Lucene search
+L

87 matches found

CVE
CVE
added 4 days ago39 views

CVE-2025-65720

Open Source GPT Researcher v3.3.7 is affected by CVE-2025-65720, described as a remote code execution vulnerability. Attackers can cause arbitrary commands to run on a victim system by interacting with a crafted HTML page. The linked ENISA EUVD entry confirms the issue and references exploitation...

9.8CVSS6.4AI score0.00722EPSS
Exploits0References3
OSV
OSV
added 2026/07/06 6:25 a.m.6 views

OESA-2026-2798 nginx security update

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion ...

9.2CVSS6.3AI score0.03552EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2026/06/12 2:33 p.m.111 views

sbom-risk-analyzer

SBOM-Risk-Analyzer Exploitability-weighted vulnerability pri...

5.5AI score
Exploits0
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.13 views

Fleet 安全漏洞

Fleet is an open-source device management platform developed by Fleet Device Management. It supports various operating systems and devices, and helps IT and security teams with device management, vulnerability reporting, and MDM operations. Versions of Fleet prior to 4.82.0 contained security...

8.2CVSS5.8AI score0.00381EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/05/08 6:31 p.m.8 views

aurora-cycler-manager (>=0.10.0 <=0.11.4), fusion-tools (>=3.6.19 <=3.6.90) +9 more potentially affected by CVE-2026-38360 via dash-uploader (>=0.6.0 <=0.7.0a2)

dash-uploader PYPI version =0.6.0, =0.10.0, =3.6.19, =0.0.11, =0.0.30, =0.2.4b0, =0.0.50.0, =0.1.7.3, =2.0.1, =0.2.0, =0.4.1 Source cves: CVE-2026-38360 Source advisory: OSV:GHSA-3RF6-X59V-5JFV...

9.8CVSS7.2AI score0.05982EPSS
Exploits4
vulnersOsv
vulnersOsv
added 2026/04/22 12:0 p.m.8 views

hickory-server (>=0.24.0 <=0.25.0-alpha.1) potentially affected by unknown CVE via hickory-recursor (>=0.24.4 <=0.25.0-alpha.1)

hickory-recursor CARGO version =0.24.4, =0.24.0, =0.25.0-alpha.1 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0106...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/14 12:35 p.m.12 views

bjs-biginteger (=5.0.5) potentially affected by unknown CVE via bjs-lint-builders (=1.1.0)

bjs-lint-builders NPM version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on bjs-lint-builders and may be impacted: - bjs-biginteger =5.0.5 Source cves: unknown CVE Source advisory: OSV:MAL-2026-2881...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/18 8:19 p.m.5 views

any2htpy (=0.1.4) potentially affected by unknown CVE via justhtml (=0.35.0)

justhtml PYPI version =0.35.0 is affected by a known vulnerability. The following packages have a transitive dependency on justhtml and may be impacted: - any2htpy =0.1.4 Source cves: unknown CVE Source advisory: OSV:GHSA-3RCM-VJRC-P45J...

5.5AI score
Exploits0
OSV
OSV
added 2026/03/12 6:27 p.m.3 views

CVE-2026-3497

Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. This vulnerability affects the GSSAPI patches added by various Linux distributions and does not affect the OpenSSH upstream project itself. The usage of sshpktdisconnect on an error, which does not terminate the...

6.9CVSS7.2AI score0.0218EPSS
Exploits0References47
Circl
Circl
added 2026/02/06 4:47 p.m.9 views

CVE-2026-24418

creationtimestamp| type| source ---|---|--- 2026-02-06 16:47:32+00:00| published-proof-of-concept| https://github.com/devcode-it/openstamanager/security/advisories/GHSA-4xwv-49c8-fvhq 2026-06-29 18:55:45+00:00| seen| https://infosec.exchange/users/DarkWebInformer/statuses/116834915504542283...

8.7CVSS4.8AI score0.00356EPSS
Exploits4References2
vulnersOsv
vulnersOsv
added 2026/02/03 5:52 p.m.10 views

cn.datask:dat-adapter-duckdb (>=0.6.1 <=0.7.1), cn.datask:dat-adapter-mysql (>=0.6.1 <=0.7.1) +158 more potentially affected by CVE-2026-25526 via com.hubspot.jinjava:jinjava (>=2.8.0 <=2.8.2)

com.hubspot.jinjava:jinjava MAVEN version =2.8.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.7.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.7.1 and more Source cves: CVE-2026-25526 Source advisory: OSV:GHSA-GJX9-J8F8-7J74...

9.8CVSS5.8AI score0.00889EPSS
Exploits1
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.10 views

vLLM code issues and vulnerabilities

vLLM is an open-source solution designed for LLM-based models, featuring high throughput and memory-efficient reasoning and service engines. Prior to vLLM 0.14.1, there were code-related vulnerabilities. These vulnerabilities stemmed from differences in the interpretation of backslashes by variou...

7.1CVSS6.8AI score0.00528EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2026/01/13 7:54 p.m.10 views

@cenk1cenk2/renovate-config (>=2.0.0 <=2.3.148), @jamietanna/patch-testing (>=0.1.0 <=0.2.28) +8 more potentially affected by unknown CVE via renovate (>=32.241.11 <=42.66.1)

renovate NPM version =32.241.11, =2.0.0, =0.1.0, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.0.1, =0.19.0 - @zotero-chinese/renovate-config =1.0.3 Source cves: unknown CVE Source advisory: OSV:GHSA-PFQ2-HH62-7M96...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/01/08 9:46 p.m.4 views

query-rds-data (>=2.0.0 <=2.0.1) potentially affected by unknown CVE via aws-sdk-rdsdata (=0.15.0)

aws-sdk-rdsdata CARGO version =0.15.0 is affected by a known vulnerability. The following packages have a transitive dependency on aws-sdk-rdsdata and may be impacted: - query-rds-data =2.0.0, =2.0.1 Source cves: unknown CVE Source advisory: OSV:GHSA-G59M-GF8J-GJF5...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/01/06 12:0 a.m.6 views

iccDEV 代码问题漏洞

iccDEV is an open source color configuration code library from the International Color Consortium ICC. A code issue vulnerability exists in iccDEV 2.3.1 and earlier versions, which stems from an integer overflow and underflow in the CIccXmlArrayType::ParseTextCountNum function, which could lead t...

7.8CVSS7AI score0.00166EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2025/11/12 4:47 p.m.8 views

siddheshtea (=1.1.6) potentially affected by unknown CVE via nuilava-darae-naha (=1.0.0)

nuilava-darae-naha NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on nuilava-darae-naha and may be impacted: - siddheshtea =1.1.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-163876...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/11/12 4:47 p.m.10 views

siddheshtea (=1.1.6) potentially affected by unknown CVE via muklis-23 (=1.0.0)

muklis-23 NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on muklis-23 and may be impacted: - siddheshtea =1.1.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-160807...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2004-2064

Malware in sbrugna...

6.8CVSS6.4AI score0.04178EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2334

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.0082EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-2122

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.02313EPSS
Exploits1References4
Rows per page
Query Builder