Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
light_mode
dark_mode
Vulnerabilities
search
All ecosystems
767684
AlmaLinux
5242
Alpaquita
11477
Alpine
4350
Android
3403
Azure Linux
12016
BellSoft Hardened Containers
572
Bitnami
8264
Chainguard
9228
CleanStart
1642
CRAN
14
crates.io
2560
Debian
59711
Echo
6663
GHC
3
GIT
93253
GitHub Actions
54
Go
8148
Hackage
32
Hex
182
Julia
989
Linux
25415
Mageia
6010
Maven
6690
MinimOS
86790
npm
222149
NuGet
1770
opam
19
openEuler
7186
openSUSE
13448
OSS-Fuzz
3958
Packagist
6664
Pub
11
PyPI
22353
Red Hat
21177
Rocky Linux
3619
Root
17380
RubyGems
4550
SUSE
21326
SwiftURL
58
TuxCare
5651
Ubuntu
57187
VSCode
20
Wolfi
6450
ID
Packages
Summary
Published
arrow_upward
Attributes
PYSEC-2026-1932
PyPI/social-auth-app-django
Python Social Auth - Django has unsafe account association
4 days ago
Fix available
Severity - 6.3 (Medium)
PYSEC-2026-1931
PyPI/social-auth-app-django
social-auth-app-django affected by Improper Handling of Case Sensitivity
4 days ago
Fix available
Severity - 4.9 (Medium)
PYSEC-2026-459
PyPI/plone-app-contenttypes
Plone Unauthenticated Write Vulnerability
29 Jun
No fix available
Severity - 9.3 (Critical)
MAL-2026-2570
PyPI/robase-app
Malicious code in robase-app (PyPI)
12 Apr
No fix available
GHSA-wv4w-6qv2-qqfg
PyPI/social-auth-app-django
Python Social Auth - Django has unsafe account association
09 Oct 2025
Fix available
Severity - 6.3 (Medium)
MAL-2025-48892
PyPI/hackerone-app-sdk
Malicious code in hackerone-app-sdk (PyPI)
17 Sep 2025
No fix available
MAL-2025-191815
PyPI/pokemon-app-sdk
Malicious code in pokemon-app-sdk (PyPI)
13 Sep 2025
No fix available
GHSA-2gr8-3wc7-xhj3
PyPI/social-auth-app-django
social-auth-app-django affected by Improper Handling of Case Sensitivity
24 Apr 2024
Fix available
Severity - 4.9 (Medium)
GHSA-5v8v-66v8-mwm7
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-arm
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-arm64
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-x64
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-x86
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.browser-wasm
... 113 more
Integer overflow in the bundled Brotli C library
24 May 2022
Fix available
Severity - 6.9 (Medium)
GHSA-w6g9-xccc-347h
PyPI/plone
PyPI/plone-app-contenttypes
Plone Unauthenticated Write Vulnerability
24 May 2022
No fix available
Severity - 9.3 (Critical)
GHSA-qqr6-vm23-m488
PyPI/galaxy-app
Galaxy cross-site scripting (XSS)
14 May 2022
Fix available
Severity - 5.3 (Medium)
GHSA-f7qw-5fgj-247x
PyPI/plone-app-contenttypes
Cross-site Scripting and Open Redirect in plone.app.contenttypes
01 Feb 2022
Fix available
Severity - 4.3 (Medium)
GHSA-xr38-w74q-r8jv
PyPI/invenio-app-rdm
PyPI/invenio-drafts-resources
PyPI/invenio-rdm-records
Permissions not properly checked in Invenio-Drafts-Resources
06 Dec 2021
Fix available
Severity - 5.1 (Medium)
PYSEC-2021-837
PyPI/invenio-app-rdm
github.com/inveniosoftware/invenio-drafts-resources
See record for full details
06 Dec 2021
Fix available
GHSA-2c8c-84w2-j38j
PyPI/plone
PyPI/plone-app-dexterity
PyPI/plone-app-event
PyPI/plone-app-theming
PyPI/plone-supermodel
Improper Restriction of XML External Entity Reference in Plone
07 Apr 2021
Fix available
Severity - 8.7 (High)
GHSA-x7wf-5mjc-6x76
PyPI/plone
PyPI/plone-app-dexterity
PyPI/plone-app-event
PyPI/plone-app-theming
PyPI/plone-supermodel
SSRF attacks via tracebacks in Plone
07 Apr 2021
Fix available
Severity - 8.7 (High)
Load more...
(1 page left)
PyPI - OSV