PT-2025-29676 · Unknown · Gpt-Sovits-Webui
Name of the Vulnerable Software and Affected Versions: GPT-SoVITS-WebUI versions 20250228v3 and prior Description: GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. A command injection issue exists in the webui.py open denoise function. The denoise inp dir and denoise opt dir...