CVE Stuffing

[brohee]

Didn't check who filled those bugs, but I've seen companies requiring having discovered CVE to apply for some jobs, and the natural consequence is gaming the system...

[sanxiyn]

I checked, it seems to be a student of Seoul National University, South Korea. https://github.com/donghyunlee00/CVE

[rvp-x]

Huh. I wonder if it's a student doing an assignment and not realizing they're submitting to a real database.

Their other GitHub work is following tutorials, labs and courses.

[hoppla]

A second guy is also doing this. CVEs have a reference to third party advisories such as https://github.com/koharin/koharin2/blob/main/CVE-2020-35185

This repository does no longer exists.