CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/01/14 12:0 a.m.•3 views

Debian dsa-6099 : python-parsl-doc - security update

The remote Debian 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6099 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6099-1 [email protected] https://www.debian.org/security/ Moritz...

7.3CVSS5.7AI score0.0019EPSS

OSV•added 2026/01/14 12:0 a.m.•1 views

DSA-6099-1 python-parsl - security update

Bulletin has no description...

7.3CVSS6.9AI score0.0019EPSS

OpenVAS•added 2026/01/14 12:0 a.m.•1 views

Debian: Security Advisory (DSA-6099-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS5.4AI score0.0019EPSS

RedhatCVE•added 2026/01/10 5:40 a.m.•2 views

CVE-2026-21892

Parsl is a Python parallel scripting library. A SQL Injection vulnerability exists in the parsl-visualize component of versions prior to 2026.01.05. The application constructs SQL queries using unsafe string formatting Python % operator with user-supplied input workflowid directly from URL routes...

7.3CVSS7.5AI score0.0019EPSS

Exploits1References1

NVD•added 2026/01/08 2:15 p.m.•2 views

CVE-2026-21892

7.3CVSS0.0019EPSS

UbuntuCve•added 2026/01/08 2:15 p.m.•3 views

CVE-2026-21892

7.3CVSS6AI score0.0019EPSS

Exploits1References3

OSV•added 2026/01/08 2:15 p.m.•0 views

UBUNTU-CVE-2026-21892

7.3CVSS6AI score0.0019EPSS

Vulnrichment•added 2026/01/08 2:2 p.m.•1 views

CVE-2026-21892 Parsl Monitoring Visualization Vulnerable to SQL Injection

5.3CVSS7.1AI score0.0019EPSS

OSV•added 2026/01/08 2:2 p.m.•2 views

CVE-2026-21892 Parsl Monitoring Visualization Vulnerable to SQL Injection

5.3CVSS7.1AI score0.0019EPSS

CVE•added 2026/01/08 2:2 p.m.•8 views

CVE-2026-21892

CVE-2026-21892 affects Parsl (Python parallel scripting library) in the parsl-visualize component. Versions prior to 2026.01.05 construct SQL queries using unsafe Python % formatting with user-supplied input (workflow_id) sourced from URL routes, enabling SQL injection by an unauthenticated attac...

7.3CVSS7.1AI score0.0019EPSS

Exploits1References2Affected Software1

EUVD•added 2026/01/08 2:2 p.m.•3 views

EUVD-2026-1034

5.3CVSS7AI score0.0019EPSS

Cvelist•added 2026/01/08 2:2 p.m.•17 views

CVE-2026-21892 Parsl Monitoring Visualization Vulnerable to SQL Injection

5.3CVSS0.0019EPSS

Debian CVE•added 2026/01/08 2:2 p.m.•3 views

CVE-2026-21892

7.3CVSS5.9AI score0.0019EPSS

Positive Technologies•added 2026/01/08 12:0 a.m.•2 views

PT-2026-2123

Name of the Vulnerable Software and Affected Versions Parsl versions prior to 2026.01.05 Description A SQL Injection issue exists in the parsl-visualize component. The application builds SQL queries using unsafe string formatting with user-supplied input workflow id taken directly from URL routes...

7.3CVSS7.7AI score0.0019EPSS

Exploits1References13

Tenable Nessus•added 2026/01/08 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-21892

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Parsl is a Python parallel scripting library. A SQL Injection vulnerability exists in the parsl-visualize component of versions prior to 2026.01.05. The...

7.3CVSS6AI score0.0019EPSS

CNNVD•added 2026/01/08 12:0 a.m.•1 views

parsl 安全漏洞

parsl is the Parallel Scripting Library open source a parallel scripting library for Python. A security vulnerability exists in parsl versions prior to 2026.01.05, which stems from an SQL injection in the parsl-visualize component that could lead to data exfiltration or denial of service...

7.3CVSS6.8AI score0.0019EPSS

Exploits1References3

Snyk•added 2026/01/06 6:4 p.m.•1 views

SQL Injection

Overview parsl is a Simple data dependent workflows in Python Affected versions of this package are vulnerable to SQL Injection via the workflowid parameter in the visualization dashboard routes. An attacker can execute arbitrary SQL commands by injecting malicious input into the URL, which is th...

7.3CVSS8AI score0.0019EPSS

Exploits1References3

Github Security Blog•added 2026/01/06 6:4 p.m.•7 views

Parsl Monitoring Visualization Vulnerable to SQL Injection

Affected Product: Parsl Python Parallel Scripting Library Component: parsl.monitoring.visualization Vulnerability Type: SQL Injection CWE-89 Severity: High CVSS Rating Recommended: 7.5 - 8.6 URL: https://github.com/Parsl/parsl/blob/master/parsl/monitoring/visualization/views.py Summary A SQL...

7.3CVSS7.9AI score0.0019EPSS

Exploits1References4Affected Software1

vulnersOsv•added 2026/01/06 6:4 p.m.•2 views

blt-funcx-toolkit (>=0.1.0 <=0.1.0rc4), braid-db (=0.1.0a1) +9 more potentially affected by CVE-2026-21892 via parsl (>=0.3.1 <=2025.9.15)

parsl PYPI version =0.3.1, =0.1.0, =0.0.10, =0.0.1a6, =0.0.3, =0.2.0, =0.1.0.dev0, =0.0.1a0, =0.1.0, =0.1.5 - sr-midas =0.1.2 Source cves: CVE-2026-21892 Source advisory: OSV:GHSA-F2MF-Q878-GH58...

7.3CVSS5.8AI score0.0019EPSS