haozhe

3 exploits Active since Oct 2023
CVE-2023-41619 WRITEUP MEDIUM WRITEUP
Emlog Pro v2.1.14 - XSS
Emlog Pro v2.1.14 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/article.php?action=write.
CVSS 6.1
CVE-2023-41621 WRITEUP MEDIUM WRITEUP
Emlog Pro <2.1.14 - XSS
A Cross Site Scripting (XSS) vulnerability was discovered in Emlog Pro v2.1.14 via the component /admin/store.php.
CVSS 6.1
CVE-2023-44467 WRITEUP CRITICAL WRITEUP
LangChain <0.0.306 - Command Injection
langchain_experimental (aka LangChain Experimental) in LangChain before 0.0.306 allows an attacker to bypass the CVE-2023-36258 fix and execute arbitrary code via __import__ in Python code, which is not prohibited by pal_chain/base.py.
CVSS 9.8