Lucene search
+L

6 matches found

EUVD
EUVD
added 2026/06/05 8:35 p.m.15 views

EUVD-2026-33407

Shopper: Authorization bypass and RBAC privilege escalation in team settings...

9.9CVSS5.4AI score0.00321EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/05 7:44 p.m.11 views

CVE-2026-39419

MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, an authenticated user can bypass sandbox result validation and spoof tool execution results by exploiting Python frame introspection to read the wrapper's UUID from its bytecode constants, then writing a forged resu...

3.1CVSS5.6AI score0.00222EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:26 p.m.11 views

CVE-2026-39425

MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross-Site Scripting XSS vulnerability that allows authenticated users to inject arbitrary HTML and JavaScript into the Application prologue Opening Remarks field by wrapping malicious payloads in tags...

5.4CVSS5.7AI score0.0018EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/07 9:8 p.m.8 views

WordPress WP SEO Structured Data Schema plugin <= 2.7.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via Plugin Settings vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Plugin Settings vulnerability discovered by Jorgson in WordPress Plugin WP SEO Structured Data Schema versions = 2.7.11...

6.4CVSS6.3AI score0.00232EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/02/10 12:21 a.m.5 views

GHSA-GCVH-66FF-4MWM `CHECK`-failures in Tensorflow

Impact The implementation of MapStage is vulnerable a CHECK-fail if the key tensor is not a scalar: python import tensorflow as tf import numpy as np tf.rawops.MapStage key = tf.constantvalue=4, shape= 1,2, dtype=tf.int64, indices = np.array6, values = np.array-60, dtypes = tf.int64, capacity=0,...

7.1CVSS6.5AI score0.00783EPSS
Exploits1References7
Debian CVE
Debian CVE
added 2022/02/04 10:32 p.m.6 views

CVE-2022-23565

Tensorflow is an Open Source Machine Learning Framework. An attacker can trigger denial of service via assertion failure by altering a SavedModel on disk such that AttrDefs of some operation are duplicated. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on...

6.5CVSS6.9AI score0.00469EPSS
Exploits0
Rows per page
Query Builder