| Page(s) : 1 ... 688 689 690 691 692 693 694 695 696 697 [698] 699 700 701 702 703 704 705 706 707 708 ... | Result(s) : 299922 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-20 | CVE-2024-11030 | cve | GPT Academic version 3.83 is vulnerable to a Server-Side Request Forgery (SSRF) vulnerability through its HotReload plugin function, which calls the crazy_utils.get_files_from_e... |
| N/A | 2025-03-20 | CVE-2024-11031 | cve | In version 3.83 of binary-husky/gpt_academic, a Server-Side Request Forgery (SSRF) vulnerability exists in the Markdown_Translate.get_files_from_everything() API. This vulnerabi... |
| N/A | 2025-03-20 | CVE-2024-11033 | cve | A Denial of Service (DoS) vulnerability exists in the file upload feature of binary-husky/gpt_academic version 3.83. The vulnerability is due to improper handling of form-data w... |
| N/A | 2025-03-20 | CVE-2024-11037 | cve | A path traversal vulnerability exists in binary-husky/gpt_academic at commit 679352d, which allows an attacker to bypass the blocked_paths protection and read the config.py file... |
| N/A | 2025-03-20 | CVE-2024-11039 | cve | A pickle deserialization vulnerability exists in the Latex English error correction plug-in function of binary-husky/gpt_academic versions up to and including 3.83. This vulnera... |
| N/A | 2025-03-20 | CVE-2024-11040 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CVE ID NUMBER. The Rejected CVE Record is a duplicate of CVE-2024-8939. Notes: All CVE users should reference CVE-2024-8939 instead... |
| N/A | 2025-03-20 | CVE-2024-11041 | cve | vllm-project vllm version v0.6.2 contains a vulnerability in the MessageQueue.dequeue() API function. The function uses pickle.loads to parse received sockets directly, leading ... |
| N/A | 2025-03-20 | CVE-2024-11042 | cve | In invoke-ai/invokeai version v5.0.2, the web API `POST /api/v1/images/delete` is vulnerable to Arbitrary File Deletion. This vulnerability allows unauthorized attackers to dele... |
| N/A | 2025-03-20 | CVE-2024-11043 | cve | A Denial of Service (DoS) vulnerability was discovered in the /api/v1/boards/{board_id} endpoint of invoke-ai/invokeai version v5.0.2. This vulnerability occurs when an excessiv... |
| N/A | 2025-03-20 | CVE-2024-11044 | cve | An open redirect vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a spec... |
| N/A | 2025-03-20 | CVE-2024-11045 | cve | A Cross-Site WebSocket Hijacking (CSWSH) vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows an attacker to clone a malicious server extension from a Git... |
| N/A | 2025-03-20 | CVE-2024-11137 | cve | An Insecure Direct Object Reference (IDOR) vulnerability exists in the `PATCH /v1/runs/:id/score` endpoint of lunary-ai/lunary version 1.6.0. This vulnerability allows an attack... |
| N/A | 2025-03-20 | CVE-2024-11167 | cve | An improper access control vulnerability in danny-avila/librechat versions prior to 0.7.6 allows authenticated users to delete other users' prompts via the groupid paramete... |
| N/A | 2025-03-20 | CVE-2024-11169 | cve | An unhandled exception in danny-avila/librechat version 3c94ff2 can lead to a server crash. The issue occurs when the fs module throws an exception while handling file uploads. ... |
| N/A | 2025-03-20 | CVE-2024-11170 | cve | A vulnerability in danny-avila/librechat version git 81f2936 allows for path traversal due to improper sanitization of file paths by the multer middleware. This can lead to arbi... |
| N/A | 2025-03-20 | CVE-2024-11171 | cve | In danny-avila/librechat version git 0c2a583, there is an improper input validation vulnerability. The application uses multer middleware for handling multipart file uploads. Wh... |
| N/A | 2025-03-20 | CVE-2024-11172 | cve | A vulnerability in danny-avila/librechat version git a1647d7 allows an unauthenticated attacker to cause a denial of service by sending a crafted payload to the server. The midd... |
| N/A | 2025-03-20 | CVE-2024-11173 | cve | An unhandled exception in the danny-avila/librechat repository, version git 600d217, can cause the server to crash, leading to a full denial of service. This issue occurs when c... |
| 6.5 | 2025-03-20 | CVE-2024-11300 | cve | In lunary-ai/lunary before version 1.6.3, an improper access control vulnerability exists where a user can access prompt data of another user. This issue affects version 1.6.2 a... |
| N/A | 2025-03-20 | CVE-2024-11301 | cve | In lunary-ai/lunary before version 1.6.3, the application allows the creation of evaluators without enforcing a unique constraint on the combination of projectId and slug. This ... |
| Page(s) : 1 ... 688 689 690 691 692 693 694 695 696 697 [698] 699 700 701 702 703 704 705 706 707 708 ... | Result(s) : 299922 |
