| Page(s) : 1 ... 722 723 724 725 726 727 728 729 730 731 [732] 733 734 735 736 737 738 739 740 741 742 ... | Result(s) : 325831 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2025-03-20 | CVE-2025-0185 | cve | A vulnerability in the Dify Tools' Vanna module of the langgenius/dify repository allows for a Pandas Query Injection in the latest version. The vulnerability occurs in the... |
| N/A | 2025-03-20 | CVE-2025-0187 | cve | A Denial of Service (DoS) vulnerability was discovered in the file upload feature of gradio-app/gradio version 0.39.1. The vulnerability is due to improper handling of form-data... |
| N/A | 2025-03-20 | CVE-2025-0188 | cve | A Server-Side Request Forgery (SSRF) vulnerability was discovered in gaizhenbiao/chuanhuchatgpt version 20240914. The vulnerability allows an attacker to construct a response li... |
| 7.5 | 2025-03-20 | CVE-2025-0189 | cve | In version 3.25.0 of aimhubio/aim, the tracking server is vulnerable to a denial of service attack. The server overrides the maximum size for websocket messages, allowing very l... |
| 7.5 | 2025-03-20 | CVE-2025-0190 | cve | In version 3.25.0 of aimhubio/aim, a denial of service vulnerability exists. By tracking a large number of `Text` objects and then querying them simultaneously through the web A... |
| N/A | 2025-03-20 | CVE-2025-0191 | cve | A Denial of Service (DoS) vulnerability exists in the file upload feature of gaizhenbiao/chuanhuchatgpt version 20240914. The vulnerability is due to improper handling of form-d... |
| N/A | 2025-03-20 | CVE-2025-0192 | cve | A stored Cross-site Scripting (XSS) vulnerability exists in the latest version of wandb/openui. The vulnerability is present in the edit HTML functionality, where an attacker ca... |
| 5.4 | 2025-03-20 | CVE-2025-0281 | cve | A stored cross-site scripting (XSS) vulnerability exists in lunary-ai/lunary versions 1.6.7 and earlier. An attacker can inject malicious JavaScript into the SAML IdP XML metada... |
| 7.5 | 2025-03-20 | CVE-2025-0312 | cve | A vulnerability in ollama/ollama versions |
| N/A | 2025-03-20 | CVE-2025-0313 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CVE ID NUMBER. The Rejected CVE Record is a duplicate of CVE-2024-12055. Notes: All CVE users should reference CVE-2024-12055 inste... |
| 7.5 | 2025-03-20 | CVE-2025-0315 | cve | A vulnerability in ollama/ollama |
| 7.5 | 2025-03-20 | CVE-2025-0317 | cve | A vulnerability in ollama/ollama versions |
| N/A | 2025-03-20 | CVE-2025-0330 | cve | In berriai/litellm version v1.52.1, an issue in proxy_server.py causes the leakage of Langfuse API keys when an error occurs while parsing team settings. This vulnerability expo... |
| N/A | 2025-03-20 | CVE-2025-0452 | cve | eosphoros-ai/DB-GPT version latest is vulnerable to arbitrary file deletion on Windows systems via the '/v1/agent/hub/update' endpoint. The application fails to proper... |
| 7.5 | 2025-03-20 | CVE-2025-0453 | cve | In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker can create large batches of queries that repeatedly request all... |
| N/A | 2025-03-20 | CVE-2025-0454 | cve | A Server-Side Request Forgery (SSRF) vulnerability was identified in the Requests utility of significant-gravitas/autogpt versions prior to v0.4.0. The vulnerability arises due ... |
| N/A | 2025-03-20 | CVE-2025-0508 | cve | A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the possibility of MD5 hash collisions in all versions. This can lead to workflows bei... |
| N/A | 2025-03-20 | CVE-2025-0628 | cve | An improper authorization vulnerability exists in the main-latest version of BerriAI/litellm. When a user with the role 'internal_user_viewer' logs into the applicatio... |
| N/A | 2025-03-20 | CVE-2025-0655 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CVE ID NUMBER. The Rejected CVE Record is a duplicate of CVE-2024-55890. Notes: All CVE users should reference CVE-2024-55890 inste... |
| 8.8 | 2025-03-20 | CVE-2025-1040 | cve | AutoGPT versions 0.3.4 and earlier are vulnerable to a Server-Side Template Injection (SSTI) that could lead to Remote Code Execution (RCE). The vulnerability arises from the im... |
| Page(s) : 1 ... 722 723 724 725 726 727 728 729 730 731 [732] 733 734 735 736 737 738 739 740 741 742 ... | Result(s) : 325831 |
