2 matches found
PT-2024-19019 · Zenml · Zenml
Name of the Vulnerable Software and Affected Versions: zenml-io/zenml versions 0.55.3 through 0.55.3 Description: A stored Cross-Site Scripting XSS vulnerability was identified in the zenml-io/zenml repository, specifically within the logo url field. By injecting malicious payloads into this fiel...
PT-2024-18648 · Zenml Io · Zenml
Name of the Vulnerable Software and Affected Versions: zenml-io/zenml versions up to and including 0.55.3 Description: A race condition issue exists, allowing for the creation of multiple users with the same username when requests are sent in parallel. This is due to insufficient handling of...