Lucene search
+L

1864 matches found

patchstack
patchstack
added 2025/09/30 12:39 a.m.7 views

WordPress Layers plugin <= 0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zaim in WordPress Plugin Layers versions = 0.5...

6.4CVSS5.5AI score0.00223EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2025/09/30 12:0 a.m.5 views

WordPress plugin Layers 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS5.8AI score0.00223EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/09/30 12:0 a.m.10 views

PT-2025-39930

Name of the Vulnerable Software and Affected Versions Layers plugin for WordPress versions prior to 0.6 Description The Layers plugin for WordPress is susceptible to Stored Cross-Site Scripting through the 'webcam' shortcode. This is due to inadequate input sanitization and output escaping of...

6.4CVSS5.4AI score0.00223EPSS
Exploits0References6
nvd
nvd
added 2025/09/25 4:15 p.m.8 views

CVE-2025-55559

An issue was discovered TensorFlow v2.18.0. A Denial of Service DoS occurs when padding is set to 'valid' in tf.keras.layers.Conv2D...

7.5CVSS0.00204EPSS
Exploits1References2
pypa
pypa
added 2025/09/25 4:15 p.m.9 views

PYSEC-2025-208

A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled by Inductor, leading to a Denial of Service DoS...

7.5CVSS6AI score0.0042EPSS
Exploits0References3Affected Software1
snyk
snyk
added 2025/09/25 2:44 p.m.2 views

Inefficient CPU Computation

Overview Affected versions of this package are vulnerable to Inefficient CPU Computation due to inconsistent behavior in the bernoullip function when used in RNG nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d. An attacker can cause unintended or incorrect dropout behavior in neural network layers b...

5.3CVSS7AI score0.00391EPSS
Exploits0References2
snyk
snyk
added 2025/09/25 2:44 p.m.3 views

Inefficient CPU Computation

Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Inefficient CPU Computation due to inconsistent behavior in the bernoullip function when used in RNG nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d. An...

5.3CVSS6.9AI score0.00391EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/09/25 12:0 a.m.3 views

CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

6.6AI score0.00391EPSS
Exploits0References5
cve
cve
added 2025/09/25 12:0 a.m.32 views

CVE-2025-46153

CVE-2025-46153 affects PyTorch before 3.7.0, where a bernoulli_p decompos e function in decompositions.py is not fully consistent with the eager CPU implementation. This inconsistency negatively affects nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d when fallback_random=True. Connected documents pr...

5.3CVSS6.6AI score0.00391EPSS
Exploits0References5Affected Software1
ptsecurity
ptsecurity
added 2025/09/19 12:0 a.m.7 views

PT-2025-38517

Name of the Vulnerable Software and Affected Versions Keras affected versions not specified Description The Model.load model method can be exploited to achieve arbitrary code execution, even when safe mode is enabled. This is possible by creating a specially crafted .h5 or .hdf5 model archive tha...

7.3CVSS7AI score0.00205EPSS
Exploits1References19
osv
osv
added 2025/09/16 8:15 a.m.6 views

DEBIAN-CVE-2023-53286

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...

7.8CVSS5.6AI score0.00142EPSS
Exploits0References1
osv
osv
added 2025/09/16 8:15 a.m.10 views

UBUNTU-CVE-2023-53286

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...

7.8CVSS5.9AI score0.00142EPSS
Exploits0References8
cvelist
cvelist
added 2025/09/16 8:11 a.m.10 views

CVE-2023-53286 RDMA/mlx5: Return the firmware result upon destroying QP/RQ

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...

0.00142EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/09/16 8:11 a.m.5 views

CVE-2023-53286 RDMA/mlx5: Return the firmware result upon destroying QP/RQ

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...

5.9AI score0.00142EPSS
Exploits0References5
cve
cve
added 2025/09/16 8:11 a.m.27 views

CVE-2023-53286

CVE-2023-53286 affects the Linux kernel’s RDMA mlx5 path. The issue is: when destroying QP/RQ, the firmware destruction result was ignored, so upper layers could proceed as if destruction succeeded, potentially triggering kernel WARNs. The description specifies that the kernel now returns the fir...

7.8CVSS5.9AI score0.00142EPSS
Exploits0References5Affected Software1
osv
osv
added 2025/09/16 8:11 a.m.10 views

CVE-2023-53286 RDMA/mlx5: Return the firmware result upon destroying QP/RQ

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Return the firmware result upon destroying QP/RQ Previously when destroying a QP/RQ, the result of the firmware destruction function was ignored and upper layers weren't informed about the failure. Which in turn could...

7.8CVSS4.7AI score0.00142EPSS
Exploits0References8
fedora
fedora
added 2025/09/10 3:8 a.m.7 views

[SECURITY] Fedora 43 Update: buildah-1.41.4-1.fc43

The buildah package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a ne...

8.1CVSS6.7AI score0.01008EPSS
Exploits0
fedora
fedora
added 2025/09/09 1:41 a.m.7 views

[SECURITY] Fedora 41 Update: buildah-1.41.4-1.fc41

The buildah package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a ne...

8.1CVSS6.7AI score0.01008EPSS
Exploits0
osv
osv
added 2025/09/05 5:10 p.m.1 views

MAL-2025-44978 Malicious code in layers-foreign-mainly (npm)

The package layers-foreign-mainly was found to contain malicious code...

7AI score
Exploits0
ossf
ossf
added 2025/09/05 5:10 p.m.2 views

Malicious code in layers-foreign-mainly (npm)

The package layers-foreign-mainly was found to contain malicious code...

7AI score
Exploits0
Rows per page
Query Builder