2 matches found
SIExVulTS: Sensitive Information Exposure Vulnerability Detection System Using Transformer Models and Static Analysis
Sensitive Information Exposure SIEx vulnerabilities CWE-200 remain a persistent and under-addressed threat across software systems, often leading to serious security breaches. Existing detection tools rarely target the diverse subcategories of CWE-200 or provide context-aware analysis of code-lev...
FuncVul: an Effective Function Level Vulnerability Detection Model Using LLM and Code Chunk
Software supply chain vulnerabilities arise when attackers exploit weaknesses by injecting vulnerable code into widely used packages or libraries within software repositories. While most existing approaches focus on identifying vulnerable packages or libraries, they often overlook the specific...