Lucene search
K

4 matches found

Veracode
Veracode
added 2026/02/21 5:7 a.m.8 views

Keras Has A Local File Disclosure Via HDF5 External Storage During Keras Weight Loading

Summary TensorFlow / Keras continues to honor HDF5 “external storage” and "ExternalLink" features when loading weights. A malicious ".weights.h5" or a ".keras" archive embedding such weights can direct "loadweights" to read from an arbitrary readable filesystem path. The bytes pulled from that pa...

7.5CVSS6AI score0.00298EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:14 a.m.3 views

CVE-2024-30186

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BdThemes Prime Slider – Addons For Elementor allows Stored XSS.This issue affects Prime Slider – Addons For Elementor: from n/a through 3.13.1...

6.5CVSS8.6AI score0.00348EPSS
Exploits0References1
OSV
OSV
added 2024/09/16 2:15 a.m.1 views

UBUNTU-CVE-2024-46958

In Nextcloud Desktop Client 3.13.1 through 3.13.3 on Linux, synchronized files between the server and client may become world writable or world readable. This is fixed in 3.13.4...

9.1CVSS5.8AI score0.00555EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/01/06 12:0 a.m.5 views

Bludit 跨站脚本漏洞

Bludit is an open source lightweight blog content management system CMS. cross-site scripting vulnerability exists in Bludit 3.13.1 and prior versions, which stems from a lack of effective filtering and escaping in the About plugin of the software's login panel, leading to a stored cross-site...

5.4CVSS5.2AI score0.01438EPSS
Exploits0References3
Rows per page
Query Builder