Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-32440

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00448EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/07/07 7:16 p.m.6 views

CVE-2025-53539 ReDoS in fastapi-guard's penetration attempts detector

FastAPI Guard is a security library for FastAPI that provides middleware to control IPs, log requests, and detect penetration attempts. fastapi-guard's penetration attempts detection uses regex to scan incoming requests. However, some of the regex patterns used in detection are extremely...

6.9CVSS0.00472EPSS
Exploits1References2
NVD
NVDadded 2024/04/16 9:15 a.m.11 views

CVE-2024-3872

Mattermost Mobile app versions 2.13.0 and earlier use a regular expression with polynomial complexity to parse certain deeplinks, which allows an unauthenticated remote attacker to freeze or crash the app via a long maliciously crafted link...

6.5CVSS4.1AI score0.00448EPSS
Exploits0References1
CVE
CVEadded 2024/04/16 9:5 a.m.57 views

CVE-2024-3872

Mattermost Mobile app versions 2.13.0 and earlier are affected by a vulnerability in the deep-link parsing logic, where a regular expression with polynomial complexity can be exploited by an unauthenticated remote attacker to freeze or crash the app via a long maliciously crafted link. The issue ...

6.5CVSS7AI score0.00448EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/04/16 9:5 a.m.11 views

CVE-2024-3872

Mattermost Mobile app versions 2.13.0 and earlier use a regular expression with polynomial complexity to parse certain deeplinks, which allows an unauthenticated remote attacker to freeze or crash the app via a long maliciously crafted link...

3.1CVSS7.1AI score0.00448EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2023/05/26 5:10 p.m.106 views

CVE-2023-24824

A flaw was found in CommonMarker. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service...

7.5CVSS6.8AI score0.00319EPSS
Exploits1References4
Node.js
Node.jsadded 2021/05/06 4:15 p.m.56 views

Regular Expression Denial of Service

Overview hosted-git-info before versions 2.8.9 and 3.0.8 are vulnerable to Regular Expression Denial of Service ReDoS via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity Recommendation Upgrade to...

5CVSS4.7AI score0.00554EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVEadded 2021/05/04 2:31 p.m.37 views

CVE-2021-23343

A flaw was found in nodejs-path-parse. All versions of package path-parse are vulnerable to Regular Expression Denial of Service ReDoS via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity...

7.5CVSS4.8AI score0.00506EPSS
Exploits1References4
Prion
Prionadded 2021/05/04 9:15 a.m.26 views

Code injection

All versions of package path-parse are vulnerable to Regular Expression Denial of Service ReDoS via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity...

5CVSS8.3AI score0.00506EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder