CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/03/20 10:15 a.m.•4 views

PYSEC-2025-99

6.5CVSS6.6AI score0.00544EPSS

NVD•added 2025/03/20 10:15 a.m.•9 views

CVE-2025-0187

A Denial of Service DoS vulnerability was discovered in the file upload feature of gradio-app/gradio version 0.39.1. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large filename, the server...

7.5CVSS0.00681EPSS

OSV•added 2025/03/20 10:15 a.m.•4 views

CVE-2025-0191

6.5CVSS6.3AI score

OSV•added 2025/03/20 10:15 a.m.•5 views

CVE-2025-0187

7.5CVSS7.5AI score

NVD•added 2025/03/20 10:15 a.m.•4 views

CVE-2024-12864

A Denial of Service DoS vulnerability was discovered in the file upload feature of netease-youdao/qanything version v2.0.0. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. An attacker can exploit this vulnerability by sending a large...

7.5CVSS0.00811EPSS

OSV•added 2025/03/20 10:15 a.m.•4 views

CVE-2024-12864

7.5CVSS6.9AI score

7.5CVSS5.8AI score0.00811EPSS

CVE-2024-12070

A Denial of Service DoS vulnerability exists in the file upload feature of haotian-liu/llava, specifically in Release v1.2.0 LLaVA-1.6. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large...

6.5CVSS5.8AI score0.00747EPSS

CVE-2024-12074

A Denial of Service DoS vulnerability was discovered in the file upload feature of automatic1111/stable-diffusion-webui version 1.10.0. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large...

NVD•added 2025/03/20 10:15 a.m.•4 views

CVE-2024-12074

6.5CVSS0.00747EPSS

NVD•added 2025/03/20 10:15 a.m.•8 views

CVE-2024-12063

A Denial of Service DoS vulnerability exists in the file upload feature of imartinez/privategpt version v0.6.2. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. An attacker can exploit this by sending a payload with an excessively large...

7.5CVSS0.00727EPSS

CVE-2024-12063

7.5CVSS7.5AI score

NVD•added 2025/03/20 10:15 a.m.•5 views

CVE-2024-11033

A Denial of Service DoS vulnerability exists in the file upload feature of binary-husky/gptacademic version 3.83. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. An attacker can exploit this vulnerability by sending a payload with an...

6.5CVSS0.00671EPSS

CVE-2024-11033

6.5CVSS6.4AI score

NVD•added 2025/03/20 10:15 a.m.•6 views

CVE-2024-10912

7.5CVSS0.00588EPSS

OSV•added 2025/03/20 10:15 a.m.•1 views

CVE-2024-10912

7.5CVSS5.8AI score0.00588EPSS

OSV•added 2025/03/20 10:15 a.m.•3 views

CVE-2024-10833

eosphoros-ai/db-gpt version 0.6.0 is vulnerable to an arbitrary file write through the knowledge API. The endpoint for uploading files as 'knowledge' is susceptible to absolute path traversal, allowing attackers to write files to arbitrary locations on the target server. This vulnerability arises...

9.1CVSS7.2AI score

Vulnrichment•added 2025/03/20 10:11 a.m.•6 views

CVE-2024-12063 Denial of Service in imartinez/privategpt

7.5CVSS7.5AI score0.00727EPSS