Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-378x-6p4f-8jgm
  • PyPI/skops
 SKOPS Card.get_model happily allows arbitrary code execution 07 Aug 2025
  • Fix available
  • Severity - 8.4 (High)
GHSA-4v6w-xpmh-gfgp
  • PyPI/skops
 Skops may allow MethodNode to access unexpected object fields through dot notation, leading to arbitrary code execution at load time 25 Jul 2025
  • Fix available
  • Severity - 8.7 (High)
GHSA-m7f4-hrc6-fwg3
  • PyPI/skops
 Skops has Inconsistent Trusted Type Validation that Enables Hidden `operator` Methods Execution 25 Jul 2025
  • Fix available
  • Severity - 8.7 (High)
GHSA-q49c-6v6g-wgq3
  • PyPI/skops
 Skops unsafe deserialization 04 Jun 2024
  • No fix available
  • Severity - 7.8 (High)