Security Advisories
A list of vulnerabilities (CVE / GHSA) publicly disclosed by Tencent Zhuque Lab. View as JSONopen_in_new
bug_report
Vulnerabilities
67
deployed_code
Products
21
leaderboard
Severity Breakdown
-
open_in_newMedium CVE-2024-47829 CWE-328
pnpm uses the md5 path shortening function causes packet paths to coincide, which causes indirect packet overwriting
deployed_code Affected: pnpm < 10.0.0 calendar_today Published: April 23, 2025 -
open_in_newMedium CVE-2025-31486 CWE-200/CWE-284
`server.fs.deny` bypassed with `.svg` or relative paths
deployed_code Affected: vite >=6.2.0, <=6.2.4 >=6.1.0, <=6.1.3 >=6.0.0, <=6.0.13 >=5.0.0, <=5.4.16 <=4.5.11 calendar_today Published: April 03, 2025 -
open_in_newMedium CVE-2024-55885 CWE-327/CWE-328
Beego has Collision Hazards of MD5 in Cache Key Filenames
deployed_code Affected: beego github.com/beego/beego/v2 (go): < 2.3.4; github.com/beego/beego (go): <= 1.12.14 calendar_today Published: December 12, 2024 -
open_in_newMedium CVE-2024-0111 CWE-1284
NVIDIA CUDA Toolkit cuobjdump Malformed ELF Denial of Service and Data Tampering
deployed_code Affected: CUDA Toolkit / cuobjdump <= 12.6 calendar_today Published: August 31, 2024
Per page
