Browse all 6 CVE security advisories affecting bmaltais. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Bmaltais develops security tools and research, focusing on vulnerability discovery and exploitation techniques. Historically, their work has commonly involved remote code execution, cross-site scripting, and privilege escalation vulnerabilities across various platforms. Security researchers note bmaltais's contributions to understanding complex attack vectors, though their tools have occasionally been leveraged in unauthorized activities. Their CVE record demonstrates expertise in identifying flaws in web applications and system components, with particular attention to bypassing security controls. While no major public incidents directly link bmaltais to significant breaches, their research remains influential in both defensive and offensive security communities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-32022 | Kohya_ss is vulnerable to a command injection in basic_caption_gui.py (GHSL-2024-019) — kohya_ssCWE-77 | 9.1 | Critical | 2024-04-16 |
| CVE-2024-32027 | Kohya_ss is vulnerable to a command injection in `finetune_gui.py` (`GHSL-2024-022`) — kohya_ssCWE-77 | 9.1 | Critical | 2024-04-16 |
| CVE-2024-32026 | Kohya_ss is vulnerable to a command injection in `git_caption_gui.py` (`GHSL-2024-020`) — kohya_ssCWE-77 | 9.1 | Critical | 2024-04-16 |
| CVE-2024-32025 | Kohya_ss is vulnerable to a command injection in `group_images_gui.py` (`GHSL-2024-021`) — kohya_ssCWE-77 | 9.1 | Critical | 2024-04-16 |
| CVE-2024-32024 | Kohya_ss vulenrable to path injection in `common_gui.py` `add_pre_postfix` function (`GHSL-2024-023`) — kohya_ssCWE-22 | 6.5 | Medium | 2024-04-16 |
| CVE-2024-32023 | Kohya_ss vulnerable to path injection in `common_gui.py` `find_and_replace` function (`GHSL-2024-024`) — kohya_ssCWE-22 | 6.5 | Medium | 2024-04-16 |
This page lists every published CVE security advisory associated with bmaltais. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.