JFrog Security Research
< Back
Software Vulnerabilities
Last Updated On 16 Apr, 2024
- JFSA-2024-001028816lollms-webui exposed endpoints DoSCVE-2024-1873highDiscovered ByNaveh RacovskyPublished on 16 Apr, 2024
- JFSA-2024-001028813lollms-webui SQLi DoSCVE-2024-1601highDiscovered ByNaveh RacovskyPublished on 15 Apr, 2024
- JFSA-2024-001028815lollms-webui exposued endpoints DoSCVE-2024-1646highDiscovered ByNaveh RacovskyPublished on 15 Apr, 2024
- JFSA-2024-001028813lollms-webui resource consumption DoSCVE-2024-1569mediumDiscovered ByNaveh RacovskyPublished on 15 Apr, 2024
- JFSA-2024-000631930MLflow untrusted recipe XSSCVE-2024-27132HighDiscovered ByUriya YavnieliPublished on 23 Feb, 2024
- JFSA-2024-000631932MLflow untrusted dataset XSSCVE-2024-27133HighDiscovered ByUriya YavnieliPublished on 23 Feb, 2024
- JFSA-2024-000639017MLflow spark_udf localprivCVE-2024-27134HighDiscovered ByUriya YavnieliPublished on 23 Feb, 2024
- JFSA-2024-000510085VectorAdmin domain restriction authentication bypassCVE-2024-0879mediumDiscovered ByNatan NehoraiPublished on 25 Jan, 2024
- AnythingLLM Unhandled Exception DoSCVE-2024-22422highDiscovered ByNatan NehoraiPublished on 22 Jan, 2024
- CouchDB Session Hijacking LocalPrivCVE-2023-45725mediumDiscovered ByNatan NehoraiPublished on 14 Dec, 2023