Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
PYSEC-2026-1921
  • PyPI/signxml
SignXML's signature verification with HMAC is vulnerable to an algorithm confusion attack 07 Jul
  • Fix available
  • Severity - 6.9 (Medium)
PYSEC-2026-1922
  • PyPI/signxml
SignXML's signature verification with HMAC is vulnerable to a timing attack 07 Jul
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-6vx8-pcwv-xhf4
  • PyPI/signxml
SignXML's signature verification with HMAC is vulnerable to an algorithm confusion attack 05 Jun 2025
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-gmhf-gg8w-jw42
  • PyPI/signxml
SignXML's signature verification with HMAC is vulnerable to a timing attack 05 Jun 2025
  • Fix available
  • Severity - 6.9 (Medium)