Vulners
Lucene search
3 matches found
EUVD-2025-6920
Malicious code in bioql PyPI...
8.3CVSS8.4AI score0.00152EPSS
Exploits0References2
CVE-2024-8099
A Server-Side Request Forgery SSRF vulnerability exists in the latest version of vanna-ai/vanna when using DuckDB as the database. An attacker can exploit this vulnerability by submitting crafted SQL queries that leverage DuckDB's default features, such as readcsv, readcsvauto, readtext, and...
8.3CVSS7.4AI score0.00152EPSS
Exploits0References1
CVE-2024-8099 Server-Side Request Forgery (SSRF) in vanna-ai/vanna
A Server-Side Request Forgery SSRF vulnerability exists in the latest version of vanna-ai/vanna when using DuckDB as the database. An attacker can exploit this vulnerability by submitting crafted SQL queries that leverage DuckDB's default features, such as readcsv, readcsvauto, readtext, and...
8.3CVSS8.4AI score0.00152EPSS
Exploits0References1
20