Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
D-Tale affected by Remote Code Execution through redis/shelf storage
Vulnerability Description
D-Tale is the combination of a Flask back-end and a React front-end to view & analyze Pandas data structures. Prior to 3.22.0, users hosting D-Tale publicly while using a redis or shelf storage layer could be vulnerable to remote code execution allowing attackers to run malicious code on the server. This vulnerability is fixed in 3.22.0.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Man D-Tale 跨站脚本漏洞
Vulnerability Description
Man D-Tale是Man公司的一个 pandas 数据结构的可视化工具。 Man D-Tale 3.22.0之前版本存在跨站脚本漏洞,该漏洞源于使用redis或shelf存储层时可能受到远程代码执行攻击。
CVSS Information
N/A
Vulnerability Type
N/A