Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-0075

Malicious code in bioql PyPI...

6.9CVSS6.3AI score0.00252EPSS
Exploits0References3
PyPA
PyPA
added 2025/03/20 10:15 a.m.10 views

PYSEC-2025-92

An unauthenticated Denial of Service DoS vulnerability was identified in ChuanhuChatGPT version 20240918, which could be exploited by sending large data payloads using a multipart boundary. Although a patch was applied for CVE-2024-7807, the issue can still be exploited by sending data in groups...

7.5CVSS7.1AI score0.0067EPSS
Exploits2References1Affected Software1
SUSE CVE
SUSE CVE
added 2024/10/12 2:48 a.m.3 views

SUSE CVE-2024-47166

Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a one-level read path traversal in the /customcomponent endpoint. Attackers can exploit this flaw to access and leak source code from custom Gradio components by manipulating the file path in the...

5.3CVSS6.7AI score0.00421EPSS
Exploits0References3
PyPA
PyPA
added 2024/10/10 10:15 p.m.6 views

PYSEC-2024-215

Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to Server-Side Request Forgery SSRF in the /queue/join endpoint. Gradio’s asyncsaveurltocache function allows attackers to force the Gradio server to send HTTP requests to user-controlled URLs. This...

9.8CVSS6.8AI score0.00463EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/10/10 10:15 p.m.19 views

PYSEC-2024-213

Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to the bypass of directory traversal checks within the isinorequal function. This function, intended to check if a file resides within a given directory, can be bypassed with certain payloads that...

6.5CVSS6.7AI score0.00687EPSS
Exploits0References1
Rows per page
Query Builder