| CVE ID | Description | Link |
|---|---|---|
| CVE-2021-21422 | Multiple stored XSS in Mongo Express | Advisory |
| CVE-2023-39141 | Unauthenticated Path Traversal in webui-aria2 | Blog Post |
| CVE-2024-1163 | Path Traversal in MapShaper | Advisory |
| CVE-2025-3884 | Path Traversal in Cloudera Hue Ace Editor | Advisory |
| Year | Title | Link | Venue | Media Coverage | Repo |
|---|---|---|---|---|---|
| 2025 | Eradicating the Unseen: Detecting, Exploiting, and Remediating a Path Traversal Vulnerability across GitHub | arXiv | ACM AsiaCCS 2025 | TheRegister, nki.gov.hu | GitHub Repo |
| 2024 | MoreFixes: A Large-Scale Dataset of CVE Fix Commits Mined Through Enhanced Repository Discovery | ACM DL | PROMISE 2024 | - | GitHub Repo |
| 2019 | An Empirical Study of C++ Vulnerabilities in Crowd-Sourced Code Examples | IEEE Xplore | IEEE Transactions on Software Engineering (presented at ICSE 2021 Journal-First Track) | BBC, TheRegister, StackExchange | Zenodo |