| Page(s) : 1 ... 686 687 688 689 690 691 692 693 694 695 [696] 697 698 699 700 701 702 703 704 705 706 ... | Result(s) : 299922 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-20 | CVE-2024-10572 | cve | In h2oai/h2o-3 version 3.46.0.1, the `run_tool` command exposes classes in the `water.tools` package through the `ast` parser. This includes the `XGBoostLibExtractTool` class, w... |
| N/A | 2025-03-20 | CVE-2024-10624 | cve | A Regular Expression Denial of Service (ReDoS) vulnerability exists in the gradio-app/gradio repository, affecting the gr.Datetime component. The affected version is git commit ... |
| N/A | 2025-03-20 | CVE-2024-10648 | cve | A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format ... |
| N/A | 2025-03-20 | CVE-2024-10650 | cve | An unauthenticated Denial of Service (DoS) vulnerability was identified in ChuanhuChatGPT version 20240918, which could be exploited by sending large data payloads using a multi... |
| N/A | 2025-03-20 | CVE-2024-10707 | cve | gaizhenbiao/chuanhuchatgpt version git d4ec6a3 is affected by a local file inclusion vulnerability due to the use of the gradio component gr.JSON, which has a known issue (CVE-2... |
| N/A | 2025-03-20 | CVE-2024-10713 | cve | A vulnerability in szad670401/hyperlpr v3.0 allows for a Denial of Service (DoS) attack. The server fails to handle excessive characters appended to the end of multipart boundar... |
| N/A | 2025-03-20 | CVE-2024-10714 | cve | A vulnerability in binary-husky/gpt_academic version 3.83 allows an attacker to cause a Denial of Service (DoS) by adding excessive characters to the end of a multipart boundary... |
| 7.5 | 2025-03-20 | CVE-2024-10718 | cve | In phpipam/phpipam version 1.5.1, the Secure attribute for sensitive cookies in HTTPS sessions is not set. This could cause the user agent to send those cookies in plaintext ove... |
| 5.4 | 2025-03-20 | CVE-2024-10719 | cve | A stored cross-site scripting (XSS) vulnerability exists in phpipam version 1.5.2, specifically in the circuits options functionality. This vulnerability allows an attacker to i... |
| 6.1 | 2025-03-20 | CVE-2024-10720 | cve | A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. The vulnerability occurs in the 'Device Management' section under 'Admi... |
| 5.4 | 2025-03-20 | CVE-2024-10721 | cve | A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2. This vulnerability allows an attacker to inject malicious scripts into the app... |
| 5.4 | 2025-03-20 | CVE-2024-10722 | cve | A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. The vulnerability allows attackers to inject malicious scripts into the 'Descript... |
| 5.4 | 2025-03-20 | CVE-2024-10723 | cve | A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2. This vulnerability allows an attacker to inject malicious scripts into the des... |
| 5.4 | 2025-03-20 | CVE-2024-10724 | cve | A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2, specifically in the Subnet NAT translations section when editing the Destination addre... |
| 5.4 | 2025-03-20 | CVE-2024-10725 | cve | A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. This vulnerability allows an attacker to inject malicious scripts into the application... |
| 6.1 | 2025-03-20 | CVE-2024-10727 | cve | A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0 through 1.6.0. The vulnerability arises when the application receives data in an HT... |
| N/A | 2025-03-20 | CVE-2024-10762 | cve | In lunary-ai/lunary before version 1.5.9, the /v1/evaluators/ endpoint allows users to delete evaluators of a project by sending a DELETE request. However, the route lacks prope... |
| N/A | 2025-03-20 | CVE-2024-10812 | cve | An open redirect vulnerability exists in binary-husky/gpt_academic version 3.83. The vulnerability occurs when a user is redirected to a URL specified by user-controlled input i... |
| N/A | 2025-03-20 | CVE-2024-10819 | cve | A Cross-Site Request Forgery (CSRF) vulnerability in version 3.83 of binary-husky/gpt_academic allows an attacker to trick a user into uploading files without their consent, exp... |
| N/A | 2025-03-20 | CVE-2024-10821 | cve | A Denial of Service (DoS) vulnerability in the multipart request boundary processing mechanism of the Invoke-AI server (version v5.0.1) allows unauthenticated attackers to cause... |
| Page(s) : 1 ... 686 687 688 689 690 691 692 693 694 695 [696] 697 698 699 700 701 702 703 704 705 706 ... | Result(s) : 299922 |
