Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Github Security Blog
Github Security Blogadded 2026/03/18 8:8 p.m.6 views

dynaconf Affected by Remote Code Execution (RCE) via Insecure Template Evaluation in @jinja Resolver

Summary Dynaconf is vulnerable to Server-Side Template Injection SSTI due to unsafe template evaluation in the @jinja resolver. When the jinja2 package is installed, Dynaconf evaluates template expressions embedded in configuration values without a sandboxed environment. If an attacker can...

8.1CVSS6.1AI score0.00024EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/18 12:0 a.m.4 views

PT-2026-26201

Name of the Vulnerable Software and Affected Versions dynaconf versions prior to 3.2.13 Description dynaconf is susceptible to Server-Side Template Injection SSTI due to insecure template evaluation within the @Jinja resolver. When the jinja2 package is installed, Dynaconf evaluates template...

8.1CVSS6.2AI score0.00024EPSS
Exploits1References21
Packet Storm News
Packet Storm Newsadded 2025/08/18 12:0 a.m.2 views

VerilogLAVD: LLM-Aided Rule Generation for Vulnerability Detection in Verilog

Timely detection of hardware vulnerabilities during the early design stage is critical for reducing remediation costs. Existing early detection techniques often require specialized security expertise, limiting their usability. Recent efforts have explored the use of large language models LLMs for...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTECadded 2024/08/07 12:0 a.m.2 views

The vulnerability of the `media_pipeline_explore_next_link()` function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the mediapipelineexplorenextlink function in the drivers/media/mc/mc-entity.c kernel module of the Linux operating system is related to insufficient checking of conditions during graph traversal. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.6AI score0.00033EPSS
Exploits0References18Affected Software5
CNNVD
CNNVDadded 2024/07/05 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from a graph traversal occurring in mediapipelinestart, which causes the program to crash...

5.5CVSS6.5AI score0.00033EPSS
Exploits0References7
FireEye
FireEyeadded 2018/01/11 4:45 p.m.17 views

FLARE IDA Pro Script Series: Simplifying Graphs in IDA

Introduction We’re proud to release a new plug-in for IDA Pro users – SimplifyGraph – to help automate creation of groups of nodes in the IDA’s disassembly graph view. Code and binaries are available from the FireEye GitHub repo. Prior to this release we submitted it in the 2017 Hex-Rays plugin...

6.7AI score
Exploits0References4
Rows per page
Query Builder