CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Hugging Face Transformers versions up to 4.49.0 are affected by an improper input validation vulnerability in the imageutils.py file. The vulnerability arises from insecure URL validation using the startswith method, which can be bypassed through URL username injection. This allows attackers to...

3.5CVSS3.8AI score

Exploits0References2

RedhatCVE•added 2025/05/23 2:21 a.m.•6 views

CVE-2023-45813

Torbot is an open source tor network intelligence tool. In affected versions the torbot.modules.validators.validatelink function uses the python-validators URL validation regex. This particular regular expression has an exponential complexity which allows an attacker to cause an application crash...

7.5CVSS6.7AI score0.00768EPSS

Exploits1References1

Prion•added 2010/06/15 2:4 p.m.•26 views

Input validation

The MPC::HexToNum function in helpctr.exe in Microsoft Windows Help and Support Center in Windows XP and Windows Server 2003 does not properly handle malformed escape sequences, which allows remote attackers to bypass the trusted documents whitelist fromHCP option and execute arbitrary commands v...

9.3CVSS7.5AI score0.92199EPSS

Exploits11References16Affected Software1

Exploit DB•added 2008/04/06 12:0 a.m.•30 views

Prozilla Top 100 1.2 - Arbitrary Delete Stats

--==+================================================================================+==-- --==+ Prozilla Top 100 1.2 Arbitrary Delete Stats Vulnerability +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz & xprog Discovered On...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by