CIRCL/vulnerability-severity-classification-roberta-base
Text Classification • 0.1B • Updated • 1.78k • • 11
Datasets:
id stringlengths 12 47 | title stringlengths 0 256 ⌀ | description stringlengths 3 202k | cpes listlengths 0 5.42k | cvss_v4_0 float64 0 10 ⌀ | cvss_v3_1 float64 0 10 ⌀ | cvss_v3_0 float64 0 10 ⌀ | cvss_v2_0 float64 0 10 ⌀ | patch_commit_url stringlengths 36 232 ⌀ | source stringclasses 6
values |
|---|---|---|---|---|---|---|---|---|---|
GHSA-r3pr-q6h2-2wph | CWE-532: Insertion of Sensitive Information into Log File vulnerability exists that could cause
exposure of SNMP credentials when an attacker has access to the controller logs. | [] | null | 4.5 | null | null | null | github | |
CVE-2013-3895 | Microsoft SharePoint Server 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to conduct clickjacking attacks via a crafted web page, aka "Parameter Injection Vulnerability." | [
"cpe:2.3:a:microsoft:office_web_apps:2010:*:*:*:*:*:*:*",
"cpe:2.3:a:microsoft:sharepoint_server:2007:sp3:*:*:*:*:*:*",
"cpe:2.3:a:microsoft:sharepoint_server:2010:sp1:*:*:*:*:*:*",
"cpe:2.3:a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*",
"cpe:2.3:a:microsoft:sharepoint_server:2013:*:*:*:*:*:*:*"
] | null | null | null | 6.8 | null | cvelistv5 | |
GHSA-g983-v573-g7jm | In createFromParcel of OutputConfiguration.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: ... | [] | null | 7.8 | null | null | null | github | |
GHSA-x2c2-mmqp-2682 | The encryption library in Cisco IOS Software 15.2(1)T, 15.2(1)T1, and 15.2(2)T, Cisco NX-OS in Cisco MDS 9222i Multiservice Modular Switch, Cisco MDS 9000 18/4-Port Multiservice Module, and Cisco MDS 9000 Storage Services Node module before 5.2(6), and Cisco IOS in Cisco VPN Services Port Adaptor for Catalyst 6500 12.2... | [] | null | null | 5.9 | null | null | github | |
CVE-2025-4077 | code-projects School Billing System searchrec stack-based overflow | A vulnerability classified as critical was found in code-projects School Billing System 1.0. This vulnerability affects the function searchrec. The manipulation of the argument Name leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public ... | [] | 4.8 | 5.3 | 5.3 | 4.3 | null | cvelistv5 |
GHSA-c7xm-r6vj-8vg6 | Admidio Missing Minimum Administrator Check in Role Membership Removal | Summary`Role::stopMembership()` does not verify whether removing a user from the administrator role leaves zero administrators. The deprecated `Membership::stopMembership()` contains this safety check, but the current code path bypasses it. Any administrator can remove the last remaining other administrator, locking th... | [] | null | 5.2 | null | null | null | github |
CVE-2024-26783 | mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index | In the Linux kernel, the following vulnerability has been resolved:
mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index
With numa balancing on, when a numa system is running where a numa node
doesn't have its local memory so it has no managed zones, the following
oops has been observed. It's because... | [] | null | 5.5 | null | null | null | cvelistv5 |
GHSA-rgrv-5p2r-55v8 | Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/?page=patients/view_patient&id=. | [] | null | 7.2 | null | null | null | github | |
CVE-2019-11359 | Cross-site scripting (XSS) vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter. | [
"cpe:2.3:a:i-librarian:i\\,_librarian:4.10:*:*:*:*:*:*:*"
] | null | null | 6.1 | 4.3 | null | cvelistv5 | |
GHSA-g9rc-hj23-83gf | Heap-based buffer overflow in QuickTimeMPEG.qtx in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted genl atom in a QuickTime movie file with MPEG encoding, which is not properly handled during decompression. | [] | null | null | null | null | null | github | |
GHSA-x85w-57j5-f6jf | Cross-site scripting (XSS) vulnerability in useredit_account.wdm in Alt-N WebAdmin 3.0.4 allows remote attackers to inject arbitrary web script or HTML via the user parameter. | [] | null | null | null | null | null | github | |
GHSA-v6jq-9h5f-2qcm | A vulnerability was found in Tenda AC6 V15.03.05.16. The vulnerability affects the functionality of the /goform/fast_setting_wifi_set file form_fast_setting_wifi_set. Using the timeZone parameter causes a stack-based buffer overflow. | [] | null | 7.5 | null | null | null | github | |
CVE-2010-0344 | SQL injection vulnerability in the zak_store_management extension 1.0.0 and earlier TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | [
"cpe:2.3:a:typo3:zak_store_management:*:*:*:*:*:*:*:*",
"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*"
] | null | null | null | 7.5 | null | cvelistv5 | |
CVE-2023-25103 | Multiple buffer overflow vulnerabilities exist in the vtysh_ubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these vulnerabilities.This buffer ov... | [
"cpe:2.3:h:milesight:ur32l:-:*:*:*:*:*:*:*",
"cpe:2.3:o:milesight:ur32l_firmware:32.3.0.5:*:*:*:*:*:*:*"
] | null | 7.2 | null | null | null | cvelistv5 | |
GHSA-h43f-9gcw-qmpf | An elevation of privilege vulnerability exists when the Windows Speech Runtime improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Speech Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1522. | [] | null | 7.8 | null | null | null | github | |
GHSA-gj27-3482-r9v9 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in artbees JupiterX allows PHP Local File Inclusion.This issue affects JupiterX: from n/a through 3.0.0. | [] | null | 7.6 | null | null | null | github | |
RHSA-2026:22305 | Red Hat Security Advisory: php:8.2 security update | PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions php: NULL pointer dereference in SOAP apache:Map decoder with missing <value> php: signed integer overflow in metaphone() | [
"cpe:/a:redhat:enterprise_linux:8::appstream"
] | null | 7.5 | null | null | null | csaf_redhat |
CVE-2026-43894 | jq: Wild stack write via signed-integer overflow in decNumber D2U() macro | jq is a command-line JSON processor. In 1.8.1 and earlier, when decNumberFromString is given a number literal of INT_MAX-1 (2147483646) digits, the D2U() macro overflows during signed-int arithmetic. The wrapped negative value bypasses the heap-allocation size check, causes the function to use a 30-byte stack buffer, a... | [] | null | 6.2 | null | null | null | cvelistv5 |
GHSA-536j-cvcw-6cqq | An exploitable improper access control vulnerability exists in the iw_webs account settings functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted user name entry can cause the overwrite of an existing user account password, resulting in remote shell access to the device as that user. An attacke... | [] | null | 8.8 | null | null | null | github | |
GHSA-hqf9-rc9j-5fmj | Array data injection vulnerability in activerecord | SQL injection vulnerability in `activerecord/lib/active_record/connection_adapters/postgresql/cast.rb` in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL is used, allows remote attackers to execute "add data" SQL commands via vectors involving `\` (backslash) characters that are not ... | [] | null | null | null | null | null | github |
CVE-2006-6530 | SQL injection vulnerability in the Help Tip module before 4.7.x-1.0 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | [
"cpe:2.3:a:drupal:help_tip_module:*:*:*:*:*:*:*:*"
] | null | null | null | 7.5 | null | cvelistv5 | |
GHSA-4mv4-gmmf-q382 | DataTable Vulnerable to Cross-Site Scripting | Cross-site scripting (XSS) vulnerability in the DataTables plugin 1.10.8 and earlier for jQuery allows remote attackers to inject arbitrary web script or HTML via the scripts parameter to media/unit_testing/templates/6776.php.RecommendationUpdate to a version greater than 1.10.8. A [fix](https://github.com/DataTables/D... | [] | null | null | null | null | null | github |
CVE-2013-0464 | Multiple cross-site scripting (XSS) vulnerabilities in IBM Eclipse Help System (IEHS) 3.4.3 and 3.6.2, as used in IBM SPSS Data Collection 6.0, 6.0.1, and 7.0, allow remote attackers to inject arbitrary web script or HTML via a crafted URL. | [
"cpe:2.3:a:ibm:eclipse_help_system:3.4.3:*:*:*:*:*:*:*",
"cpe:2.3:a:ibm:eclipse_help_system:3.6.2:*:*:*:*:*:*:*",
"cpe:2.3:a:ibm:spss_data_collection:6.0:*:*:*:*:*:*:*",
"cpe:2.3:a:ibm:spss_data_collection:6.0.1:*:*:*:*:*:*:*",
"cpe:2.3:a:ibm:spss_data_collection:7.0:*:*:*:*:*:*:*"
] | null | null | null | 4.3 | null | cvelistv5 | |
GHSA-mw59-4c4c-6hhr | A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread() in hcom.c file. The vulnerability is exploitable with a crafted hcomn file, that could cause an application to crash. | [] | null | 5.5 | null | null | null | github | |
GHSA-jcwr-vr95-x32m | A vulnerability classified as problematic has been found in DrayTek Vigor 2960 1.5.1.4. Affected is the function sub_1DF14 of the file /cgi-bin/mainfunction.cgi. The manipulation of the argument option with the input /../etc/password leads to path traversal. The attack needs to be done within the local network. The exp... | [] | null | 5.5 | null | null | null | github | |
GHSA-2jf2-rvm2-72fv | VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript code in the target user's window. | [] | null | 6.1 | null | null | null | github | |
GHSA-f6fj-c8gc-64v6 | A vulnerability has been found in automad up to 1.10.9 and classified as problematic. This vulnerability affects the Dashboard. The manipulation of the argument title with the input Home</title><script>alert("home")</script><title> leads to a cross site scripting. The attack can be initiated remotely but requires an au... | [] | null | 5.4 | null | null | null | github | |
GHSA-x8hg-f9pc-8q66 | In the Linux kernel, the following vulnerability has been resolved:net: libwx: fix Tx L4 checksumThe hardware only supports L4 checksum offload for TCP/UDP/SCTP protocol.
There was a bug to set Tx checksum flag for the other protocol that results
in Tx ring hang. Fix to compute software checksum for these packets. | [] | null | 5.5 | null | null | null | github | |
CVE-2025-20131 | Cisco Identity Services Engine Arbitrary File Upload Vulnerability | A vulnerability in the GUI of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative privileges to upload files to an affected device.
This vulnerability is due to improper validation of the file copy function. An attacker could exploit this vulnerability by sending a ... | [] | null | 4.9 | null | null | null | cvelistv5 |
CVE-2023-31012 | NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure. | [
"cpe:2.3:a:nvidia:dgx_h100_bmc:*:*:*:*:*:*:*:*",
"cpe:2.3:o:nvidia:dgx_h100_firmware:*:*:*:*:bmc:*:*:*",
"cpe:2.3:h:nvidia:dgx_h100:-:*:*:*:*:*:*:*"
] | null | 6.1 | null | null | null | cvelistv5 | |
CVE-2022-4427 | SQL Injection via OTRS Search API | Improper Input Validation vulnerability in OTRS AG OTRS, OTRS AG ((OTRS)) Community Edition allows SQL Injection via TicketSearch Webservice
This issue affects OTRS: from 7.0.1 before 7.0.40 Patch 1, from 8.0.1 before 8.0.28 Patch 1; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34. | [
"cpe:2.3:a:otrs:otrs:*:*:*:*:community:*:*:*",
"cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*",
"cpe:2.3:a:otrs:otrs:7.0.40:-:*:*:*:*:*:*",
"cpe:2.3:a:otrs:otrs:8.0.28:-:*:*:*:*:*:*"
] | null | 6.5 | null | null | null | cvelistv5 |
GHSA-xw3w-rw7p-r5rj | FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/edit/3. | [] | null | 8.8 | null | null | null | github | |
GHSA-c959-w274-v6px | Uncontrolled search path element in the installer for Intel(R) SNMP Subagent Stand-Alone for Windows* may allow an authenticated user to potentially enable escalation of privilege via local access. | [] | null | null | null | null | null | github | |
CVE-2025-22224 | VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. | [] | null | 9.3 | null | null | null | cvelistv5 | |
CVE-1999-1508 | Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain administrator access by directly calling undocumented URLs such as ncl_items.html and ncl_subjects.html. | [
"cpe:2.3:h:tek:phaser_network_printer_740:*:*:*:*:*:*:*:*",
"cpe:2.3:h:tek:phaser_network_printer_750:*:*:*:*:*:*:*:*",
"cpe:2.3:h:tek:phaser_network_printer_750dp:*:*:*:*:*:*:*:*",
"cpe:2.3:h:tek:phaser_network_printer_840:*:*:*:*:*:*:*:*",
"cpe:2.3:h:tek:phaser_network_printer_930:*:*:*:*:*:*:*:*"
] | null | null | null | 10 | null | cvelistv5 | |
GHSA-q6f5-9m85-j5v5 | An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Uninitialized Pointer and remote code execution. The attacker needs to get access to an original PC Worx or Config+ project file to be a... | [] | null | null | 8.8 | null | null | github | |
CVE-2017-8365 | The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file. | [
"cpe:2.3:a:libsndfile_project:libsndfile:1.0.28:*:*:*:*:*:*:*",
"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*"
] | null | null | 6.5 | 4.3 | null | cvelistv5 | |
RHSA-2023:6886 | Red Hat Security Advisory: plexus-archiver security update | plexus-archiver: Arbitrary File Creation in AbstractUnArchiver | [
"cpe:/o:redhat:enterprise_linux:7::client",
"cpe:/o:redhat:enterprise_linux:7::computenode",
"cpe:/o:redhat:enterprise_linux:7::server",
"cpe:/o:redhat:enterprise_linux:7::workstation"
] | null | 8.1 | null | null | null | csaf_redhat |
CVE-2023-28686 | Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive information. | [
"cpe:2.3:a:dino:dino:*:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"cpe:2.3... | null | 5.3 | null | null | null | cvelistv5 | |
CVE-2024-49773 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in SuiteCRM | SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Poor input validation in export allows authenticated user do a SQL injection attack. User-controlled input is used to build SQL query. `current_post` parameter in `export` entry point can be abused to perform blind... | [
"cpe:2.3:a:salesagility:suitecrm:*:*:*:*:*:*:*:*"
] | null | 5.3 | null | null | null | cvelistv5 |
GHSA-7hj6-v8wx-jqjx | Deserialization of untrusted data vulnerability in OpenText, Inc RightFax on Windows, 64 bit, 32 bit allows Object Injection.This issue affects RightFax: through 25.4. | [] | 9.3 | null | null | null | null | github | |
GHSA-c754-h248-8v6f | The Physics Forums (aka com.tapatalk.physicsforumscom) application 3.9.22 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | [] | null | null | null | null | null | github | |
GHSA-pp9m-qf39-hxjc | S3-Proxy allows Reflected Cross-site Scripting (XSS) in template implementation | SummaryA Reflected Cross-site Scripting (XSS) vulnerability enables attackers to create malicious URLs that, when visited, inject scripts into the web application. This can lead to session hijacking or phishing attacks on a trusted domain, posing a high risk to all users.Details_Give all details on the vulnerability. P... | [] | 8.4 | null | null | null | null | github |
CVE-2020-3852 | A logic issue was addressed with improved validation. This issue is fixed in Safari 13.0.5. A URL scheme may be incorrectly ignored when determining multimedia permission for a website. | [
"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*"
] | null | 5.3 | null | 5 | null | cvelistv5 | |
CVE-2017-18197 | In mxGraphViewImageReader.java in mxGraph before 3.7.6, the SAXParserFactory instance in convert() is missing flags to prevent XML External Entity (XXE) attacks, as demonstrated by /ServerView. | [
"cpe:2.3:a:jgraph:mxgraph:*:*:*:*:*:*:*:*"
] | null | null | 9.8 | 7.5 | null | cvelistv5 | |
CVE-2025-24764 | WordPress (Simply) Guest Author Name plugin <= 4.36 - Cross Site Scripting (XSS) Vulnerability | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in A. Jones (Simply) Guest Author Name guest-author-name allows DOM-Based XSS.This issue affects (Simply) Guest Author Name: from n/a through <= 4.36. | [] | null | 6.5 | null | null | null | cvelistv5 |
GHSA-pq6f-p382-p92m | In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab | [] | null | 4.6 | null | null | null | github | |
GHSA-2f82-6hr5-qm62 | Multiple buffer overflows in the logging function in the Unreal engine, as used by America's Army and America's Army Special Forces 2.8.2 and earlier, when Punkbuster (PB) is enabled, allow remote attackers to cause a denial of service (daemon crash) via a long (1) PB_Y packet to the YPG server on UDP port 1716 or (2) ... | [] | null | null | null | null | null | github | |
GHSA-437x-5r3x-xhcf | The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it susceptible to brute-force attacks. | [] | null | 5.3 | null | null | null | github | |
GHSA-j4g2-785h-m856 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in namithjawahar Wp-Insert plugin <= 2.5.0 versions. | [] | null | 5.9 | null | null | null | github | |
GHSA-9v33-989g-pj7q | Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service (slapd crash) via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddressAttribute value in an LDIF entry. | [] | null | null | null | null | null | github | |
GHSA-gpxx-q8xc-r3mj | Packages downloaded by Checkmk's automatic agent updates on Linux and Solaris have incorrect permissions in Checkmk < 2.4.0p1, < 2.3.0p32, < 2.2.0p42 and <= 2.1.0p49 (EOL). This allows a local attacker to read sensitive data. | [] | 4.3 | 5.5 | null | null | null | github | |
PYSEC-2012-24 | null | The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat QuickHeal) 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0.1, PC Tools AntiVirus... | [] | null | null | null | null | null | pysec |
CVE-2025-62088 | WordPress WordPress & WooCommerce Scraper plugin, Import Data from Any Site plugin <= 1.0.7 - Server Side Request Forgery (SSRF) vulnerability | Server-Side Request Forgery (SSRF) vulnerability in extendons WordPress & WooCommerce Scraper Plugin, Import Data from Any Site wp_scraper allows Server Side Request Forgery.This issue affects WordPress & WooCommerce Scraper Plugin, Import Data from Any Site: from n/a through <= 1.0.7. | [] | null | 5.4 | null | null | null | cvelistv5 |
GHSA-6p29-3x2m-xpvw | Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Buffer Overflow vulnerability when parsing a specially crafted PDF file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the conte... | [] | null | null | null | null | null | github | |
GHSA-j7vw-pxhm-2jvf | Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via unknown vectors. | [] | null | null | null | null | null | github | |
CVE-2010-5252 | Untrusted search path vulnerability in HTTrack 3.43-9 allows local users to gain privileges via a Trojan horse httrack-plugin.dll file in the current working directory, as demonstrated by a directory that contains a .whtt file. NOTE: some of these details are obtained from third party information. | [
"cpe:2.3:a:httrack:httrack:3.43-9:*:*:*:*:*:*:*"
] | null | null | null | 6.9 | null | cvelistv5 | |
CVE-2010-4488 | Google Chrome before 8.0.552.215 does not properly handle HTTP proxy authentication, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors. | [
"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*"
] | null | null | null | 5 | null | cvelistv5 | |
GHSA-35pq-x9mv-j9hq | The MarqueeAddons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Testimonial Marquee widget in all versions up to, and including, 2.4.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with con... | [] | null | 6.4 | null | null | null | github | |
CVE-2007-1022 | SQL injection vulnerability in h_goster.asp in Turuncu Portal 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | [
"cpe:2.3:a:turuncu_portal:turuncu_portal:1.0:*:*:*:*:*:*:*"
] | null | null | null | 7.5 | null | cvelistv5 | |
CVE-2020-15109 | Ability to change order address without triggering address validations in solidus | In solidus before versions 2.8.6, 2.9.6, and 2.10.2, there is an bility to change order address without triggering address validations. This vulnerability allows a malicious customer to craft request data with parameters that allow changing the address of the current order without changing the shipment costs associated... | [
"cpe:2.3:a:nebulab:solidus:*:*:*:*:*:*:*:*"
] | null | 5.3 | null | null | null | cvelistv5 |
GHSA-3jmm-5p7r-97g4 | Directory traversal vulnerability in Check Point Firewall-1 R55W before HFA03 allows remote attackers to read arbitrary files via an encoded .. (dot dot) in the URL on TCP port 18264. | [] | null | null | null | null | null | github | |
CVE-2003-0289 | Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter. | [
"cpe:2.3:a:cdrtools:cdrecord:1.11:*:*:*:*:*:*:*",
"cpe:2.3:a:cdrtools:cdrecord:2.0:*:*:*:*:*:*:*"
] | null | null | null | 7.2 | null | cvelistv5 | |
CVE-2025-11248 | Sensitive Information Logged | ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 are vulnerable to a sensitive information logging issue. An authenticated user with access to the logs could potentially obtain the sensitive agent token. | [] | null | 3.2 | null | null | null | cvelistv5 |
CVE-2024-30515 | WordPress Events Manager plugin <= 6.4.6.4 - Broken Access Control vulnerability | Missing Authorization vulnerability in Pixelite Events Manager.This issue affects Events Manager: from n/a through 6.4.6.4. | [
"cpe:2.3:a:pixelite:events_manager:*:*:*:*:*:wordpress:*:*"
] | null | 4.3 | null | null | null | cvelistv5 |
CVE-2022-31636 | Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. | [
"cpe:2.3:o:hp:zcentral_4r_workstation_firmware:*:*:*:*:*:*:*:*",
"cpe:2.3:h:hp:zcentral_4r_workstation:-:*:*:*:*:*:*:*",
"cpe:2.3:o:hp:z1_all-in-one_g3_workstation_firmware:*:*:*:*:*:*:*:*",
"cpe:2.3:h:hp:z1_all-in-one_g3_workstation:-:*:*:*:*:*:*:*",
"cpe:2.3:o:hp:elitebook_725_g4_firmware:*:*:*:*:*:*:*:*"... | null | 7.8 | null | null | null | cvelistv5 | |
GHSA-g62v-cqmj-4pcg | Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due to improper validation... | [] | null | null | 8.6 | null | null | github | |
GHSA-8593-g4x7-7rqc | This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8. A local attacker may be able to read sensitive information. | [] | null | null | null | null | null | github | |
CVE-2025-3965 | itwanger paicoding post cross site scripting | A vulnerability has been found in itwanger paicoding 1.0.3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /article/app/post. The manipulation of the argument content leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed ... | [] | 5.1 | 3.5 | 3.5 | 4 | null | cvelistv5 |
GHSA-4p8p-hwvp-pq97 | The FTP print feature in multiple Canon printers, including imageRUNNER and imagePRESS, allow remote attackers to use the server as an inadvertent proxy via a modified PORT command, aka FTP bounce. | [] | null | null | null | null | null | github | |
CVE-2019-7816 | ColdFusion versions Update 2 and earlier, Update 9 and earlier, and Update 17 and earlier have a file upload restriction bypass vulnerability. Successful exploitation could lead to arbitrary code execution. | [
"cpe:2.3:a:adobe:coldfusion:11.0:-:*:*:*:*:*:*",
"cpe:2.3:a:adobe:coldfusion:11.0:update1:*:*:*:*:*:*",
"cpe:2.3:a:adobe:coldfusion:11.0:update10:*:*:*:*:*:*",
"cpe:2.3:a:adobe:coldfusion:11.0:update11:*:*:*:*:*:*",
"cpe:2.3:a:adobe:coldfusion:11.0:update12:*:*:*:*:*:*",
"cpe:2.3:a:adobe:coldfusion:11.0:u... | null | null | 9.8 | 10 | null | cvelistv5 | |
CVE-2023-49487 | JFinalCMS v5.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the navigation management department. | [
"cpe:2.3:a:jfinalcms_project:jfinalcms:5.0.0:*:*:*:*:*:*:*"
] | null | 5.4 | null | null | null | cvelistv5 | |
CVE-2021-24930 | Bookly < 20.3.1 - Staff Member Stored Cross-Site Scripting | The WordPress Online Booking and Scheduling Plugin WordPress plugin before 20.3.1 does not escape the Staff Full Name field before outputting it back in a page, which could lead to a Stored Cross-Site Scripting issue | [
"cpe:2.3:a:booking-wp-plugin:bookly:*:*:*:*:*:wordpress:*:*"
] | null | 5.4 | null | 3.5 | null | cvelistv5 |
CVE-2016-2102 | HAProxy statistics in openstack-tripleo-image-elements are non-authenticated over the network. | [
"cpe:2.3:a:haproxy:haproxy:-:*:*:*:*:*:*:*"
] | null | null | 5.3 | 5 | null | cvelistv5 | |
GHSA-7xj9-27pc-f3vv | HoneyPress through 2016-09-27 can be fingerprinted by attackers because of the ingrained unique www.atxsec.com and ayylmao.wpengine.com hostnames within the fake WordPress templates. This allows attackers to discover and avoid this honeypot system. | [] | null | null | 7.5 | null | null | github | |
GHSA-965h-g9g7-9m95 | ASPRunner Professional 6.0.766 contains a local buffer overflow vulnerability that allows attackers to cause a denial of service by supplying an excessively long project name. Attackers can paste 180 or more characters into the Project name field during project creation to trigger an application crash. | [] | 6.9 | 6.2 | null | null | null | github | |
RHSA-2024:9405 | Red Hat Security Advisory: vim security update | vim: heap-based buffer overflow vulnerability | [
"cpe:/a:redhat:enterprise_linux:9::appstream",
"cpe:/o:redhat:enterprise_linux:9::baseos"
] | null | 5.5 | null | null | null | csaf_redhat |
CVE-2025-31361 | Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter privilege escalation vulnerability | A privilege escalation vulnerability exists in the ControlVault WBDI Driver WBIO_USH_ADD_RECORD functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to privilege escalation. An attacker can issue an api call to trigge... | [] | null | 8.7 | null | null | null | cvelistv5 |
CVE-2017-18430 | In cPanel before 66.0.2, user and group ownership may be incorrectly set when using reassign_post_terminate_cruft (SEC-294). | [
"cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*"
] | null | null | 4.7 | 4.6 | null | cvelistv5 | |
GHSA-75xq-8745-9756 | In Pluck 4.7.16, an admin user can use the theme upload functionality at /admin.php?action=themeinstall to perform remote code execution. | [] | null | 7.2 | null | null | null | github | |
GHSA-m22j-65pc-fjqh | An issue was discovered in the Linux kernel through 4.17.10. There is a buffer overflow in truncate_inline_inode() in fs/f2fs/inline.c when umounting an f2fs image, because a length value may be negative. | [] | null | null | 5.5 | null | null | github | |
CVE-2002-1023 | BadBlue server allows remote attackers to cause a denial of service (crash) via an HTTP GET request without a URI. | [
"cpe:2.3:a:working_resources_inc.:badblue:1.7.3_enterprise:*:*:*:*:*:*:*",
"cpe:2.3:a:working_resources_inc.:badblue:1.7.3_personal:*:*:*:*:*:*:*"
] | null | null | null | 5 | null | cvelistv5 | |
GHSA-p86f-f24q-7vc8 | aEnrich a+HRD 5.x Learning Management Key Performance Indicator System has a local file inclusion (LFI) vulnerability that occurs due to missing input validation in v5.x | [] | null | 8.1 | null | null | null | github | |
CVE-2026-41387 | OpenClaw < 2026.3.22 - Supply Chain Redirection via Incomplete Host Environment Sanitization | OpenClaw before 2026.3.22 contains an incomplete host environment variable sanitization vulnerability in host-env-security-policy.json and host-env-security.ts that allows package-manager environment overrides. Attackers can exploit approved exec requests to redirect package resolution or runtime bootstrap to attacker-... | [] | 8.5 | 7.8 | null | null | null | cvelistv5 |
GHSA-54pm-xxpg-8wgg | Adobe Macromedia MX 2004 products, Captivate, Contribute 2, Contribute 3, and eLicensing client install the Macromedia Licensing Service with the Users group permitted to configure the service, including the path to executable, which allows local users to execute arbitrary code as Local System. | [] | null | null | null | null | null | github | |
CVE-2024-30871 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php. | [
"cpe:2.3:a:netentsec:application_security_gateway:*:*:*:*:*:*:*:*"
] | null | 8.8 | null | null | null | cvelistv5 | |
CVE-2015-6349 | Cross-site scripting (XSS) vulnerability in the web interface in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.7(0.15) allows remote attackers to inject arbitrary web script or HTML via a crafted URL. | [
"cpe:2.3:a:cisco:secure_access_control_server:5.7.0.15:*:*:*:*:*:*:*"
] | null | null | null | 4.3 | null | cvelistv5 | |
CVE-2001-1114 | book.cgi in NetCode NC Book 0.2b allows remote attackers to execute arbitrary commands via shell metacharacters in the "current" parameter. | [
"cpe:2.3:a:netcode:nc_book:0.2b:*:*:*:*:*:*:*"
] | null | null | null | 7.5 | null | cvelistv5 | |
CVE-2013-7465 | Ice Cold Apps Servers Ultimate 6.0.2(12) does not require authentication for TELNET, SSH, or FTP, which allows remote attackers to execute arbitrary code by uploading PHP scripts. | [
"cpe:2.3:a:icecoldapps:servers_ultimate:6.0.2:*:*:*:*:android:*:*"
] | null | null | 9.8 | 7.5 | null | cvelistv5 | |
CVE-2022-49200 | Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt | In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt
Fix the following kernel oops in btmtksdio_interrrupt
[ 14.339134] btmtksdio_interrupt+0x28/0x54
[ 14.339139] process_sdio_pending_irqs+0x68/0x1a0
[ 14.339144] sdio_irq_work+0x40/... | [] | null | 5.5 | null | null | null | cvelistv5 |
GHSA-85xx-79fp-6rmf | An improper access control vulnerability [CWE-284] in FortiWLC 8.6.1 and below may allow an authenticated and remote attacker with low privileges to execute any command as an admin user with full access rights via bypassing the GUI restrictions. | [] | null | null | null | null | null | github | |
GHSA-rcvg-jj3g-rj7c | Sensitive Data Disclosure Vulnerability in Connection Configuration Endpoints | The Fides webserver has a number of endpoints that retrieve `ConnectionConfiguration` records and their associated `secrets` which _can_ contain sensitive data (e.g. passwords, private keys, etc.). These `secrets` are stored encrypted at rest (in the application database), and the associated endpoints are not meant to ... | [] | null | 6.5 | null | null | null | github |
GHSA-cqcj-32w9-hr73 | Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Native Image). Supported versions that are affected are Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Ora... | [] | null | 5.7 | null | null | null | github | |
GHSA-4w3f-6fcm-c44h | UnRTF allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code as demonstrated by a file containing the string "{\cb-999999999". | [] | null | null | null | null | null | github | |
CVE-2008-0678 | SQL injection vulnerability in index.php in BlogPHP 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a page action. | [
"cpe:2.3:a:blogphp:blogphp:2.0:*:*:*:*:*:*:*"
] | null | null | null | 6.8 | null | cvelistv5 | |
CVE-2025-0228 | code-projects Local Storage Todo App index.html cross site scripting | A vulnerability has been found in code-projects Local Storage Todo App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /js-todo-app/index.html. The manipulation of the argument Add leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed ... | [
"cpe:2.3:a:code-projects:local_storage_todo_app:1.0:*:*:*:*:*:*:*"
] | 5.1 | 2.4 | 2.4 | 3.3 | null | cvelistv5 |
GHSA-h9c9-vxf6-2qqg | Multiple cross-site scripting (XSS) vulnerabilities in calendar.class.php in ApPHP Calendar (ApPHP CAL) allow remote attackers to inject arbitrary web script or HTML via the (1) category_name, (2) category_description, (3) event_name, or (4) event_description parameter. | [] | null | null | null | null | null | github | |
CVE-2019-8589 | This issue was addressed with improved checks. This issue is fixed in macOS Mojave 10.14.5. A malicious application may bypass Gatekeeper checks. | [
"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*"
] | null | 5.5 | null | 4.3 | null | cvelistv5 | |
CVE-2012-0315 | Untrusted search path vulnerability in ALFTP before 5.31 allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file. | [
"cpe:2.3:a:estsoft:alftp:*:*:*:*:*:*:*:*",
"cpe:2.3:a:estsoft:alftp:4.1:*:*:*:*:*:*:*",
"cpe:2.3:a:estsoft:alftp:4.1:beta2:*:*:*:*:*:*",
"cpe:2.3:a:estsoft:alftp:4.1:beta2:*:en:*:*:*:*",
"cpe:2.3:a:estsoft:alftp:5.0:*:*:*:*:*:*:*",
"cpe:2.3:a:estsoft:alftp:5.1:beta2:*:*:*:*:*:*"
] | null | null | null | 9.3 | null | cvelistv5 | |
CVE-2023-27914 | A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to write beyond the allocated buffer causing a Stack Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the current process. | [
"cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*",
"cpe:2.3:a:autodesk:autocad_advance_steel:*:*:*:*:*:*:*:*",
"cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*",
"cpe:2.3:a:autodesk:autocad_civil_3d:*:*:*:*:*:*:*:*",
"cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*",
"cpe:2.3:a:autodesk:autocad_l... | null | 7.8 | null | null | null | cvelistv5 |
End of preview. Expand in Data Studio
vulnerability-scores
This dataset comprises 712,876 real-world vulnerabilities used to train and evaluate VLAI, a transformer-based model designed to predict software vulnerability severity levels directly from text descriptions, enabling faster and more consistent triage.
The dataset is presented in the paper VLAI: A RoBERTa-Based Model for Automated Vulnerability Severity Classification.
Sources
| Source | Label | Entries | Share |
|---|---|---|---|
cvelistv5 |
CVE Program (enriched with vulnrichment and Fraunhofer FKIE) | 337,454 | 47.3% |
github |
GitHub Security Advisories | 336,720 | 47.2% |
csaf_redhat |
CSAF Red Hat | 25,237 | 3.5% |
csaf_cisa |
CSAF CISA | 5,870 | 0.8% |
csaf_cisco |
CSAF Cisco | 3,930 | 0.6% |
pysec |
PySec advisories | 3,665 | 0.5% |
Extracted from the database of Vulnerability-Lookup with the VulnTrain project. Dumps of the data are available here.
Splits
| Split | Examples |
|---|---|
| train | 641,588 |
| test | 71,288 |
Fields
| Field | Type | Description |
|---|---|---|
id |
string | Vulnerability identifier (e.g., CVE-2024-1234, GHSA-xxxx, PYSEC-2024-xxx) |
title |
string | Vulnerability title |
description |
string | Vulnerability description in English |
cpes |
list[string] | Common Platform Enumeration identifiers |
cvss_v4_0 |
float | CVSS v4.0 score |
cvss_v3_1 |
float | CVSS v3.1 score |
cvss_v3_0 |
float | CVSS v3.0 score |
cvss_v2_0 |
float | CVSS v2.0 score |
patch_commit_url |
string | URL to the patch commit on GitHub, if available |
source |
string | Data source identifier |
Usage
import json
from datasets import load_dataset
dataset = load_dataset("CIRCL/vulnerability-scores")
vulnerabilities = ["CVE-2012-2339", "RHSA-2023:5964", "GHSA-7chm-34j8-4f22", "PYSEC-2024-225"]
filtered_entries = dataset.filter(lambda elem: elem["id"] in vulnerabilities)
for entry in filtered_entries["train"]:
print(json.dumps(entry, indent=4))
Related models
- CIRCL/vulnerability-severity-classification-roberta-base — RoBERTa severity classifier
- CIRCL/vulnerability-severity-classification-distilbert-base-uncased — DistilBERT severity classifier
References
- Vulnerability-Lookup — the vulnerability data source
- VulnTrain — training pipeline
- ML-Gateway — inference API
- VLAI paper — Bonhomme, C., Dulaunoy, A. (2025)
- Downloads last month
- 692
Models trained or fine-tuned on CIRCL/vulnerability-scores