📦 Label Studio
by Humansignal
🔍 What is Label Studio?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2023-43791 is a privilege escalation vulnerability in Label Studio that allows attackers to chain an ORM leak vulnerability with other flaws to impersonate any account, including Django Super Admi...
Label Studio versions before 1.16.0 contain a Server-Side Request Forgery (SSRF) vulnerability in the S3 storage integration feature. Attackers can exploit this by specifying arbitrary internal servic...
This vulnerability in Label Studio allows attackers to exploit insecure filter chains to leak sensitive user data character by character through Django ORM manipulation. Attackers can also forge sessi...
This is a persistent stored XSS vulnerability in Label Studio's custom_hotkeys functionality that allows authenticated attackers to inject malicious JavaScript. When executed in victims' browsers, the...
This vulnerability allows attackers to inject malicious HTML/JavaScript through Label Studio's upload-example endpoint, enabling Cross-Site Scripting (XSS) attacks. Anyone using Label Studio versions ...