wandb@0.4.25 vulnerabilities
A CLI and library for interacting with the Weights & Biases API.
-
latest version
0.17.1
-
first published
7 years ago
-
latest version published
9 days ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the wandb package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
wandb is an A CLI and library for interacting with the Weights and Biases API. Affected versions of this package are vulnerable to Server-Side Request Forgery (SSRF) due to improper handling of HTTP 302 redirects. An attacker can access internal HTTP(s) servers by exploiting this vulnerability through the 'User settings -> Webhooks' function. How to fix Server-Side Request Forgery (SSRF)? There is no fixed version for |
[0,)
|
wandb is an A CLI and library for interacting with the Weights and Biases API. Affected versions of this package are vulnerable to Race Condition as a result of using the How to fix Race Condition? Upgrade |
[,0.12.12)
|