Lucene search
K

72 matches found

vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.5 views

azureml-designer-recommender-modules (>=0.0.1 <=0.0.9), monk-cuda100 (=0.0.1) +9 more potentially affected by CVE-2020-15202 via tensorflow-gpu (>=2.0.0 <=2.0.1)

tensorflow-gpu PYPI version =2.0.0, =0.0.1, =0.0.9 - monk-cuda100 =0.0.1 - monk-cuda100-test =0.0.1 - monk-cuda101 =0.0.1 - monk-cuda101-test =0.0.1 - monk-keras-cuda100 =0.0.1 - monk-keras-cuda100-test =0.0.1 - monk-keras-cuda101 =0.0.1 - monk-keras-cuda101-test =0.0.1 - monk-keras-cuda102 =0.0....

9CVSS7.2AI score0.01235EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/01/28 9:32 p.m.4 views

azureml-designer-recommender-modules (=0.0.1), monk-cuda100 (=0.0.1) +9 more potentially affected by CVE-2020-5215 via tensorflow-gpu (=2.0.0)

tensorflow-gpu PYPI version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - azureml-designer-recommender-modules =0.0.1 - monk-cuda100 =0.0.1 - monk-cuda100-test =0.0.1 - monk-cuda101 =0.0.1 -...

7.5CVSS7.1AI score0.00581EPSS
Exploits1
OSV
OSV
added 2019/08/21 4:15 p.m.12 views

GHSA-3J5X-7CCF-PPGM Cross-site scripting in recommender-xblock

Recommender before 1.3.1 allows XSS. It is possible for a learner to craft a fake resource to recommender, that includes script which could possibly steal credentials from staff if they are lured into viewing the recommended resource...

6.1CVSS6.2AI score0.00848EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2019/08/21 4:15 p.m.29 views

Cross-site scripting in recommender-xblock

Recommender before 1.3.1 allows XSS. It is possible for a learner to craft a fake resource to recommender, that includes script which could possibly steal credentials from staff if they are lured into viewing the recommended resource...

6.1CVSS6.2AI score0.00848EPSS
Exploits0References5Affected Software1
CNVD
CNVD
added 2019/08/13 12:0 a.m.0 views

Recommender Cross-Site Scripting Vulnerability

Recommender is an information filtering system. The system recommends content to users by predicting their "ratings" or "preferences" for items. A cross-site scripting vulnerability exists in Recommender versions prior to 2018-07-18. The vulnerability stems from a lack of proper validation of...

6.1CVSS6.2AI score0.00848EPSS
Exploits0References1
OSV
OSV
added 2019/08/09 4:15 p.m.16 views

CVE-2018-20858

Recommender before 2018-07-18 allows XSS...

6.1CVSS6.3AI score
Exploits0References2
NVD
NVD
added 2019/08/09 4:15 p.m.14 views

CVE-2018-20858

Recommender before 2018-07-18 allows XSS...

6.1CVSS6.3AI score0.00848EPSS
Exploits0References2
PyPA
PyPA
added 2019/08/09 4:15 p.m.6 views

PYSEC-2019-219

Recommender before 2018-07-18 allows XSS...

6.1CVSS7AI score0.00848EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/08/09 4:15 p.m.21 views

PYSEC-2019-219

Recommender before 2018-07-18 allows XSS...

6.1CVSS2.8AI score0.00848EPSS
Exploits0References3
Prion
Prion
added 2019/08/09 4:15 p.m.12 views

Cross site scripting

Recommender before 2018-07-18 allows XSS...

4.3CVSS6.2AI score0.00848EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/09 3:34 p.m.18 views

CVE-2018-20858

Recommender before 2018-07-18 allows XSS...

6.3AI score0.00848EPSS
Exploits0References2
CVE
CVE
added 2019/08/09 3:34 p.m.54 views

CVE-2018-20858

CVE-2018-20858 affects the Recommender XBlock (edX Recommender) with a cross-site scripting vulnerability in versions prior to 2018-07-18. The issue stems from improper validation of client-side data, enabling XSS when a user views a crafted resource. Public advisories (GHSA) indicate this could ...

6.1CVSS6.2AI score0.00848EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder