Davinci@0.3.0 Security Vulnerabilities and Issues — Davinci@0.3.0 CVE List

Lucene search

Davinci ProjectDavinci0.3.0

3 matches found

cve•added 2023/02/27 1:15 p.m.•34 views

CVE-2023-24206

Davinci v0.3.0-rc was discovered to contain a SQL injection vulnerability via the copyDisplay function.

9.8CVSS9.8AI score0.00061EPSS

cve•added 2023/05/17 1:15 a.m.•33 views

CVE-2023-31847

In davinci 0.3.0-rc after logging in, the user can connect to the mysql malicious server by controlling the data source to read arbitrary files on the client side.

6.5CVSS6.4AI score0.0008EPSS

cve•added 2023/05/17 12:15 a.m.•28 views

CVE-2023-31848

davinci 0.3.0-rc is vulnerable to Server-side request forgery (SSRF).

8.8CVSS8.7AI score0.00065EPSS