8 matches found
EUVD-2025-31093
Malicious code in bioql PyPI...
GHSA-8X9J-2P8R-7XC6 ml-logger has path traversal in the file argument
A vulnerability was identified in geyang ml-logger 0.10.36 and prior. Affected by this vulnerability is the function loghandler of the file mllogger/server.py. Such manipulation of the argument File leads to path traversal. It is possible to launch the attack remotely. The exploit is publicly...
CVE-2025-10950
A vulnerability was determined in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. Affected is the function loghandler of the file mllogger/server.py of the component Ping Handler. This manipulation of the argument data causes deserialization. It is possible to initiate the attack...
CVE-2025-10951 geyang ml-logger server.py log_handler path traversal
A vulnerability was identified in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. Affected by this vulnerability is the function loghandler of the file mllogger/server.py. Such manipulation of the argument File leads to path traversal. It is possible to launch the attack remotely...
CVE-2025-10951
CVE-2025-10951 targets geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. The vulnerability resides in log_handler (ml_logger/server.py) where manipulation of the File argument enables path traversal. It is described as exploitable remotely and a public exploit exists. Connected sou...
CVE-2025-10950 geyang ml-logger Ping server.py log_handler deserialization
A vulnerability was determined in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. Affected is the function loghandler of the file mllogger/server.py of the component Ping Handler. This manipulation of the argument data causes deserialization. It is possible to initiate the attack...
CVE-2025-10950 geyang ml-logger Ping server.py log_handler deserialization
A vulnerability was determined in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. Affected is the function loghandler of the file mllogger/server.py of the component Ping Handler. This manipulation of the argument data causes deserialization. It is possible to initiate the attack...
CVE-2025-10950
ml-logger (geyang) Ping Handler deserialization vulnerability in ml_logger/server.py log_handler; remote attacker could deserialize crafted data. Exploitation is publicly disclosed. Affected versions are not specified due to rolling releases; no fixed version is publicly available in the provided...