Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-f3mf-hm6v-jfhh
  • PyPI/mesop
 Mesop Class Pollution vulnerability leads to DoS and Jailbreak attacks 2 days ago
  • Fix available
  • Severity - 8.1 (High)
GHSA-v56r-hwv5-mxg6
  • PyPI/matrix-synapse
 Synapse vulnerable to federation denial of service via malformed events 2 days ago
  • Fix available
  • Severity - 7.1 (High)
GHSA-785h-76cm-cpmf
  • PyPI/django-tomselect
 Django TomSelect incomplete escaping of dangerous characters in widget attributes 3 days ago
  • Fix available
  • Severity - 1.7 (Low)
GHSA-6phg-4wmq-h5h3
  • PyPI/frappe
 Frappe has possibility of SQL injection due to improper validations 3 days ago
  • Fix available
  • Severity - 4.6 (Medium)
GHSA-qrv3-jc3h-f3m6
  • PyPI/frappe
 Frappe vulnerable to information disclosure leading to account takeover 4 days ago
  • Fix available
  • Severity - 8.0 (High)
GHSA-v342-4xr9-x3q3
  • PyPI/frappe
 Frappe has Possibility of Remote Code Execution due to improper validation 4 days ago
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-3hj6-r5c9-q8f3
  • PyPI/frappe
 Frappe has possibility of SQL injection due to improper validations 4 days ago
  • Fix available
  • Severity - 6.6 (Medium)
MAL-2025-2621
  • PyPI/bsb-backup
 Malicious code in bsb-backup (PyPI) 5 days ago
  • No fix available
MAL-2025-2622
  • PyPI/team-bsb-bot
 Malicious code in team-bsb-bot (PyPI) 5 days ago
  • No fix available
GHSA-mcrp-whpw-jp68
  • PyPI/invokeai
 InvokeAI Deserialization of Untrusted Data vulnerability 21 Mar
  • Fix available
  • Severity - 9.8 (Critical)
GHSA-4rj2-9gcx-5qhx
  • PyPI/mlflow
 MLflow has Weak Password Requirements 20 Mar
  • Fix available
  • Severity - 3.8 (Low)
GHSA-969w-gqqr-g6j3
  • PyPI/mlflow
 MLflow Cross-Site Request Forgery (CSRF) vulnerability 20 Mar
  • Fix available
  • Severity - 5.4 (Medium)
GHSA-32g6-mg92-ghm2
  • PyPI/sagemaker
 SageMaker Workflow component allows possibility of MD5 hash collisions 20 Mar
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-49m6-vrr9-2cqm
  • PyPI/mlflow
 MLflow Uncontrolled Resource Consumption vulnerability 20 Mar
  • No fix available
  • Severity - 5.9 (Medium)
GHSA-879v-fggm-vxw2
  • PyPI/litellm
 LiteLLM Has a Leakage of Langfuse API Keys 20 Mar
  • No fix available
  • Severity - 7.5 (High)
GHSA-fjcf-3j3r-78rp
  • PyPI/litellm
 LiteLLM Has an Improper Authorization Vulnerability 20 Mar
  • Fix available
  • Severity - 8.1 (High)
Load more...