EUVD-2025-34071

llama-index has Insecure Temporary File...

CVE-2025-7707

The CVE-2025-7707 entry concerns llama_index 0.12.33, where NLTK data directory is set to a subdirectory of the codebase, creating a world-writable shared cache and enabling local data tampering, DoS, or privilege escalation. Connected disclosures confirm the issue and point to fixes/upgrades: re...

CVE-2023-51337

PHPJabbers Event Ticketing System v1.0 is vulnerable to Reflected Cross-Site Scripting XSS in "lid" parameter in index...

PT-2024-29576 · Unknown · Llama Index

Name of the Vulnerable Software and Affected Versions: llama index library version 0.9.47 Description: A command injection issue exists due to the improper use of the eval function in the RunGptLLM class, allowing a malicious LLM hosting provider to execute arbitrary commands on the client's...

CVE-2020-21656

XYHCMS v3.6 contains a stored cross-site scripting XSS vulnerability in the component xyhai.php?s=/Link/index...

Debian: Security Advisory (DSA-1162)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...