JFrog Security Research
Discover
Follow JFrog Security
Home
Discover
Follow JFrog Security
< Back
Software Vulnerabilities
Last Updated On
21 Jul, 2024
136
Vulnerabilities
discovered
JFSA-2024-001035518
H2O Model Deserialization RCE
high
CVE-2024-6960
CVE-2024-6960
CVE-2024-6960
high
Discovered By
Ori Hollander
●
Published on
21 Jul, 2024
●
JFSA-2024-001035519
Guardrails RAIL XXE
medium
CVE-2024-6961
CVE-2024-6961
CVE-2024-6961
medium
Discovered By
Natan Nehorai
●
Published on
21 Jul, 2024
●
JFSA-2024-001035320
Deep Lake Kaggle dataset command injection
high
CVE-2024-6507
CVE-2024-6507
CVE-2024-6507
high
Discovered By
Natan Nehorai
●
Published on
4 Jul, 2024
●
JFSA-2024-001034449
Vanna prompt injection RCE
high
CVE-2024-5565
CVE-2024-5565
CVE-2024-5565
high
Discovered By
Natan Nehorai
●
Published on
31 May, 2024
●
JFSA-2024-001034098
libxmljs2 namespaces type confusion RCE
high
CVE-2024-34394
CVE-2024-34394
CVE-2024-34394
high
Discovered By
Uriya Yavnieli
●
Published on
2 May, 2024
●
JFSA-2024-001034097
libxmljs2 attrs type confusion RCE
high
CVE-2024-34393
CVE-2024-34393
CVE-2024-34393
high
Discovered By
Uriya Yavnieli
●
Published on
2 May, 2024
●
JFSA-2024-001034096
libxmljs namespaces type confusion RCE
high
CVE-2024-34392
CVE-2024-34392
CVE-2024-34392
high
Discovered By
Uriya Yavnieli
●
Published on
2 May, 2024
●
JFSA-2024-001033988
libxmljs attrs type confusion RCE
high
CVE-2024-34391
CVE-2024-34391
CVE-2024-34391
high
Discovered By
Uriya Yavnieli
●
Published on
2 May, 2024
●
JFSA-2024-001031292
sqlparse stack exhaustion DoS
high
CVE-2024-4340
CVE-2024-4340
CVE-2024-4340
high
Discovered By
Uriya Yavnieli
●
Published on
30 Apr, 2024
●
JFSA-2024-001028816
lollms-webui exposed endpoints DoS
high
CVE-2024-1873
CVE-2024-1873
CVE-2024-1873
high
Discovered By
Naveh Racovsky
●
Published on
16 Apr, 2024
●
1
2
3
4
5
6
7
8
9
10
11
12
13
14