📦 Applio

Applio voice conversion tool versions 3.2.8-bugfix and prior contain an arbitrary file write vulnerability in inference.py that allows attackers to write files to the server. Combined with unsafe dese...

Applio voice conversion tool versions 3.2.8-bugfix and prior contain a path traversal vulnerability that allows attackers to delete arbitrary files on the system. This occurs because user-controlled i...

Applio versions 3.2.8-bugfix and prior contain an unsafe deserialization vulnerability in infer.py that allows remote attackers to execute arbitrary code. This affects all users running vulnerable ver...

This vulnerability allows remote attackers to execute arbitrary code on Applio voice conversion tool servers by exploiting unsafe deserialization in the model loading process. Attackers can achieve re...

Applio voice conversion tool versions 3.2.7 and earlier contain server-side request forgery (SSRF) and arbitrary file write vulnerabilities in model_download.py. These allow attackers to probe interna...

Applio versions 3.2.7 and earlier contain a server-side request forgery (SSRF) vulnerability in model_download.py that allows attackers to send requests from the server to internal networks. Combined ...