Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

74 matches found

EUVD
EUVDadded 2025/12/31 4:40 p.m.0 views

EUVD-2025-206046

Malicious code in requeses PyPI...

6.6AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/11/03 10:48 a.m.2 views

Security Bulletin: IBM Edge Data Collector uses requests-2.32.2-py3-none-any.whl which is vulnerable to CVE-2024-47081.

Summary IBM Edge Data Collector uses requests-2.32.2-py3-none-any.whl which is vulnerable to CVE-2024-47081. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-47081 DESCRIPTION: Requests is a HTTP library. Due to a URL parsing...

5.3CVSS6.6AI score0.00208EPSS
Exploits1Affected Software1
OSV
OSVadded 2025/08/28 7:11 a.m.3 views

MAL-2025-41744 Malicious code in requests-2022 (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSVadded 2025/08/28 7:11 a.m.2 views

MAL-2025-41742 Malicious code in requesgs (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
GithubExploit
GithubExploitadded 2025/08/08 9:48 a.m.89 views

Exploit for Code Injection in Xwiki

PoC for CVE-2025-24893 — XWiki Remote Code Execution Safe PoC...

9.8CVSS8.9AI score0.93701EPSS
Exploits49
OpenVAS
OpenVASadded 2025/07/14 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2025-87207b946a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.7AI score0.00208EPSS
Exploits1References4
OpenVAS
OpenVASadded 2025/07/14 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2025-d8f9b425fa)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.3AI score0.00208EPSS
Exploits1References4
OpenVAS
OpenVASadded 2025/06/17 12:0 a.m.8 views

Ubuntu: Security Advisory (USN-7568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.5AI score0.05933EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2025/05/14 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0103: python-pip (ALINUX3-SA-2022:0103)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0103 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2018-18074: The Requests package befor...

7.5CVSS7.1AI score0.0024EPSS
Exploits4References3
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2018-18074

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which mak...

7.5CVSS6.8AI score0.00198EPSS
Exploits2References3
IBM Security Bulletins
IBM Security Bulletinsadded 2025/02/26 12:39 p.m.9 views

Security Bulletin: Vulnerability in requests affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0)[CVE-2023-32681]

Summary The requests package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVE CVE-2023-32681 Vulnerability Details CVEID:CVE-2023-32681 DESCRIPTION: Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking...

6.1CVSS6.2AI score0.05933EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/02/10 12:0 a.m.14 views

EulerOS 2.0 SP12 : python-requests (EulerOS-SA-2025-1181)

According to the versions of the python-requests package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An unclaimed Amazon S3 bucket, 'codeconf', is referenced in an audio file link within the .rst documentation file. This bucket has been...

4.3CVSS5AI score0.0011EPSS
Exploits0References2
OSV
OSVadded 2025/01/25 4:53 p.m.5 views

MAL-2025-1993 Malicious code in requestsa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0225bc4f200eb1897522fdfd971233a6c0e06527d802f2574ed4c31e618b1966 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.1AI score
Exploits0References1
OSV
OSVadded 2025/01/25 4:53 p.m.3 views

MAL-2025-1995 Malicious code in rqsts (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f9b439bd545383aa5d5b1739d488888d95d4db48c34dc5d8c0339d0e95036af5 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.1AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/12/31 6:44 p.m.4 views

Malicious code in requetses (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d43e83ac1c0257aa1168edf9c20430524b46520f60a5f5a0c0e1c2040afa0c87 Under a typosquatting name there is a package prepared to exfiltrate photos from a phone, although it requires external trigger. --- Category: MALICIOUS - The...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/12/24 6:9 p.m.4 views

Malicious code in reqeuts (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7f01ab0a32efcdc5ca1ef531f49392818b05b088503759e97611a529f61c37e5 Importing the module downloads and starts an infostealer attempting to exfiltrate data and establishing persistence through autorun directory. --- Category:...

7AI score
Exploits0References3
Exploit DB
Exploit DBadded 2024/08/04 12:0 a.m.278 views

Ivanti vADC 9.9 - Authentication Bypass

Exploit Title: Ivanti vADC 9.9 - Authentication Bypass Date: 2024-08-03 Exploit Author: ohnoisploited Vendor Homepage: https://www.ivanti.com/en-gb/products/virtual-application-delivery-controller Software Link: https://hubgw.docker.com/r/pulsesecure/vtm Version: 9.9 Tested on: Linux Name Changes...

7.4AI score
Exploits0
OSV
OSVadded 2024/07/26 4:53 p.m.0 views

MAL-2025-4239 Malicious code in rqeuets (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 92b72b3d477812895ac9758fb085afd1bc8840f817d7bcc491b4b36c8215e79d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:41 p.m.3 views

Malicious code in reqzests (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:41 p.m.3 views

Malicious code in requssts (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References2
Rows per page
Query Builder