1864 matches found
WordPress Layers plugin <= 0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zaim in WordPress Plugin Layers versions = 0.5...
WordPress plugin Layers 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-39930
Name of the Vulnerable Software and Affected Versions Layers plugin for WordPress versions prior to 0.6 Description The Layers plugin for WordPress is susceptible to Stored Cross-Site Scripting through the 'webcam' shortcode. This is due to inadequate input sanitization and output escaping of...
CVE-2025-55559
An issue was discovered TensorFlow v2.18.0. A Denial of Service DoS occurs when padding is set to 'valid' in tf.keras.layers.Conv2D...
PYSEC-2025-208
A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled by Inductor, leading to a Denial of Service DoS...
Inefficient CPU Computation
Overview Affected versions of this package are vulnerable to Inefficient CPU Computation due to inconsistent behavior in the bernoullip function when used in RNG nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d. An attacker can cause unintended or incorrect dropout behavior in neural network layers b...
Inefficient CPU Computation
Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Inefficient CPU Computation due to inconsistent behavior in the bernoullip function when used in RNG nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d. An...
CVE-2025-46153
PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...
CVE-2025-46153
CVE-2025-46153 affects PyTorch before 3.7.0, where a bernoulli_p decompos e function in decompositions.py is not fully consistent with the eager CPU implementation. This inconsistency negatively affects nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d when fallback_random=True. Connected documents pr...
PT-2025-38517
Name of the Vulnerable Software and Affected Versions Keras affected versions not specified Description The Model.load model method can be exploited to achieve arbitrary code execution, even when safe mode is enabled. This is possible by creating a specially crafted .h5 or .hdf5 model archive tha...
DEBIAN-CVE-2023-53286
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...
UBUNTU-CVE-2023-53286
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...
CVE-2023-53286 RDMA/mlx5: Return the firmware result upon destroying QP/RQ
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...
CVE-2023-53286 RDMA/mlx5: Return the firmware result upon destroying QP/RQ
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...
CVE-2023-53286
CVE-2023-53286 affects the Linux kernel’s RDMA mlx5 path. The issue is: when destroying QP/RQ, the firmware destruction result was ignored, so upper layers could proceed as if destruction succeeded, potentially triggering kernel WARNs. The description specifies that the kernel now returns the fir...
CVE-2023-53286 RDMA/mlx5: Return the firmware result upon destroying QP/RQ
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...
[SECURITY] Fedora 43 Update: buildah-1.41.4-1.fc43
The buildah package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a ne...
[SECURITY] Fedora 41 Update: buildah-1.41.4-1.fc41
The buildah package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a ne...
MAL-2025-44978 Malicious code in layers-foreign-mainly (npm)
The package layers-foreign-mainly was found to contain malicious code...
Malicious code in layers-foreign-mainly (npm)
The package layers-foreign-mainly was found to contain malicious code...