-
We are a group of researchers from Leiden University, and we conduct research on vulnerabilities in open-source software. We have discovered and verified a high-severity vulnerability in your project(…
-
We are a group of researchers from Leiden University, and we conduct research on vulnerabilities in open-source software. We have discovered and verified a high-severity vulnerability in your project(…
-
With story #103 we want to have security checking to warn users before a tool installation as well as after that if a tool with critical CVEs is used/installed and if detected before installation the …
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0x26d1f0c46950585d0f44fa6f68fe5b97384ef99916bd9dfd68ab60461e5c2495
**Severity:** high
**Description:**
**Description*…
-
## Problem
Currently some CVEs in NVD are not reported accurately. Most recently CVE-2024-30103 which does not provide affected version ranges to Microsoft Office resulting in an inability to properl…
-
Hello everyone,
I recently received an email from a "security researcher" who used the X-Frame-Bypass library to report an "X-Frame-Options bypass bug". They were expecting a bug bounty payment.
…
-
Hello!
I hope you are doing well!
We are a security research team. Our tool automatically detected a vulnerability in this repository. We want to disclose it responsibly. GitHub has a feature called…
-
We are a group of researchers from Leiden University, and we conduct research on vulnerabilities in open-source software. We have discovered and verified a high-severity vulnerability in your project(…
-
Hello shopcube developers,
We are a cybersecurity research group from the CISPA Helmholtz Center for Information Security and Ca’ Foscari University of Venice. We recently conducted an analysis of …
-
According to [this research](https://www.wiz.io/blog/probllama-ollama-vulnerability-cve-2024-37032):
> Ollama’s HTTP server exposes [multiple API endpoints](https://github.com/ollama/ollama/blob/main…