OSV - Open Source Vulnerabilities

MAL-2025-192468

PyPI/yzip

Malicious code in yzip (PyPI)

14 hours ago

No fix available

MAL-2025-192467

PyPI/gxzip

Malicious code in gxzip (PyPI)

yesterday

No fix available

GHSA-6h2f-wjhf-4wjx

PyPI/pyrofork

Pyrofork has a Path Traversal in download_media Method

yesterday

Fix available
Severity - 6.5 (Medium)

MAL-2025-192437

PyPI/netbenchkit

Malicious code in netbenchkit (PyPI)

yesterday

No fix available

MAL-2025-192438

PyPI/synium

Malicious code in synium (PyPI)

yesterday

No fix available

MAL-2025-192436

PyPI/jsonschema-utf8

Malicious code in jsonschema-utf8 (PyPI)

yesterday

No fix available

MAL-2025-192435

PyPI/loguru-utf8

Malicious code in loguru-utf8 (PyPI)

yesterday

No fix available

MAL-2025-192431

PyPI/ctosec-appsec-wb-xray-adapters

Malicious code in ctosec-appsec-wb-xray-adapters (PyPI)

yesterday

No fix available

MAL-2025-192432

PyPI/kzip

Malicious code in kzip (PyPI)

yesterday

No fix available

MAL-2025-192430

PyPI/bigpyx

Malicious code in bigpyx (PyPI)

yesterday

No fix available

GHSA-9rwj-6rc7-p77c

PyPI/langgraph-checkpoint-sqlite

LangGraph's SQLite is vulnerable to SQL injection via metadata filter key in SQLite checkpointer list method

2 days ago

Fix available
Severity - 7.3 (High)

GHSA-4c65-9gqf-4w8h

PyPI/cai-framework

Cybersecurity AI (CAI) vulnerable to Command Injection in run_ssh_command_with_credentials Agent tool

2 days ago

No fix available
Severity - 9.6 (Critical)

MAL-2025-192396

PyPI/helloharry123c

Malicious code in helloharry123c (PyPI)

2 days ago

No fix available

MAL-2025-192393

PyPI/ctosec-appsec-wb-xray-adapter

Malicious code in ctosec-appsec-wb-xray-adapter (PyPI)

2 days ago

No fix available

MAL-2025-192392

PyPI/ajenti-plugin-testing-pyld

Malicious code in ajenti-plugin-testing-pyld (PyPI)

2 days ago

No fix available

GHSA-wx63-35hw-2482

PyPI/mad-proxy

HTTP/HTTPS Traffic Interception Bypass in mad-proxy

2 days ago

No fix available
Severity - 5.3 (Medium)