4 matches found
PYSEC-2026-385 Remote code execution in pytorch lightning
A remote code execution RCE vulnerability exists in the lightning-ai/pytorch-lightning library version 2.2.1 due to improper handling of deserialized user input and mismanagement of dunder attributes by the deepdiff library. The library uses deepdiff.Delta objects to modify application state base...
Pytorch-Lightning Security Vulnerability
Pytorch-Lightning is an open source lightweight PyTorch wrapper. It is used for high performance Ai research. A security vulnerability exists in Pytorch-Lightning version 2.2.1, which stems from mishandling of deserialized user input and mismanagement of the dunder attribute, leading to a remote...
codeception 代码问题漏洞
codeception is an open source PHP full-stack testing framework. A security vulnerability exists in codeception, which stems from a problem with codeception from 4.0.0 and before 4.1.22 and before 3.1.3. The RunProcess class can be used as a gadget to run arbitrary commands on a system that can...
CVE-2019-13292
WebERP 4.15 is affected by CVE-2019-13292. Payments.php accepts payment data in base64, decodes it, deserializes it, and then directly inserts that data into a SQL query without sanitization, exposing a SQL injection vulnerability. The issue is documented across multiple sources (Red Hat, NVD, os...