Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2026-450
  • PyPI/sympy-dev
 Malicious code in sympy-dev (PyPI) 6 hours ago
  • No fix available
MAL-2026-449
  • PyPI/icloudprocessor
 Malicious code in icloudprocessor (PyPI) 7 hours ago
  • No fix available
GHSA-95c6-p277-p87g
  • PyPI/fastapi-api-key
 FastAPI Api Key has a timing side-channel in verify_key that allows statistical key validity detection 16 hours ago
  • Fix available
  • Severity - 3.7 (Low)
GHSA-4fqp-r85r-hxqh
  • PyPI/copier
 Copier safe template has arbitrary filesystem write access via directory symlinks when _preserve_symlinks: true 16 hours ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-xjhm-gp88-8pfx
  • PyPI/copier
 Copier safe template has arbitrary filesystem read access via symlinks when _preserve_symlinks: false 17 hours ago
  • Fix available
  • Severity - 6.8 (Medium)
MAL-2026-447
  • PyPI/ttam-ploy
 Malicious code in ttam-ploy (PyPI) 18 hours ago
  • No fix available
MAL-2026-445
  • PyPI/code-transfering-3
 Malicious code in code-transfering-3 (PyPI) 18 hours ago
  • No fix available
MAL-2026-446
  • PyPI/code-transfering-4
 Malicious code in code-transfering-4 (PyPI) 18 hours ago
  • No fix available
MAL-2026-444
  • PyPI/terminalbrush
 Malicious code in terminalbrush (PyPI) 19 hours ago
  • No fix available
MAL-2026-443
  • PyPI/1q847
 Malicious code in 1q847 (PyPI) 20 hours ago
  • No fix available
GHSA-339m-4qw5-j2g3
  • PyPI/tendenci
 Tendenci Affected by Authenticated Remote Code Execution via Pickle Deserialization 22 hours ago
  • Fix available
  • Severity - 6.8 (Medium)
GHSA-2pc9-4j83-qjmr
  • PyPI/vllm
 vLLM affected by RCE via auto_map dynamic module loading during model initialization 22 hours ago
  • Fix available
  • Severity - 8.8 (High)
MAL-2026-442
  • PyPI/xadauiom
 Malicious code in xadauiom (PyPI) yesterday
  • No fix available
MAL-2026-440
  • PyPI/anduril-lattice-sdk-grpc-python
 Malicious code in anduril-lattice-sdk-grpc-python (PyPI) yesterday
  • No fix available
MAL-2026-441
  • PyPI/spellcheckpy
 Malicious code in spellcheckpy (PyPI) yesterday
  • No fix available
GHSA-4h3h-63v6-88qx
  • PyPI/esphome
 ESPHome vulnerable to denial-of-service via out-of-bounds check bypass in the API component yesterday
  • Fix available
  • Severity - 6.8 (Medium)
Load more...