Vulnerability Database
Blog
FAQ
Docs
Vulnerabilities
search
All ecosystems
302544
AlmaLinux
3516
Alpine
3671
Android
2865
Bitnami
5366
Chainguard
26301
CRAN
10
crates.io
1692
Debian
45986
GHC
3
GIT
28093
GitHub Actions
26
Go
4176
Hackage
23
Hex
35
Linux
13573
Mageia
5591
Maven
5471
npm
25233
NuGet
1432
openSUSE
9941
OSS-Fuzz
3590
Packagist
4628
Pub
10
PyPI
15709
Red Hat
15698
Rocky Linux
1757
RubyGems
1681
SUSE
16148
SwiftURL
35
Ubuntu
45938
Wolfi
14346
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-7c85-87cp-mr6g
PyPI/llama-index
LlamaIndex Vulnerable to Denial of Service (DoS)
2 days ago
Fix available
Severity - 7.5 (High)
MAL-2025-3740
PyPI/badgerdoc-storage
Malicious code in badgerdoc-storage (PyPI)
2 days ago
No fix available
MAL-2025-3741
PyPI/dial-xl
Malicious code in dial-xl (PyPI)
2 days ago
No fix available
MAL-2025-3744
PyPI/program-admin
Malicious code in program-admin (PyPI)
2 days ago
No fix available
MAL-2025-3743
PyPI/iconnect
Malicious code in iconnect (PyPI)
2 days ago
No fix available
MAL-2025-3742
PyPI/document-inference
Malicious code in document-inference (PyPI)
2 days ago
No fix available
GHSA-q3m2-crgq-5p3q
PyPI/ironic
OpenStack Ironic fails to restrict paths used for file:// image URLs
4 days ago
Fix available
Severity - 2.8 (Low)
PYSEC-2025-38
PyPI/ironic
See record for full details
4 days ago
Fix available
GHSA-8j24-cjrq-gr2m
PyPI/django
Django has a denial-of-service possibility in strip_tags()
4 days ago
Fix available
Severity - 5.3 (Medium)
PYSEC-2025-37
PyPI/django
See record for full details
4 days ago
Fix available
GHSA-9pcc-gvx5-r5wm
PyPI/vllm
Remote Code Execution Vulnerability in vLLM Multi-Node Cluster Configuration
6 days ago
No fix available
Severity - 8.0 (High)
MAL-2025-3603
PyPI/testveriftest1asdlaaaaa
Malicious code in testveriftest1asdlaaaaa (PyPI)
6 days ago
No fix available
MAL-2025-3602
PyPI/testveriftest1asdlaaaa
Malicious code in testveriftest1asdlaaaa (PyPI)
6 days ago
No fix available
GHSA-2544-hpcq-6g27
PyPI/mezzanine
Mezzanine CMS Cross-Site Scripting (XSS) vulnerability
05 May
No fix available
Severity - 6.1 (Medium)
GHSA-pw95-88fg-3j6f
PyPI/langroid
Langroid Allows XXE Injection via XMLToolMessage
05 May
Fix available
Severity - 7.8 (High)
GHSA-c5vg-26p8-q8cr
PyPI/mobsf
Mobile Security Framework (MobSF) Allows Web Server Resource Exhaustion via ZIP of Death Attack
05 May
No fix available
Severity - 6.8 (Medium)
Load more...
PyPI - OSV