Bounties
Partners
Community
Info
deepjavalibrary / djl
Project repository
An Engine-Agnostic Deep Learning Framework in Java
Submit a report
FIRST INTERACTION
WITHIN
7 DAYS
REVIEW
WITHIN
60 DAYS
FIX
WITHIN
122 DAYS
Arbitrary Overwrite of Server System Files Due to Lack of Input Validation, Lead...
Aug 6th 2025
siriusbellatrix
•
self closed
Path Traversal in TAR Extraction
Feb 28th 2025
hope4real
•
duplicate
Critical
Path Traversal in TarArchiveInputStream (Arbitrary File Write)
Feb 23rd 2025
hope4real
•
duplicate
High
Arbitrary File Overwrite & RCE via Tarfile Path Traversal
Feb 22nd 2025
siriusbellatrix
•
High
•
$750
High
•
$750
Use of unclaimed s3 bucket in .md file while making user download the jpg from i...
Oct 7th 2024
aftersnows
•
self closed
Symlink-Based Model Theft & File leakage during extracting
Sep 30th 2024
retr0reg
•
informative
High
Arbitrary File Overwrite & RCE via Tarfile Path Traversal
Sep 30th 2024
pinkdraconian
•
High
•
$750
High
•
$750
Tarslip that leads to arbitary file write
May 16th 2024
0xanis
•
High
•
$750
High
•
$750
•
CVE-2024-2914
CVE-2024-2914
CRITICAL
$1500
HIGH
$750
MEDIUM
$125
LOW
$20
