OSV - Open Source Vulnerabilities

GHSA-7c85-87cp-mr6g

PyPI/llama-index

LlamaIndex Vulnerable to Denial of Service (DoS)

2 days ago

Fix available
Severity - 7.5 (High)

MAL-2025-3740

PyPI/badgerdoc-storage

Malicious code in badgerdoc-storage (PyPI)

2 days ago

No fix available

MAL-2025-3741

PyPI/dial-xl

Malicious code in dial-xl (PyPI)

2 days ago

No fix available

MAL-2025-3744

PyPI/program-admin

Malicious code in program-admin (PyPI)

2 days ago

No fix available

MAL-2025-3743

PyPI/iconnect

Malicious code in iconnect (PyPI)

2 days ago

No fix available

MAL-2025-3742

PyPI/document-inference

Malicious code in document-inference (PyPI)

2 days ago

No fix available

GHSA-q3m2-crgq-5p3q

PyPI/ironic

OpenStack Ironic fails to restrict paths used for file:// image URLs

4 days ago

Fix available
Severity - 2.8 (Low)

PYSEC-2025-38

PyPI/ironic

See record for full details

4 days ago

Fix available

GHSA-8j24-cjrq-gr2m

PyPI/django

Django has a denial-of-service possibility in strip_tags()

4 days ago

Fix available
Severity - 5.3 (Medium)

PYSEC-2025-37

PyPI/django

See record for full details

4 days ago

Fix available

GHSA-9pcc-gvx5-r5wm

PyPI/vllm

Remote Code Execution Vulnerability in vLLM Multi-Node Cluster Configuration

6 days ago

No fix available
Severity - 8.0 (High)

MAL-2025-3603

PyPI/testveriftest1asdlaaaaa

Malicious code in testveriftest1asdlaaaaa (PyPI)

6 days ago

No fix available

MAL-2025-3602

PyPI/testveriftest1asdlaaaa

Malicious code in testveriftest1asdlaaaa (PyPI)

6 days ago

No fix available

GHSA-2544-hpcq-6g27

PyPI/mezzanine

Mezzanine CMS Cross-Site Scripting (XSS) vulnerability

05 May

No fix available
Severity - 6.1 (Medium)

GHSA-pw95-88fg-3j6f

PyPI/langroid

Langroid Allows XXE Injection via XMLToolMessage

05 May

Fix available
Severity - 7.8 (High)

GHSA-c5vg-26p8-q8cr

PyPI/mobsf

Mobile Security Framework (MobSF) Allows Web Server Resource Exhaustion via ZIP of Death Attack

05 May

No fix available
Severity - 6.8 (Medium)