4 matches found
PT-2026-53923
Name of the Vulnerable Software and Affected Versions Ocelot versions prior to 24.1.1 Description A security control bypass exists in the handling of WebSocket upgrade requests. The issue stems from a logic flaw in the OcelotPipelineExtensions.cs file, where a MapWhen branch configured for...
EUVD-2024-0994
Malicious code in bioql PyPI...
Gradio < 4.18.0 Vulnerability - CVE-2024-2206
The version of Gradio installed on the remote host is prior to 4.18.0. It is, therefore, affected by an SSRF vulnerability exists in the gradio-app/gradio due to insufficient validation of user-supplied URLs in the /proxy route. Attackers can exploit this vulnerability by manipulating the...
Multiple EServ bugs
Web directory listing, unauthorized FTP/HTTP proxying...