PT-2024-12757 · Unknown · Paddlepaddle

Name of the Vulnerable Software and Affected Versions: PaddlePaddle versions prior to 2.6.0 Description: This issue can cause a runtime crash and a denial of service. It is related to a flaw in the paddle.linalg.matrix rank function. Recommendations: For versions prior to 2.6.0, update to version...

PT-2024-14512 · Unknown · Paddlepaddle

Name of the Vulnerable Software and Affected Versions: PaddlePaddle versions prior to 2.6.0 Description: The issue is related to a flaw in the paddle.topk function, which can cause a runtime crash and a denial of service. Recommendations: For versions prior to 2.6.0, update to version 2.6.0 or...

PT-2022-13596 · Chatwoot · Chatwoot

Name of the Vulnerable Software and Affected Versions: chatwoot/chatwoot versions prior to 2.6.0 Description: The issue concerns insecure storage of sensitive information in the GitHub repository chatwoot/chatwoot. Recommendations: For versions prior to 2.6.0, update to version 2.6.0 or later to...

PT-2020-14758 · Gnome +1 · Gnome Balsa +1

Name of the Vulnerable Software and Affected Versions: GNOME Balsa versions prior to 2.6.0 Description: A malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imap mbox connect in libbalsa/imap/imap-handle.c. This...

WordPress Podlove Podcast Publisher plugin <=2.5.3 - SQL injection (SQLi) vulnerability

SQL injection SQLi vulnerability found by Neven Biruski in WordPress Podlove Podcast Publisher plugin version 2.5.3 and earlier version. This vulnerability allows registered users to get access to the database even if they don't have full administrator rights. Moreover, Cross Site request forgery...