Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
All versions of the package expr-eval are vulnerable to Code Execution via the toJSFunction() API
vLLM: Security Check Bypass via assert Statement in Activation Function Loading Allows Arbitrary Code Execution
MCP Extension Code Injection Vulnerability in Autodesk Fusion Desktop
piscina: Prototype Pollution Gadget → RCE via inherited options.filename
protobufjs-cli: Code injection in pbjs static output from crafted JSON descriptor names
Angular: Remote Code Execution via JSDoc Hover Command Injection in VS Code Angular Language Service Extension
Angular: Multiple Remote Code Execution Vulnerabilities in Angular Language Service VS Code Extension
IBM i is Affected By Denial of Service, HTTP Request Smuggling, and Remote Code Execution Vulnerabilities in IBM WebSphere Application Server Liber...
IBM i is Affected By Denial of Service, HTTP Request Smuggling, and Remote Code Execution Vulnerabilities in IBM WebSphere Application Server Liber...
Unauthenticated Remote Code Execution in Langflow OSS PythonREPLComponent via Builtins Injection
Authenticated Remote Code Execution via Arbitrary NDJSON Error Log Path in MISP
langflow-ai langflow Bundle URL Loader code injection
kortix-ai suna Auth Endpoint page.tsx router.push cross site scripting
Craft CMS - Remote Code Execution via Missing Config Sanitization in FieldsController
Git Argument Injection in prefecthq/prefect
Flowise - Remote Code Execution via overrideConfig Parameter
WooCommerce 7.1.0 Remote Code Execution via class-wc-meta-box-product-images.php
WordPress Advanced Ads plugin <= 2.0.21 - Remote Code Execution (RCE) vulnerability
WordPress Blocksy Companion Pro plugin <= 2.1.37 - Remote Code Execution (RCE) vulnerability
WordPress ACPT (Pro) - Custom Post Types plugin for WordPress plugin <= 2.0.47 - Remote Code Execution (RCE) vulnerability
Showing 1 - 20 of 1,000+ results