PrestaShop CoinGate Plugin 安全漏洞

PrestaShop CoinGate Plugin is an open source plugin for CoinGate. A security vulnerability exists in PrestaShop CoinGate Plugin 1.2.7 and earlier versions, which stems from the postProcess function in the file modules/coingate/controllers/front/callback.php that can cause business logic errors...

PT-2024-26284 · Channable · Channable

Name of the Vulnerable Software and Affected Versions: Channable for PrestaShop versions up to 3.2.1 Description: The issue allows a guest to perform SQL injection via the ChannableFeedModuleFrontController::postProcess function. Recommendations: For versions up to 3.2.1, consider disabling the...

PYSEC-2024-184

A local file inclusion vulnerability exists in the JSON component of gradio-app/gradio version 4.25. The vulnerability arises from improper input validation in the postprocess function within gradio/components/jsoncomponent.py, where a user-controlled string is parsed as JSON. If the parsed JSON...

CVE-2024-4941

A local file inclusion vulnerability exists in the JSON component of gradio-app/gradio version 4.25. The vulnerability arises from improper input validation in the postprocess function within gradio/components/jsoncomponent.py, where a user-controlled string is parsed as JSON. If the parsed JSON...

CVE-2024-4941

The CVE-2024-4941 issue affects gradio-app/gradio v4.25, specifically the JSON component. The root cause is improper input validation in gradio/components/json_component.py: a user-controlled string is parsed as JSON in postprocess(), and if a dict contains a path key, processing_utils.move_files...

Gradio Input Validation Error Vulnerability

Gradio is an open source Python library that is a way to demonstrate machine learning models through a friendly web interface. An input validation error vulnerability exists in Gradio version 4.25, which stems from improper input validation in the postprocess function, where the path field can be...