Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-qmgc-5h2g-mvrw
  • PyPI/filelock
 filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock 13 Jan
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-w853-jp5j-5j7f
  • PyPI/filelock
 filelock has a TOCTOU race condition which allows symlink attacks during lock file creation 16 Dec 2025
  • Fix available
  • Severity - 6.3 (Medium)