Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-527g-3w9m-29hv
  • PyPI/mitmproxy
 mitmproxy has an LDAP Injection 14 Apr
  • Fix available
  • Severity - 4.8 (Medium)
GHSA-63cx-g855-hvv4
  • PyPI/mitmproxy
 mitmproxy binaries embed a vulnerable python-hyper/h2 dependency 25 Aug 2025
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-wg33-5h85-7q5p
  • PyPI/mitmproxy
 Mitmweb API Authentication Bypass Using Proxy Server 06 Feb 2025
  • Fix available
  • Severity - 8.2 (High)
GHSA-gcx2-gvj7-pxv3
  • PyPI/mitmproxy
 Insufficient Protection against HTTP Request Smuggling in mitmproxy 22 Mar 2022
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2022-170
  • PyPI/mitmproxy
  • github.com/mitmproxy/mitmproxy
 See record for full details 21 Mar 2022
  • Fix available
GHSA-22gh-3r9q-xf38
  • PyPI/mitmproxy
 Lacking Protection against HTTP Request Smuggling in mitmproxy 20 Sep 2021
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2021-328
  • PyPI/mitmproxy
 See record for full details 16 Sep 2021
  • Fix available
GHSA-6m53-c78q-7qmg
  • PyPI/mitmproxy
 Mitmweb in mitmproxy allows DNS Rebinding attacks 31 Jul 2018
  • Fix available
  • Severity - 9.2 (Critical)
PYSEC-2018-56
  • PyPI/mitmproxy
 See record for full details 22 Jul 2018
  • Fix available