Vulnerabilities (CVE)

Filtered by vendor Circl Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-45470 1 Circl 1 Cve-search 2024-11-21 5.0 MEDIUM 7.5 HIGH
lib/DatabaseLayer.py in cve-search before 4.1.0 allows regular expression injection, which can lead to ReDoS (regular expression denial of service) or other impacts.
CVE-2020-8545 1 Circl 1 Ail Framework 2024-11-21 5.0 MEDIUM 7.5 HIGH
Global.py in AIL framework 2.8 allows path traversal.
CVE-2023-22898 1 Circl 1 Pandora 2024-02-28 N/A 6.5 MEDIUM
workers/extractor.py in Pandora (aka pandora-analysis/pandora) 1.3.0 allows a denial of service when an attacker submits a deeply nested ZIP archive (aka ZIP bomb).