Lucene search

K
Automatic1111Stable-diffusion-webui

5 matches found

CVE
CVE
added 2025/03/20 10:15 a.m.60 views

CVE-2024-11044

An open redirect vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This vulnerability can be exploited to conduct phishing attacks, distribute malware, and steal user cre...

6.1CVSS6.3AI score0.00938EPSS
CVE
CVE
added 2024/04/12 10:15 p.m.53 views

CVE-2024-31462

stable-diffusion-webui is a web interface for Stable Diffusion, implemented using Gradio library. Stable-diffusion-webui 1.7.0 is vulnerable to a limited file write affecting Windows systems. The create_ui method (Backup/Restore tab) in modules/ui_extensions.py takes user input into the config_save...

6.3CVSS6.8AI score0.0018EPSS
CVE
CVE
added 2025/03/20 10:15 a.m.35 views

CVE-2024-10935

automatic1111/stable-diffusion-webui version 1.10.0 contains a vulnerability where the server fails to handle excessive characters appended to the end of multipart boundaries. This flaw can be exploited by sending malformed multipart requests with arbitrary characters at the end of the boundary, le...

7.5CVSS7AI score0.00149EPSS
CVE
CVE
added 2025/03/20 10:15 a.m.33 views

CVE-2024-11045

A Cross-Site WebSocket Hijacking (CSWSH) vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows an attacker to clone a malicious server extension from a GitHub repository. The vulnerability arises from the lack of proper validation on WebSocket connections at ws://127.0.0.1:786...

9.6CVSS9AI score0.00087EPSS
CVE
CVE
added 2025/03/20 10:15 a.m.33 views

CVE-2024-12074

A Denial of Service (DoS) vulnerability was discovered in the file upload feature of automatic1111/stable-diffusion-webui version 1.10.0. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large filen...

6.5CVSS6.5AI score0.00507EPSS