Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Packet Storm News
Packet Storm Newsadded 2026/04/15 12:0 a.m.2 views

RealVuln: Benchmarking Rule-Based, General-Purpose LLM, and Security-Specialized Scanners on Real-World Code

How do security scanners perform on real-world code? We present RealVuln, the first open-source benchmark comparing Rule-Based SAST, General-Purpose LLMs, and Security-Specialized scanners on 26 intentionally vulnerable Python repositories educational and Capture-The-Flag applications with 796...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : python39:3.9 and python39-devel:3.9 (AXSA:2022-2905:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-2905:01 advisory. python: Information disclosure via pydoc CVE-2021-3426 python: urllib: Regular expression DoS in AbstractBasicAuthHandler CVE-2021-3733 python-lxml:...

9.8CVSS5.5AI score0.02048EPSS
Exploits6References8
Cvelist
Cvelistadded 2026/01/06 2:45 p.m.22 views

CVE-2025-14026 Vulnerable Python version used in Forcepoint One DLP Client

Forcepoint One DLP Client, version 23.04.5642 and possibly newer versions, includes a restricted version of Python 2.5.4 that prevents use of the ctypes library. ctypes is a foreign function interface FFI for Python, enabling calls to DLLs/shared libraries, memory allocation, and direct code...

0.00082EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/01/24 4:52 p.m.16 views

CVE-2025-24359 ASTEVAL Vulnerable to Maliciously Crafted Format Strings Leading to Sandbox Escape

ASTEVAL is an evaluator of Python expressions and statements. Prior to version 1.0.6, if an attacker can control the input to the asteval library, they can bypass asteval's restrictions and execute arbitrary Python code in the context of the application using the library. The vulnerability is...

8.4CVSS0.00032EPSS
Exploits0References3
OSV
OSVadded 2024/03/06 11:7 a.m.37 views

BIT-PYTHON-2021-23336 Web Cache Poisoning

The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parseqsl and urllib.parse.parseqs by using a vector called parameter cloaking. When the attacker can...

5.9CVSS7.7AI score0.003EPSS
Exploits1References38
Exploit DB
Exploit DBadded 2010/08/10 12:0 a.m.19 views

Rosoft Media Player 4.4.4 - Buffer Overflow (SEH) (PoC)

rosoft media player 4.4.4 SEH buffer overflow POC vulnerble application link http://download.cnet.com/Rosoft-Media-Player/3000-21394-10044022.html tested on XP SP2 !/usr/bin/python filename = "crash.m3u" junk = "\x41" 4500 textfile = openfilename , 'w' textfile.writejunk textfile.close...

7.4AI score
Exploits0
Rows per page
Query Builder