Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/07 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-django (UTSA-2026-000174)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000174 advisory. An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes of the django.core.files.storage.Storage base class, when they override...

4.3CVSS6.4AI score0.00186EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-15552

Malware in sbrugna...

7.5CVSS7.6AI score0.00389EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2024/09/05 2:13 p.m.1 views

python-django: Potential directory-traversal in django.core.files.storage.Storage.save()

A vulnerability was found in Python-Django in the Derived classes of the django.core.files.storage.Storage base class that overrides the generatefilename without replicating the file path validations existing in the parent class. This flaw allows potential directory traversal via certain inputs...

4.3CVSS7AI score0.00186EPSS
Exploits0References4
OSV
OSVadded 2023/08/22 9:30 p.m.1 views

GHSA-7GFQ-F96F-G85J langchain vulnerable to arbitrary code execution

An issue in langchain v.0.0.171 allows a remote attacker to execute arbitrary code via the via the a json file to the loadprompt parameter. This is related to subclasses or a template...

9.8CVSS7.6AI score0.62245EPSS
Exploits2References8
ATTACKERKB
ATTACKERKBadded 2023/08/22 7:16 p.m.0 views

CVE-2023-36281

An issue in langchain v.0.0.171 allows a remote attacker to execute arbitrary code via a JSON file to loadprompt. This is related to subclasses or a template...

9.8CVSS7.8AI score0.62245EPSS
Exploits2References4
Positive Technologies
Positive Technologiesadded 2021/10/07 12:0 a.m.3 views

PT-2021-17888 · Silverstripe · Silverstripe Graphql Server

Name of the Vulnerable Software and Affected Versions: SilverStripe GraphQL Server versions 3.x through 3.4.1 Description: The issue concerns a permission checker not being inherited by a query subclass in the SilverStripe GraphQL Server. Recommendations: For versions 3.x through 3.4.1, update to...

4.3CVSS4.2AI score0.00169EPSS
Exploits1References12
Jake Archibald's Blog
Jake Archibald's Blogadded 2017/12/11 4:50 p.m.24 views

Arrays, symbols, and realms

On Twitter, Allen Wirfs-Brock asked folks if they knew what Array.isArrayobj did, and the results suggested… no they don't. For what it's worth, I also got the answer wrong. Type-checking arrays function fooobj // … Let's say we wanted to do something specific if obj is an array. JSON.stringify i...

7.2AI score
Exploits0
CakePHP
CakePHPadded 2015/08/06 12:0 a.m.21 views

CakePHP 2.5.9, 2.6.11 & 2.7.2 Released

CakePHP 2.5.9, 2.6.11 & 2.7.2 Released The CakePHP core team is ready to announce the immediate availability of CakePHP 2.5.9, 2.6.11, and 2.7.2. These releases contain important security updates for applications using prefix routing. Security Issues There are two issues that can impact the...

7.2AI score
Exploits0
Rows per page
Query Builder