2 matches found
PT-2024-19019 · Zenml · Zenml
Name of the Vulnerable Software and Affected Versions: zenml-io/zenml versions 0.55.3 through 0.55.3 Description: A stored Cross-Site Scripting XSS vulnerability was identified in the zenml-io/zenml repository, specifically within the logo url field. By injecting malicious payloads into this fiel...
ZenML Cross-Site Scripting Vulnerability
ZenML is an extensible open source MLOps framework for creating portable, production-ready machine learning pipelines. A cross-site scripting vulnerability exists in ZenML version 0.55.3, which stems from a stored cross-site scripting XSS vulnerability in the logourl field that allows an attacker...