Vulnerabilities > Zanllp

DATE	CVE	VULNERABILITY TITLE	RISK
2023-10-22	CVE-2023-46315	Unspecified vulnerability in Zanllp Stable Diffusion Webui Infinite Image Browsing The zanllp sd-webui-infinite-image-browsing (aka Infinite Image Browsing) extension before 977815a for stable-diffusion-webui (aka Stable Diffusion web UI), if Gradio authentication is enabled without secret key configuration, allows remote attackers to read any local file via /file?path= in the URL, as demonstrated by reading /proc/self/environ to discover credentials. network low complexity zanllp	7.5

Vulnerabilities > Zanllp {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Zanllp"}]}