Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-hgjq-p8cr-gg4h
  • PyPI/copier
 Copier `_external_data` allows path traversal and absolute-path local file read without unsafe mode 01 Apr
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-85v3-4m8g-hrh6
  • PyPI/copier
 Copier `_subdirectory` allows template root escape via parent-directory traversal 01 Apr
  • Fix available
  • Severity - 4.4 (Medium)
GHSA-4fqp-r85r-hxqh
  • PyPI/copier
 Copier safe template has arbitrary filesystem write access via directory symlinks when _preserve_symlinks: true 21 Jan
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-xjhm-gp88-8pfx
  • PyPI/copier
 Copier safe template has arbitrary filesystem read access via symlinks when _preserve_symlinks: false 21 Jan
  • Fix available
  • Severity - 6.8 (Medium)
GHSA-p7q8-grrj-3m8w
  • PyPI/copier
 Copier's safe template has filesystem write access outside destination path 18 Aug 2025
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-3xw7-v6cj-5q8h
  • PyPI/copier
 Copier's safe template has arbitrary filesystem read/write access 18 Aug 2025
  • Fix available
  • Severity - 8.5 (High)