Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-r77h-rpp9-w2xm
  • PyPI/spotipy
 Spotipy has a XSS vulnerability in its OAuth callback server 01 Dec 2025
  • Fix available
  • Severity - 3.6 (Low)
GHSA-pwhh-q4h6-w599
  • PyPI/spotipy
 Spotipy's cache file, containing spotify auth token, is created with overly broad permissions 28 Feb 2025
  • Fix available
  • Severity - 8.4 (High)
GHSA-q764-g6fm-555v
  • PyPI/spotipy
 Path traversal in spotipy 23 Jan 2023
  • Fix available
  • Severity - 5.4 (Medium)