Vulnerabilidades em ltdrdata
2 resultadosCVE-2024-21574CRITICALThe issue stems from a missing validation of the pip field in a POST request sent to the /customnode/install endpoint used to install customEPSS 1.1%CVE-2024-21575CRITICALComfyUI-Impact-Pack is vulnerable to Path Traversal. The issue stems from missing validation of the `image.filename` field in a POST requestEPSS 1.0%