5.4
CVE-2024-12870 - Stored Cross-site Scripting (XSS) in infiniflow/ragflow
A stored cross-site scripting (XSS) vulnerability exists in infiniflow/ragflow, affecting the latest commit on the main branch (cec2080). The vulnerability allows an attacker to upload HTML/XML files that can host arbitrary JavaScript payloads. These files are served with the 'application/xml' contβ¦
5.4
CVE-2025-0281 - Stored Cross-Site Scripting (XSS) in lunary-ai/lunary
A stored cross-site scripting (XSS) vulnerability exists in lunary-ai/lunary versions 1.6.7 and earlier. An attacker can inject malicious JavaScript into the SAML IdP XML metadata, which is used to generate the SAML login redirect URL. This URL is then set as the value of `window.location.href` witβ¦
4.6
CVE-2024-10359 - Mass Assignment in Preset Creation Allows User ID Manipulation in danny-avila/librechat
In danny-avila/librechat version v0.7.5-rc2, a vulnerability exists in the preset creation functionality where a user can manipulate the user ID field through mass assignment. This allows an attacker to inject a different user ID into the preset object, causing the preset to appear in the UI of anoβ¦
6.5
CVE-2024-9365 - Cross-Site Request Forgery (CSRF) in polyaxon/polyaxon
A Cross-Site Request Forgery (CSRF) vulnerability in polyaxon/polyaxon v2.4.0 allows attackers to perform unauthorized actions in the context of the victim's browser. This includes creating projects, model versions, and artifact versions, or changing settings. The impact of this vulnerability incluβ¦
8.8
CVE-2024-12389 - Path Traversal in binary-husky/gpt_academic
A path traversal vulnerability exists in binary-husky/gpt_academic version git 310122f. The application supports the extraction of user-provided 7z files without proper validation. The Python py7zr package used for extraction does not guarantee that files will remain within the intended extraction β¦
7.5
CVE-2024-10624 - Regular Expression Denial of Service (ReDoS) in gradio-app/gradio
A Regular Expression Denial of Service (ReDoS) vulnerability exists in the gradio-app/gradio repository, affecting the gr.Datetime component. The affected version is git commit 98cbcae. The vulnerability arises from the use of a regular expression `^(?:\s*now\s*(?:-\s*(\d+)\s*([dmhs]))?)?\s*$` to pβ¦
7.5
CVE-2025-0187 - Denial of Service (DoS) by Sending Large Filename at File Upload Endpoint in gradio-app/gradio
A Denial of Service (DoS) vulnerability was discovered in the file upload feature of gradio-app/gradio version 0.39.1. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large filename, the server becβ¦
8.1
CVE-2024-12776 - Authentication Bypass in langgenius/dify
In langgenius/dify v0.10.1, the `/forgot-password/resets` endpoint does not verify the password reset code, allowing an attacker to reset the password of any user, including administrators. This vulnerability can lead to a complete compromise of the application.
7.5
CVE-2024-9229 - Denial of Service (DoS) via Multipart Boundary in stangirard/quivr
A Denial of Service (DoS) vulnerability in the file upload feature of stangirard/quivr v0.0.298 allows unauthenticated attackers to cause excessive resource consumption by appending characters to the end of a multipart boundary in an HTTP request. This leads to the server continuously processing eaβ¦
7.2
CVE-2024-10252 - Code Injection in langgenius/dify
A vulnerability in langgenius/dify versions <=v0.9.1 allows for code injection via internal SSRF requests in the Dify sandbox service. This vulnerability enables an attacker to execute arbitrary Python code with root privileges within the sandbox environment, potentially leading to the deletion of β¦