Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-wjp5-868j-wqv7
  • PyPI/pydantic-ai
  • PyPI/pydantic-ai-slim
 Pydantic AI has Stored XSS via Path Traversal in Web UI CDN URL 06 Feb
  • Fix available
  • Severity - 7.1 (High)
GHSA-2jrp-274c-jhv3
  • PyPI/pydantic-ai
  • PyPI/pydantic-ai-slim
 Pydantic AI has Server-Side Request Forgery (SSRF) in URL Download Handling 06 Feb
  • Fix available
  • Severity - 8.6 (High)
MAL-2025-2989
  • PyPI/pydantic-kit
 Malicious code in pydantic-kit (PyPI) 28 Mar 2025
  • No fix available
GHSA-mr82-8j83-vxmv
  • PyPI/pydantic
 Pydantic regular expression denial of service 15 Apr 2024
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-5jqp-qgf6-3pvh
  • PyPI/pydantic
 Use of "infinity" as an input to datetime and date fields causes infinite loop in pydantic 13 May 2021
  • Fix available
  • Severity - 5.3 (Medium)
PYSEC-2021-47
  • PyPI/pydantic
  • github.com/samuelcolvin/pydantic
 See record for full details 13 May 2021
  • Fix available