Zhengyu Liu

CVE ID	Product	Type
CVE-2025-5120	HuggingFace Transformers & Smolagents	Sandbox Escape
CVE-2025-24049	Microsoft Azure CLI	RCE
CVE-2025-30358	Mesop	DoS & Jailbreak
CVE-2025-30374	Taipy	XSS & RCE
CVE-2025-54063	Cherry Studio	RCE
CVE-2025-54374	Eidos	RCE
CVE-2024-43805	Jupyter Notebook/JupyterLab	Stored XSS
CVE-2024-38354	Hackmd.io	Stored XSS
CVE-2024-49362	Joplin	RCE
CVE-2025-8535	NanoVault	RCE
CVE-2024-47885	Astro	DOM Clobbering
CVE-2024-41669	Cocalc	XSS
CVE-2024-10457	AutoGPT	SSRF
CVE-2024-12029	InvokeAI	RCE (Deserialization)
CVE-2024-43788	Webpack	DOM Clobbering
CVE-2024-48738	Typlog	XSS
CVE-2025-24370	Django-Unicorn	XSS
CVE-2025-0183	gpt_academic	XSS
CVE-2024-53391	pace-js	Prototype Pollution
CVE-2024-45389	Pagefind	DOM Clobbering
CVE-2024-45812	Vite	DOM Clobbering
CVE-2024-47068	Rollup	DOM Clobbering
CVE-2024-47075	layui	DOM Clobbering
CVE-2024-45939	stealjs	DOM Clobbering
CVE-2024-49212	curl	DOM Clobbering
CVE-2024-49213	cusdis	DOM Clobbering
CVE-2024-51091	seajs	DOM Clobbering
CVE-2024-53382	PrismJS	DOM Clobbering
CVE-2024-53384	tsup	DOM Clobbering
CVE-2024-53385	inspire.js	DOM Clobbering
CVE-2024-53386	stage.js	DOM Clobbering
CVE-2024-53387	umeditor	DOM Clobbering
CVE-2024-53388	mavo	DOM Clobbering
CVE-2025-23042	Gradio	ACL Bypass
CVE-2025-43930	hashview	Host Injection
CVE-2025-43931	flask-boilerplate	Host Injection
CVE-2025-43932	JobCenter	Host Injection
CVE-2025-43933	fblog	Host Injection
CVE-2025-3982	Sverchok	Class Pollution
CVE-2025-45347	open-event-server	Incorrect Access Control
CVE-2025-45348	open-event-server	Incorrect Access Control
CVE-2025-45349	open-event-server	Incorrect Access Control

Published CVEs