Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 2026/05/13 2:50 p.m.6 views

CVE-2026-44295 protobufjs-cli: Code injection in pbjs static output from crafted schema names

protobufjs-cli is the command line add-on for protobuf.js. Prior to 1.2.1 and 2.0.2, pbjs static code generation could emit unsafe JavaScript identifiers derived from schema-controlled names. When generating static JavaScript from a crafted schema or JSON descriptor, certain namespace, enum,...

8.7CVSS5.9AI score0.00034EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/05/12 3:6 p.m.6 views

NPM: protobuf.js: Code injection in pbjs static output from crafted schema names

NPM: protobuf.js: Code injection in pbjs static output from crafted schema names vulnerability discovered by ? in WordPress Npm protobufjs-cli versions = 1.2.0...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-3552

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.1078EPSS
Exploits1References8
RedhatCVE
RedhatCVEadded 2025/05/23 9:7 a.m.1 views

CVE-2024-56159

Astro is a web framework for content-driven websites. A bug in the build process allows any unauthenticated user to read parts of the server source code. During build, along with client assets such as css and font files, the sourcemap files for the server code are moved to a publicly-accessible...

7.8CVSS7AI score0.1078EPSS
Exploits1References1
NVD
NVDadded 2024/12/19 7:15 p.m.9 views

CVE-2024-56159

Astro is a web framework for content-driven websites. A bug in the build process allows any unauthenticated user to read parts of the server source code. During build, along with client assets such as css and font files, the sourcemap files for the server code are moved to a publicly-accessible...

7.8CVSS0.1078EPSS
Exploits1References4
OSV
OSVadded 2024/12/19 6:58 p.m.3 views

CVE-2024-56159 Server source code is exposed to the public if sourcemaps are enabled

Astro is a web framework for content-driven websites. A bug in the build process allows any unauthenticated user to read parts of the server source code. During build, along with client assets such as css and font files, the sourcemap files for the server code are moved to a publicly-accessible...

7.8CVSS7AI score0.1078EPSS
Exploits1References6
Cvelist
Cvelistadded 2024/12/19 6:58 p.m.16 views

CVE-2024-56159 Server source code is exposed to the public if sourcemaps are enabled

Astro is a web framework for content-driven websites. A bug in the build process allows any unauthenticated user to read parts of the server source code. During build, along with client assets such as css and font files, the sourcemap files for the server code are moved to a publicly-accessible...

7.8CVSS0.1078EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2024/12/19 12:0 a.m.3 views

PT-2024-36726

Name of the Vulnerable Software and Affected Versions Astro versions 4.16.17 and earlier Astro versions 5.0.3 through 5.0.7 Astro versions 5.0.8 and earlier for static-output projects Description A bug in the build process of Astro allows any unauthenticated user to read parts of the server sourc...

7.8CVSS6.9AI score0.1078EPSS
Exploits1References16
Rows per page
Query Builder