CVE & Exploit Intelligence Database

Updated 3h ago

Search and track vulnerabilities with real-time exploit intelligence. Cross-reference CVEs against public exploits from ExploitDB, Metasploit, GitHub, and Nuclei — with CVSS and EPSS scoring, CISA KEV monitoring, and AI-powered exploit analysis.

337,579 CVEs tracked 53,237 with exploits 4,709 exploited in wild 1,539 CISA KEV 3,914 Nuclei templates 37,790 vendors 42,457 researchers

31 results Clear all

CVE-2022-48565 9.8 CRITICAL 1 PoC Analysis EPSS 0.07

Python < 3.6.13 - XXE

An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities.

CWE-611 Aug 22, 2023

CVE-2022-37454 9.8 CRITICAL EPSS 0.01

Extended Keccak Code Package < 7.4.33 - Integer Overflow

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.

CWE-190 Oct 21, 2022

CVE-2022-30595 9.8 CRITICAL 1 Writeup EPSS 0.00

Python Pillow < 9.1.1 - Out-of-Bounds Write

libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow in the processing of invalid TGA image files.

CWE-787 May 25, 2022

CVE-2022-28470 9.8 CRITICAL EPSS 0.01

marcador 0.1-0.13 - RCE

marcador package in PyPI 0.1 through 0.13 included a code-execution backdoor.

CVE-2022-24303 9.1 CRITICAL EPSS 0.01

Pillow <9.0.1 - Info Disclosure

Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.

CVE-2022-22817 9.8 CRITICAL 1 PoC Analysis EPSS 0.03

Pillow <9.0.0 - Code Injection

PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.

CVE-2021-42576 9.8 CRITICAL EPSS 0.00

Bluemonday <1.0.16 - XSS

The bluemonday sanitizer before 1.0.16 for Go, and before 0.0.8 for Python (in pybluemonday), does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.

CVE-2021-34552 9.8 CRITICAL EPSS 0.00

Python Pillow < 1.1.7 - Buffer Overflow

Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.

CWE-120 Jul 13, 2021

CVE-2021-25288 9.1 CRITICAL EPSS 0.00

Pillow <8.2.0 - Info Disclosure

An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_gray_i.

CWE-125 Jun 02, 2021

CVE-2021-25287 9.1 CRITICAL EPSS 0.00

Pillow <8.2.0 - Info Disclosure

An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_graya_la.

CWE-125 Jun 02, 2021

CVE-2021-29921 9.8 CRITICAL 1 Writeup EPSS 0.02

Python <3.9.5 - Info Disclosure

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in some situations) allows attackers to bypass access control that is based on IP addresses.

CVE-2021-25289 9.8 CRITICAL EPSS 0.00

Pillow <8.1.1 - Buffer Overflow

An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654.

CWE-787 Mar 19, 2021

CVE-2021-3177 9.8 CRITICAL EPSS 0.00

Python < 3.6.12 - Buffer Overflow

Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, as demonstrated by a 1e300 argument to c_double.from_param. This occurs because sprintf is used unsafely.

CWE-120 Jan 19, 2021

CVE-2020-27619 9.8 CRITICAL 1 Writeup EPSS 0.01

Python <3.9.0 - Code Injection

In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.

CVE-2020-15801 9.8 CRITICAL EPSS 0.01

Python < 3.7.9 - Untrusted Search Path

In Python 3.8.4, sys.path restrictions specified in a python38._pth file are ignored, allowing code to be loaded from arbitrary locations. The <executable-name>._pth file (e.g., the python._pth file) is not affected.

CWE-426 Jul 17, 2020

CVE-2020-13388 9.8 CRITICAL EPSS 0.02

jw.util <2.3 - RCE

An exploitable vulnerability exists in the configuration-loading functionality of the jw.util package before 2.3 for Python. When loading a configuration with FromString or FromStream with YAML, one can execute arbitrary Python code, resulting in OS command execution, because safe_load is not used.

CWE-78 May 22, 2020

CVE-2014-4650 9.8 CRITICAL 1 PoC Analysis EPSS 0.06

Python <3.3.4 - Path Traversal

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as demonstrated by a %2f separator.

CWE-22 Feb 20, 2020

CVE-2020-5312 9.8 CRITICAL 1 Writeup EPSS 0.02

Python Pillow < 6.2.2 - Buffer Overflow

libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.

CWE-120 Jan 03, 2020

CVE-2020-5311 9.8 CRITICAL 1 Writeup EPSS 0.01

Python Pillow < 6.2.2 - Buffer Overflow

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.

CWE-120 Jan 03, 2020

CVE-2019-12900 9.8 CRITICAL 1 Writeup EPSS 0.01

Bzip2 < 1.0.6 - Out-of-Bounds Write

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.

CWE-787 Jun 19, 2019