10 matches found
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
PYSEC-2024-276
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
PYSEC-2024-276
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-28425
CVE-2024-28425 affects greykite v1.0.0, with an arbitrary file upload vulnerability in load_obj at /templates/pickle_utils.py that allows arbitrary code execution. CVSSv3.1: 7.5 (Network, High impact, high complexity, user interaction required). Documents indicate the issue could be mitigated by ...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
PT-2024-22428 · Greykite · Greykite
Name of the Vulnerable Software and Affected Versions: greykite version 1.0.0 Description: The issue allows attackers to execute arbitrary code via uploading a crafted file, exploiting an arbitrary file upload vulnerability in the load obj function at /templates/pickle utils.py. Recommendations:...
Graykite Security Vulnerabilities
greykite is a software application. A flexible, intuitive and fast prediction library A security vulnerability exists in Greykite version v1.0.0, which stems from the loadobj function in /templates/pickleutils.py contains an arbitrary file upload vulnerability that allows an attacker to execute...