Vulnerability Library

search
ID
Packages
Summary
Affected versions
Published
Fix
GHSA-6cjm-4pxw-7xp9
  • PyPI/sentry
 Sentry vulnerable to leaking superuser cleartext password in logs
  • See details.
 2024-04-18T18:22:42Z Fix available
GHSA-7gpw-8wmc-pm8g
  • PyPI/aiohttp
 aiohttp Cross-site Scripting vulnerability on index pages for static file handling
  • 0.1
  • 0.10.0
  • 0.10.1
  • 0.10.2
  • 0.11.0
  • 0.12.0
  • 0.13.0
  • ...
 2024-04-18T13:45:21Z Fix available
GHSA-2522-mrjc-m688
  • PyPI/apache-airflow
 Apache Airflow: Sensitive configuration for providers displayed when "non-sensitive-only" config used
  • 2.7.0
  • 2.7.1
  • 2.7.1rc1
  • 2.7.1rc2
  • 2.7.2
  • 2.7.2rc1
  • 2.7.3
  • ...
 2024-04-18T09:30:44Z Fix available
GHSA-93c5-rj2p-w52x
  • PyPI/mindsdb
 Cross-site Scripting (XSS) in mindsdb/mindsdb
  • 0.6.5
  • 0.6.6
  • 0.6.7
  • 0.6.8
  • 0.6.9
  • 0.7.0
  • 0.7.1
  • ...
 2024-04-16T00:30:34Z No fix available
GHSA-hq88-wg7q-gp4g
  • PyPI/mlflow
 mlflow vulnerable to Path Traversal
  • 0.0.1
  • 0.1.0
  • 0.2.0
  • 0.2.1
  • 0.3.0
  • 0.4.0
  • 0.4.1
  • ...
 2024-04-16T00:30:34Z Fix available
GHSA-r6gp-rff2-p3hf
  • PyPI/llama-index-core
 llama-index-core Command Injection vulnerability
  • 0.10.0
  • 0.10.1
  • 0.10.10
  • 0.10.11
  • 0.10.11.post1
  • 0.10.12
  • 0.10.13
  • ...
 2024-04-16T00:30:34Z Fix available
GHSA-rgp8-pm28-3759
  • PyPI/langchain
 langchain vulnerable to path traversal
  • 0.0.1
  • 0.0.10
  • 0.0.100
  • 0.0.101
  • 0.0.101rc0
  • 0.0.102
  • 0.0.102rc0
  • ...
 2024-04-16T00:30:34Z Fix available
GHSA-5mvj-wmgj-7q8c
  • PyPI/mlflow
 mlflow vulnerable to Path Traversal
  • 0.0.1
  • 0.1.0
  • 0.2.0
  • 0.2.1
  • 0.3.0
  • 0.4.0
  • 0.4.1
  • ...
 2024-04-16T00:30:33Z No fix available
GHSA-6h3f-43vq-53hj
  • PyPI/zenml
 Directory traversal in zenml
  • 0.0.1rc1
  • 0.0.1rc2
  • 0.1.0
  • 0.1.1
  • 0.1.2
  • 0.1.3
  • 0.1.3rc0
  • ...
 2024-04-16T00:30:33Z Fix available
GHSA-f42m-mvfv-cgw5
  • PyPI/mlflow
 mlflow vulnerable to Path Traversal
  • 0.0.1
  • 0.1.0
  • 0.2.0
  • 0.2.1
  • 0.3.0
  • 0.4.0
  • 0.4.1
  • ...
 2024-04-16T00:30:33Z No fix available
GHSA-g3r5-72hf-p7p2
  • PyPI/zenml
 zenml Session Fixation vulnerability
  • 0.0.1rc1
  • 0.0.1rc2
  • 0.1.0
  • 0.1.1
  • 0.1.2
  • 0.1.3
  • 0.1.3rc0
  • ...
 2024-04-16T00:30:33Z Fix available
GHSA-g9cj-cfpp-4g2x
  • PyPI/gradio
 gradio vulnerable to Path Traversal
  • 0.1.0
  • 0.1.1
  • 0.1.2
  • 0.1.3
  • 0.1.4
  • 0.1.5
  • 0.1.6
  • ...
 2024-04-16T00:30:33Z Fix available
GHSA-hvj5-mvw9-93j3
  • PyPI/bentoml
 Insecure deserialization in BentoML
  • 0.0.1
  • 0.0.2
  • 0.0.3
  • 0.0.5
  • 0.0.6a0
  • 0.0.7
  • 0.0.7.dev0
  • ...
 2024-04-16T00:30:33Z Fix available
GHSA-j62r-wxqq-f3gf
  • PyPI/mlflow
 mlflow vulnerable to Path Traversal
  • 0.0.1
  • 0.1.0
  • 0.2.0
  • 0.2.1
  • 0.3.0
  • 0.4.0
  • 0.4.1
  • ...
 2024-04-16T00:30:33Z No fix available
GHSA-m49c-5c52-6696
  • PyPI/mlflow
 mlflow vulnerable to Path Traversal
  • 0.0.1
  • 0.1.0
  • 0.2.0
  • 0.2.1
  • 0.3.0
  • 0.4.0
  • 0.4.1
  • ...
 2024-04-16T00:30:33Z No fix available
GHSA-f82r-jj5r-6g97
  • PyPI/mlflow
 mlflow Path Traversal vulnerability
  • 0.0.1
  • 0.1.0
  • 0.2.0
  • 0.2.1
  • 0.3.0
  • 0.4.0
  • 0.4.1
  • ...
 2024-04-16T00:30:32Z No fix available
Load more...