110 matches found
Applio 路径遍历漏洞
Applio is an open source AI speech conversion tool from Spanish AI Hispano. A path traversal vulnerability exists in Applio 3.2.8-bugfix and earlier versions, which stems from an arbitrary file deletion issue in core.py, where the outputttspath parameter of tts.py accepts arbitrary user input and...
PT-2025-11982 · Applio · Applio
Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: The issue affects a voice conversion tool and may lead to writing arbitrary files on the server. It can also be used in conjunction with an unsafe deserialization to achieve remote code...
Applio 代码问题漏洞
Applio is an open source AI speech conversion tool from Spanish AI Hispano. A code issue vulnerability exists in Applio 3.2.8-bugfix and prior versions, which stems from an insecure deserialization issue in modelblender.py that could lead to remote code execution...
PT-2025-11978 · Applio · Applio
Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.7 and prior Description: Applio is a voice conversion tool that is vulnerable to server-side request forgery SSRF and file write in model download.py. The blind SSRF allows for sending requests on behalf of the Applio serv...
PT-2025-11964 · Applio +1 · Applio +1
Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: Applio is a voice conversion tool vulnerable to unsafe deserialization in the model information.py file. The model name variable in model information.py accepts user-supplied input, such as ...
PT-2025-11981 · Applio · Applio
Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: Applio is a voice conversion tool vulnerable to unsafe deserialization in model blender.py lines 20 and 21. The functions model fusion a and model fusion b from voice blender.py accept...
PT-2025-11976 · Applio · Applio
Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.7 and prior Description: Applio is a voice conversion tool. It is susceptible to server-side request forgery SSRF and file write vulnerabilities in model download.py line 156 in version 3.2.7. The blind SSRF allows sending...
PT-2025-11977 · Applio · Applio
Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.7 and prior Description: Applio is a voice conversion tool vulnerable to server-side request forgery SSRF and file write within the model download.py file line 143 in version 3.2.7. The SSRF allows sending requests on beha...
Applio 代码问题漏洞
Applio is an open source AI voice conversion tool from Spanish AI Hispano. A code issue vulnerability exists in Applio 3.2.7 and earlier versions, which stems from a server-side request forgery and file write issue in modeldownload.py, and could lead to an attacker sending requests on behalf of t...
PT-2025-11980 · Applio · Applio
Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: Applio is a voice conversion tool vulnerable to unsafe deserialization in infer.py. This issue can lead to remote code execution. A fix was available on the main branch of the Applio...