Enterprise Cloud Database from Ragic does not properly validate the file type for uploads. Attackers with regular privileges can upload a webshell and use it to execute arbitrary code on the remote server.

Lakera AI Security Blog


Explore our articles about ML & AI. We cover such topics as LLMs, AI governance, AI safety & security, and many more!

Listed: