204 matches found
Google TensorFlow LoadAndRemapMatrix Denial of Service Vulnerability
Google TensorFlow is an end-to-end open source machine learning platform. A denial of service vulnerability exists in the implementation of tf.rawops.LoadAndRemapMatrix in Google TensorFlow. An attacker can exploit this vulnerability to cause a CHECK-failure denial of service...
TensorFlow Denial of Service Vulnerability (CNVD-2021-36542)
Google TensorFlow is an end-to-end open source machine learning platform. A denial of service vulnerability exists in TensorFlow. An attacker can exploit this vulnerability by passing empty images to tf.rawops.DrawBoundingBoxes to cause a CHECK failure denial of service...
Google TensorFlow divide-by-zero error vulnerability (CNVD-2021-37625)
Google TensorFlow is an end-to-end open source machine learning platform. A security vulnerability exists in the tf.rawops.FractionalAvgPool implementation in Google TensorFlow. An attacker can exploit the vulnerability to cause a denial of service...
Google TensorFlow Heap Out-of-Bounds Read Vulnerability
Google TensorFlow is an end-to-end open source machine learning platform. A heap out-of-bounds read vulnerability exists in the SplitV implementation in Google TensorFlow. No detailed vulnerability details are provided at this time...
Google TensorFlow divide-by-zero error vulnerability (CNVD-2021-36349)
Google TensorFlow is an end-to-end open source machine learning platform. A security vulnerability exists in the hash table lookup in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow null pointer dereference vulnerability (CNVD-2021-36337)
Google TensorFlow is an end-to-end open source machine learning platform. A null pointer dereference vulnerability exists in the Reshape operator in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow heap out-of-bounds read vulnerability (CNVD-2021-36336)
Google TensorFlow is an end-to-end open source machine learning platform. A heap out-of-bounds read vulnerability exists in the Minimum and Maximum operators in Google TensorFlow. No detailed vulnerability details are currently available...
Google TensorFlow Denial of Service Vulnerability (CNVD-2021-36332)
Google TensorFlow is an end-to-end open source machine learning platform. A security vulnerability exists in pooling in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow integer overflow vulnerability (CNVD-2021-36346)
Google TensorFlow is an end-to-end open source machine learning platform. An integer overflow vulnerability exists in concatentation in Google TensorFlow. No detailed vulnerability details are provided at this time...
CVE-2021-29539 Segfault in tf.raw_ops.ImmutableConst
TensorFlow is an end-to-end open source platform for machine learning. Calling tf.rawops.ImmutableConsthttps://www.tensorflow.org/apidocs/python/tf/rawops/ImmutableConst with a dtype of tf.resource or tf.variant results in a segfault in the implementation as code assumes that the tensor contents...
Moodle 3.6.1 Cross Site Scripting
Exploit Title: Moodle 3.6.1 - Persistent Cross-Site Scripting XSS Date: 04/2021 Exploit Author: farisv Vendor Homepage: https://moodle.org/ Software Link: https://download.moodle.org https://github.com/moodle/moodle/archive/refs/tags/v3.6.1.zip Version: Moodle 3.6.2, 3.5.4, 3.4.7, 3.1.16 CVE:...
Moodle 3.6.1 - Persistent Cross-Site Scripting Vulnerability
Exploit Title: Moodle 3.6.1 - Persistent Cross-Site Scripting XSS Exploit Author: farisv Vendor Homepage: https://moodle.org/ Software Link: https://download.moodle.org https://github.com/moodle/moodle/archive/refs/tags/v3.6.1.zip Version: Moodle 3.6.2, 3.5.4, 3.4.7, 3.1.16 CVE: CVE-2019-3810...
Moodle 3.6.1 - Persistent Cross-Site Scripting (XSS)
Exploit Title: Moodle 3.6.1 - Persistent Cross-Site Scripting XSS Date: 04/2021 Exploit Author: farisv Vendor Homepage: https://moodle.org/ Software Link: https://download.moodle.org https://github.com/moodle/moodle/archive/refs/tags/v3.6.1.zip Version: Moodle 3.6.2, 3.5.4, 3.4.7, 3.1.16 CVE:...
Ozon: DOM XSS в learning.ozon.ru
DOM XSS in learning.ozon.ru via return parameter routerback...
Moodle Information Disclosure Vulnerability (CNVD-2021-09497)
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. An information disclosure vulnerability exists in Moodle 3.10, 3.9 to 3.9.3, 3.8 to 3.8.6, which originates from the disclosure of grad...
Code Injection in tensorflow/tfx
Description TensorFlow Extended TFX is a Google-production-scale machine learning platform based on TensorFlow. It provides a configuration framework to express ML pipelines consisting of TFX components. Vulnerability Vulnerable to YAML deserialization attack caused by unsafe loading. Proof of...
Google TensorFlow Denial of Service Vulnerability (CNVD-2021-00093)
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a denial-of-service vulnerability that stems from the LSTM GRU layer receiving a zero-length input when using a CUDA backend, which results in a check failure. An...
Guangzhou Shuangqi Network Technology Co., Ltd. 5y Learning Platform Existing Override Vulnerability
Guangzhou Shuangqi Network Technology Co., Ltd. was founded in 2015, and its business scope includes vocational skills training, research and development of network technology; computer technology development and so on. Guangzhou Shuangqi Network Technology Co. 5y learning platform has an...
GUnet OpenEclass 1.7.3 E-learning platform - (month) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: GUnet OpenEclass 1.7.3 E-learning platform - 'month' SQL Injection Google Dork: intext:"© GUnet 2003-2007" Exploit Author: emaragkos Vendor Homepage: https://www.openeclass.org/ Software Link:...
GUnet OpenEclass 1.7.3 E-learning platform - 'month' SQL Injection
Exploit Title: GUnet OpenEclass 1.7.3 E-learning platform - 'month' SQL Injection Google Dork: intext:"© GUnet 2003-2007" Date: 2020-03-02 Exploit Author: emaragkos Vendor Homepage: https://www.openeclass.org/ Software Link: http://download.openeclass.org/files/1.7/eclass-1.7.3.tar.gz Version:...