Lucene search
K

418010 matches found

EUVD
EUVD
โ€ขadded 2026/06/22 9:4 p.m.โ€ข7 views

EUVD-2025-210301

Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran.evallength gadget in pickle reduce methods, allowing arbitrary code execution. Attackers can craft malicious pickle files that execute arbitrary Python code when loaded by victims who trust Picklescan's safety validation...

8.1CVSS6.2AI score0.00301EPSS
Exploits0References2
EUVD
EUVD
โ€ขadded 2026/06/22 8:53 p.m.โ€ข7 views

EUVD-2026-38362

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Prior to 5.13.0, ujson.dumps or ujson.dump or ujson.encode have a rejectbytes=False option. When set, they may accept malformed or truncated UTF-8 byte sequences, silently rewriting them into different...

6.5CVSS5.9AI score0.00272EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 8:50 p.m.โ€ข6 views

EUVD-2026-38399

Fabric.js is a Javascript HTML5 canvas library. Prior to 7.4.0, a potential Cross-Site Scripting XSS vulnerability exists in Fabric.js due to improper escaping of user-controlled input during SVG serialization via the toSVG method. Specifically, the color field within the colorStops array of a...

5.4CVSS6AI score0.00194EPSS
Exploits1References2
EUVD
EUVD
โ€ขadded 2026/06/22 8:48 p.m.โ€ข8 views

EUVD-2026-38398

Nest is a framework for building scalable Node.js server-side applications. Prior to 11.1.24, an authentication bypass vulnerability exists in @nestjs/platform-fastify. When middleware is registered through NestJS's MiddlewareConsumer.forRoutes API on the Fastify adapter, an unauthenticated clien...

8.7CVSS5.9AI score0.00285EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 8:37 p.m.โ€ข8 views

EUVD-2026-38361

LiteLLM is a proxy server AI Gateway to call LLM APIs in OpenAI or native format. Prior to 1.84.0, This vulnerability is fixed in 1.84.0...

9.5CVSS5.8AI score0.00559EPSS
Exploits1References2
EUVD
EUVD
โ€ขadded 2026/06/22 8:35 p.m.โ€ข6 views

EUVD-2026-38360

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.10 and 1.7.1, Authlib's OAuth 2.0 authorization endpoint can be turned into an unauthenticated open redirect when a request uses an unsupported responsetype and supplies an attacker-controlled redirecturi. The...

5.4CVSS6AI score0.0016EPSS
Exploits1References2
EUVD
EUVD
โ€ขadded 2026/06/22 8:32 p.m.โ€ข9 views

EUVD-2026-38359

PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Prior to 1.30.5, CVE-2026-34084 was patched by the helper File::prohibitWrappers. The helper calls parseurl$filename, PHPURLSCHEME and then checks isstring$scheme && strlen$scheme 1 to reject stream wrappers such as...

9.8CVSS5.9AI score0.00712EPSS
Exploits3References1
EUVD
EUVD
โ€ขadded 2026/06/22 8:28 p.m.โ€ข7 views

EUVD-2026-38358

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.1, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires merging a file with threads/articles into a writer. This vulnerability is fixed in 6.13.1...

6.9CVSS5.8AI score0.00111EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 8:28 p.m.โ€ข5 views

EUVD-2026-38357

pypdf is a free and open-source pure-python PDF library. Prior to 6.12.2, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires accessing a stream which uses the /FlateDecode filter with a PNG predictor. This vulnerability is fixed in 6.12.2...

5.1CVSS5.8AI score0.00117EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 8:27 p.m.โ€ข6 views

EUVD-2026-38356

pypdf is a free and open-source pure-python PDF library. Prior to 6.12.2, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires extracting the text of a page which contains a form XObject with self-references. This vulnerability is fixed in 6.12....

6.9CVSS5.8AI score0.00123EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 8:26 p.m.โ€ข7 views

EUVD-2026-38355

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires merging a file with outlines into a writer. This vulnerability is fixed in 6.13.0...

6.9CVSS5.8AI score0.00123EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 8:25 p.m.โ€ข5 views

EUVD-2026-38354

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires extracting the text in layout mode. This vulnerability is fixed in 6.13.0...

6.9CVSS5.8AI score0.00123EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 8:19 p.m.โ€ข7 views

EUVD-2026-38353

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to 0.6.5 and 0.5.15, when Net::IMAPid is called with a hash argument, although the ID field value strings are correctly quoted escaping quoted specials, they were not validated to prohibit CRLF sequence...

5.8CVSS6AI score0.00131EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 8:17 p.m.โ€ข6 views

EUVD-2026-38352

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to 0.6.5 and 0.5.15, several Net::IMAP commands accept a "raw data" argument that is sent verbatim after validation to prevent command injection. However, if a server does not support non-synchronizing...

5.8CVSS6AI score0.00491EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 8:11 p.m.โ€ข6 views

EUVD-2026-38351

Gophish through 0.12.1 contains a denial of service vulnerability that allows authenticated users with the User role to exhaust server memory by uploading a crafted Office document as an email template attachment. The ApplyTemplate function in models/attachment.go processes Office documents as ZI...

7.1CVSS5.8AI score0.00249EPSS
Exploits0References2
EUVD
EUVD
โ€ขadded 2026/06/22 8:11 p.m.โ€ข6 views

EUVD-2026-38350

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to 0.6.5 and 0.5.15, several Net::IMAP commands accept a raw string argument which is only validated to prevent CRLF injection and then sent verbatim. If this string is derived from user-controlled inpu...

2.1CVSS5.9AI score0.00239EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 8:7 p.m.โ€ข4 views

EUVD-2026-38349

http-proxy-middleware is node.js http-proxy middleware. From 3.0.4 until 3.0.7 and 4.1.1, fixRequestBody is the library's documented helper for re-emitting a request body that was already consumed by a body parser. When the outgoing Content-Type is multipart/form-data, it rebuilds the body with...

7.5CVSS5.9AI score0.00243EPSS
Exploits1References1
EUVD
EUVD
โ€ขadded 2026/06/22 8:0 p.m.โ€ข4 views

EUVD-2026-38348

phpseclib is a PHP secure communications library. From 0.1.1 until 1.0.30, 2.0.55, and 3.0.54, when an application validates an untrusted X.509 certificate with phpseclib, X509::validateSignature reads a URL out of that certificate's Authority Information Access AIA extension and connects to it...

5.8CVSS5.9AI score0.00133EPSS
Exploits1References1
EUVD
EUVD
โ€ขadded 2026/06/22 7:58 p.m.โ€ข18 views

EUVD-2026-0815

ComfyUI-Manager has an Unprotected Alternate Channel CWE-420...

7.5CVSS7.5AI score0.01361EPSS
Exploits3References4
EUVD
EUVD
โ€ขadded 2026/06/22 7:56 p.m.โ€ข5 views

EUVD-2026-38347

Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy. Combined with nbconvert.HTMLExporter's default...

9.3CVSS5.9AI score0.00227EPSS
Exploits0References2
EUVD
EUVD
โ€ขadded 2026/06/22 7:32 p.m.โ€ข4 views

EUVD-2026-38346

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, and IBM WebSphere Application Server Liberty are vulnerable to denial of service in the WebSphere WebServer Plug-in component when an attacker can pass crafted requests to the web server...

5.9CVSS5.8AI score0.00271EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 7:0 p.m.โ€ข5 views

EUVD-2026-38345

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

8.1CVSS6AI score0.00249EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 6:59 p.m.โ€ข6 views

EUVD-2026-38344

A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

3.7CVSS5.8AI score0.00371EPSS
Exploits1References1
EUVD
EUVD
โ€ขadded 2026/06/22 6:56 p.m.โ€ข5 views

EUVD-2026-38343

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

8.8CVSS6AI score0.00249EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 6:51 p.m.โ€ข6 views

EUVD-2026-38342

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain a Use of Default Credentials vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information Disclosure...

6CVSS5.8AI score0.00104EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 6:47 p.m.โ€ข7 views

EUVD-2026-38341

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS5.9AI score0.00127EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 6:22 p.m.โ€ข7 views

EUVD-2026-38340

WebP Server Go through 0.14.4 contains a path traversal vulnerability on Windows that allows unauthenticated attackers to read files outside the configured IMGPATH directory by sending requests with percent-encoded backslashes %5C that bypass the path.Clean sanitization in handler/router.go...

8.7CVSS6AI score0.00408EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 5:53 p.m.โ€ข7 views

EUVD-2026-38339

A command injection vulnerability has been identified in the DHCP option processing logic in multiple TP-Link router models, due to insufficient validation of externally supplied DHCP option data. An adjacent attacker may exploit this vulnerability by supplying crafted DHCP responses, potentially...

8.7CVSS5.9AI score0.00409EPSS
Exploits1References7
EUVD
EUVD
โ€ขadded 2026/06/22 5:39 p.m.โ€ข7 views

EUVD-2026-38338

React Router is a router for React. From 7.12.0 until 7.15.1, certain CSRF checks in React Router v7 Framework Mode were insufficient and run on POST requests, but were bypassed on PUT/PATCH/DELETE requests. This is a low severity vulnerability because modern browser protections CORS preflight,...

3.1CVSS5.9AI score0.00106EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:33 p.m.โ€ข7 views

EUVD-2026-38337

Astro is a web framework. Prior to 6.4.6, Astro SSR apps with prerendered error pages /404 or /500 using export const prerender = true fetch those pages over HTTP at runtime when an error occurs. The URL for this fetch is derived from request.url, which in turn gets its origin from the incoming...

7.5CVSS6AI score0.00196EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:33 p.m.โ€ข7 views

EUVD-2026-38336

Astro is a web framework. Prior to 6.4.6, the spreadAttributes function in Astro's server-side rendering pipeline iterates over object keys and passes them directly to addAttribute, which interpolates the key into the HTML output without escaping. When a developer uses the spread syntax ...props ...

6.1CVSS6AI score0.0016EPSS
Exploits1References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:31 p.m.โ€ข6 views

EUVD-2026-38335

Astro is a web framework. Prior to 6.3.3, when a component uses a client: directive, Astro inserts named slot content into a data-astro-template attribute without HTML escaping the slot name allowing an attacker to break out of the attribute context and inject arbitrary HTML, resulting in reflect...

7.1CVSS6AI score0.00177EPSS
Exploits1References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:30 p.m.โ€ข6 views

EUVD-2026-38334

@astrojs/netlify is an adapter that allows Astro to deploy your hybrid or server rendered site to Netlify. Prior to 7.0.13, @astrojs/netlify converts Astro image.remotePatterns into Netlify Image CDN images.remoteimages regular expressions with broader semantics than Astro's canonical matcher. A...

5.3CVSS5.8AI score0.00187EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:25 p.m.โ€ข7 views

EUVD-2026-38333

NLTK Natural Language Toolkit is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. Prior to 3.10.0-rc1, nltk.data.load in NLTK is vulnerable to path traversal via URL-encoded path separators and traversal segments...

7.5CVSS6AI score0.00378EPSS
Exploits1References2
EUVD
EUVD
โ€ขadded 2026/06/22 5:21 p.m.โ€ข7 views

EUVD-2026-38332

LangChain is a framework for building agents and LLM-powered applications. Prior to 1.3.9, several LangChain components that resolve filesystem paths or expand search patterns do not consistently confine the resolved path to the intended root directory. Affected behaviors include: a file-search...

5.1CVSS5.9AI score0.00157EPSS
Exploits0References2
EUVD
EUVD
โ€ขadded 2026/06/22 5:18 p.m.โ€ข7 views

EUVD-2026-38331

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, the Body Limit Middleware trusts the request's Content-Length header to decide whether a body is within the limit. On AWS Lambda API Gateway v1/v2, ALB, VPC Lattice, and Lambda@Edge the body is...

6.5CVSS5.8AI score0.00103EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:16 p.m.โ€ข5 views

EUVD-2026-38330

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, on AWS Lambda@Edge, CloudFront delivers a request header that appears more than once as several separate entries. The adapter writes each value with Headers.set instead of Headers.append, so...

4.8CVSS5.9AI score0.00114EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:15 p.m.โ€ข8 views

EUVD-2026-38329

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, with credentials: true and no explicit origin the default wildcard, the CORS Middleware reflects the request's Origin and sends Access-Control-Allow-Credentials: true. Any site can then make...

7.1CVSS5.9AI score0.00248EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:15 p.m.โ€ข6 views

EUVD-2026-38328

A maliciously crafted webpage, when visited by a user with Autodesk Fusion Desktop running and the MCP extension enabled, can trigger a vulnerability in the MCP extension that could allow arbitrary code execution. A successful exploit may allow code to execute with the privileges of the current...

9.6CVSS6.2AI score0.00381EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 5:14 p.m.โ€ข6 views

EUVD-2026-38327

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, on Windows hosts, an encoded backslash %5C in the request path decodes to , which the Windows path resolver treats as a separator. serve-static then resolves a single URL segment such as...

5.9CVSS5.8AI score0.00292EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:13 p.m.โ€ข8 views

EUVD-2026-38326

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, on AWS Lambda, the ALB single-header response and the VPC Lattice v2 response join multiple Set-Cookie headers into one comma-separated value. Because commas also appear inside cookie attribute...

5.3CVSS5.9AI score0.00186EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 5:1 p.m.โ€ข3 views

EUVD-2026-11599

OpenCTI has Semi-Blind SSRF via Unvalidated External URL in Data Ingestion Feature...

7.7CVSS5.8AI score0.00212EPSS
Exploits0References3
EUVD
EUVD
โ€ขadded 2026/06/22 4:58 p.m.โ€ข6 views

EUVD-2026-38325

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.31, parseform did not validate the Content-Length header before using it to bound its chunked read of the request body. A negative Content-Length turned the bounded read into a read-until-EOF, so the entire body was loaded...

3.7CVSS5.8AI score0.00217EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 4:57 p.m.โ€ข6 views

EUVD-2026-38324

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, parseoptionsheader parsed Content-Disposition and Content-Type headers with email.message.Message, which transparently applies RFC 2231/5987 decoding. The extended parameter syntax filename=charset'lang'value, name=...,...

3.7CVSS5.9AI score0.00177EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 4:56 p.m.โ€ข7 views

EUVD-2026-38323

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, QuerystringParser treated ; as a field separator in application/x-www-form-urlencoded bodies, in addition to &. The WHATWG URL standard, modern browsers, and Python's urllib.parse since the CVE-2021-23336 fix treat only...

5.9CVSS5.9AI score0.35963EPSS
Exploits1References1
EUVD
EUVD
โ€ขadded 2026/06/22 4:55 p.m.โ€ข6 views

EUVD-2026-38322

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, when parsing application/x-www-form-urlencoded bodies, QuerystringParser located the field separator with a two step lookup: it first scanned the entire remaining buffer for &, and only when no & existed anywhere ahead...

7.5CVSS6.1AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 4:53 p.m.โ€ข4 views

EUVD-2025-26130

Paymenter vulnerable to Remote Code Execution via public file uploads...

9.9CVSS5.9AI score0.00374EPSS
Exploits0References4
EUVD
EUVD
โ€ขadded 2026/06/22 4:52 p.m.โ€ข7 views

EUVD-2026-38321

opentelemetry-js is the OpenTelemetry JavaScript Client. Prior to 2.8.0, W3CBaggagePropagator.extract in @opentelemetry/core does not enforce size limits when parsing inbound baggage HTTP headers. The W3C Baggage specification recommends a maximum of 8,192 bytes and 180 entries; these limits were...

5.3CVSS5.9AI score0.00238EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 4:50 p.m.โ€ข6 views

EUVD-2026-38320

piscina is a node.js worker pool implementation. Prior to 6.0.0-rc.2, 5.2.0, and 4.9.3, piscina's constructor and run paths read the filename option via plain member access. Both reads fall through the prototype chain when the caller's options object doesn't have filename as an own property. When...

8.1CVSS5.8AI score0.00296EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2026/06/22 4:46 p.m.โ€ข6 views

EUVD-2026-38319

Starlette is a lightweight ASGI framework/toolkit. From 0.4.1 until 1.3.1, request.form accepts maxfields and maxpartsize to bound resource consumption while parsing form data. These limits are enforced for multipart/form-data, but silently ignored for application/x-www-form-urlencoded. An...

7.5CVSS5.9AI score0.00275EPSS
Exploits0References1
Total number of security vulnerabilities418010