5 matches found
CVE-2025-27774
creationtimestamp| type| source ---|---|--- 2025-03-19 21:18:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8165 2025-03-19 23:00:35+00:00| seen| https://t.me/cvedetector/20682 2025-03-20 00:49:04+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkri2jkrb...
CVE-2025-27774
Applio is a voice conversion tool. Versions 3.2.7 and prior are vulnerable to server-side request forgery SSRF and file write in modeldownload.py line 156 in 3.2.7. The blind SSRF allows for sending requests on behalf of Applio server and can be leveraged to probe for other vulnerabilities on the...
CVE-2025-27774 Applio allows SSRF and file write in model_download.py
Applio is a voice conversion tool. Versions 3.2.7 and prior are vulnerable to server-side request forgery SSRF and file write in modeldownload.py line 156 in 3.2.7. The blind SSRF allows for sending requests on behalf of Applio server and can be leveraged to probe for other vulnerabilities on the...
CVE-2025-27774
CVE-2025-27774 affects Applio (versions 3.2.7 and prior) with a server-side request forgery (SSRF) vulnerability and a file write flaw in model_download.py. The blind SSRF lets the Applio server issue requests on its own behalf to internal networks and back-end systems reachable from the server, ...
CVE-2025-27774 Applio allows SSRF and file write in model_download.py
Applio is a voice conversion tool. Versions 3.2.7 and prior are vulnerable to server-side request forgery SSRF and file write in modeldownload.py line 156 in 3.2.7. The blind SSRF allows for sending requests on behalf of Applio server and can be leveraged to probe for other vulnerabilities on the...