| Page(s) : 1 ... 723 724 725 726 727 728 729 730 731 732 [733] 734 735 736 737 738 739 740 741 742 743 ... | Result(s) : 325831 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.5 | 2025-03-20 | CVE-2025-1451 | cve | A vulnerability in parisneo/lollms-webui v13 arises from the server's handling of multipart boundaries in file uploads. The server does not limit or validate the length of ... |
| N/A | 2025-03-20 | CVE-2025-1473 | cve | A Cross-Site Request Forgery (CSRF) vulnerability exists in the Signup feature of mlflow/mlflow versions 2.17.0 to 2.20.1. This vulnerability allows an attacker to create a new ... |
| 5.5 | 2025-03-20 | CVE-2025-1474 | cve | In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a password. This vulnerability could lead to security risks, as accounts without pas... |
| N/A | 2025-03-20 | CVE-2025-1796 | cve | A vulnerability in langgenius/dify v0.10.1 allows an attacker to take over any account, including administrator accounts, by exploiting a weak pseudo-random number generator (PR... |
| N/A | 2025-03-20 | CVE-2025-30259 | cve | The WhatsApp cloud service before late 2024 did not block certain crafted PDF content that can defeat a sandbox protection mechanism and consequently allow remote access to mess... |
| N/A | 2025-03-19 | CVE-2025-1628 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| N/A | 2025-03-19 | CVE-2025-27705 | cve | There is a cross-site scripting vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.53. Attackers with system administrator p... |
| N/A | 2025-03-19 | CVE-2025-30258 | cve | In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses th... |
| 6.1 | 2025-03-19 | CVE-2024-55009 | cve | A reflected cross-site scripting (XSS) vulnerability in AutoBib - Bibliographic collection management system 3.1.140 and earlier allows attackers to execute arbitrary Javascript... |
| N/A | 2025-03-19 | CVE-2025-26816 | cve | A vulnerability in Intrexx Portal Server 12.0.2 and earlier which was classified as problematic potentially allows users with particular permissions under certain conditions to ... |
| N/A | 2025-03-19 | CVE-2025-27774 | cve | Applio is a voice conversion tool. Versions 3.2.7 and prior are vulnerable to server-side request forgery (SSRF) and file write in `model_download.py` (line 156 in 3.2.7). The b... |
| N/A | 2025-03-19 | CVE-2025-27775 | cve | Applio is a voice conversion tool. Versions 3.2.7 and prior are vulnerable to server-side request forgery (SSRF) and file write in `model_download.py` (line 143 in 3.2.7). The b... |
| N/A | 2025-03-19 | CVE-2025-27776 | cve | Applio is a voice conversion tool. Versions 3.2.7 and prior are vulnerable to server-side request forgery (SSRF) and file write in `model_download.py` (line 240 in 3.2.7). The b... |
| N/A | 2025-03-19 | CVE-2025-27777 | cve | Applio is a voice conversion tool. Versions 3.2.7 and prior are vulnerable to server-side request forgery (SSRF) in `model_download.py` (line 195 in 3.2.7). The blind SSRF allow... |
| N/A | 2025-03-19 | CVE-2025-27778 | cve | Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to unsafe deserialization in `infer.py`. The issue can lead to remote code execution. As of tim... |
| N/A | 2025-03-19 | CVE-2025-27779 | cve | Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to unsafe deserialization in `model_blender.py` lines 20 and 21. `model_fusion_a` and `model_fu... |
| N/A | 2025-03-19 | CVE-2025-27780 | cve | Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to unsafe deserialization in model_information.py. `model_name` in model_information.py takes u... |
| N/A | 2025-03-19 | CVE-2025-27781 | cve | Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to unsafe deserialization in inference.py. `model_file` in inference.py as well as `model_file`... |
| N/A | 2025-03-19 | CVE-2025-27782 | cve | Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to arbitrary file write in inference.py. This issue may lead to writing arbitrary files on the ... |
| N/A | 2025-03-19 | CVE-2025-27783 | cve | Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to arbitrary file write in train.py. This issue may lead to writing arbitrary files on the Appl... |
| Page(s) : 1 ... 723 724 725 726 727 728 729 730 731 732 [733] 734 735 736 737 738 739 740 741 742 743 ... | Result(s) : 325831 |
