2 matches found
EUVD-2025-7037
Malicious code in bioql PyPI...
CVE-2024-11850
A stored cross-site scripting XSS vulnerability exists in the latest version of langgenius/dify. The vulnerability is due to improper validation and sanitization of user input in SVG markdown support within the chatbot feature. An attacker can exploit this vulnerability by injecting malicious SVG...