful exploitation can lead to remote...

7.5CVSS9.5AI score0.07417EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/09/30 12:0 a.m.3 views

PT-2025-40046

Summary A command injection vulnerability exists in the figma-developer-mcp MCP Server. The vulnerability is caused by the unsanitized use of input parameters within a call to child process.exec, enabling an attacker to inject arbitrary system commands. Successful exploitation can lead to remote...

7.5CVSS9.5AI score
Exploits0References4
Rows per page
Query Builder