72 matches found
azureml-designer-recommender-modules (>=0.0.1 <=0.0.9), monk-cuda100 (=0.0.1) +9 more potentially affected by CVE-2020-15202 via tensorflow-gpu (>=2.0.0 <=2.0.1)
tensorflow-gpu PYPI version =2.0.0, =0.0.1, =0.0.9 - monk-cuda100 =0.0.1 - monk-cuda100-test =0.0.1 - monk-cuda101 =0.0.1 - monk-cuda101-test =0.0.1 - monk-keras-cuda100 =0.0.1 - monk-keras-cuda100-test =0.0.1 - monk-keras-cuda101 =0.0.1 - monk-keras-cuda101-test =0.0.1 - monk-keras-cuda102 =0.0....
azureml-designer-recommender-modules (=0.0.1), monk-cuda100 (=0.0.1) +9 more potentially affected by CVE-2020-5215 via tensorflow-gpu (=2.0.0)
tensorflow-gpu PYPI version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - azureml-designer-recommender-modules =0.0.1 - monk-cuda100 =0.0.1 - monk-cuda100-test =0.0.1 - monk-cuda101 =0.0.1 -...
GHSA-3J5X-7CCF-PPGM Cross-site scripting in recommender-xblock
Recommender before 1.3.1 allows XSS. It is possible for a learner to craft a fake resource to recommender, that includes script which could possibly steal credentials from staff if they are lured into viewing the recommended resource...
Cross-site scripting in recommender-xblock
Recommender before 1.3.1 allows XSS. It is possible for a learner to craft a fake resource to recommender, that includes script which could possibly steal credentials from staff if they are lured into viewing the recommended resource...
Recommender Cross-Site Scripting Vulnerability
Recommender is an information filtering system. The system recommends content to users by predicting their "ratings" or "preferences" for items. A cross-site scripting vulnerability exists in Recommender versions prior to 2018-07-18. The vulnerability stems from a lack of proper validation of...
CVE-2018-20858
Recommender before 2018-07-18 allows XSS...
CVE-2018-20858
Recommender before 2018-07-18 allows XSS...
PYSEC-2019-219
Recommender before 2018-07-18 allows XSS...
PYSEC-2019-219
Recommender before 2018-07-18 allows XSS...
Cross site scripting
Recommender before 2018-07-18 allows XSS...
CVE-2018-20858
Recommender before 2018-07-18 allows XSS...
CVE-2018-20858
CVE-2018-20858 affects the Recommender XBlock (edX Recommender) with a cross-site scripting vulnerability in versions prior to 2018-07-18. The issue stems from improper validation of client-side data, enabling XSS when a user views a crafted resource. Public advisories (GHSA) indicate this could ...