CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Tenable Nessus•added 2026/03/21 12:0 a.m.•12 views

Linux Distros Unpatched Vulnerability : CVE-2026-27953

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ormar is a async mini ORM for Python. Versions 0.23.0 and below are vulnerable to Pydantic validation bypass through the model constructor, allowing any...

9.8CVSS5.9AI score0.01192EPSS

Exploits1References3

Snyk•added 2026/03/19 10:46 p.m.•5 views

Improperly Controlled Modification of Dynamically-Determined Object Attributes

Overview ormar is an An async ORM with fastapi in mind and pydantic validation. Affected versions of this package are vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes via the model constructor when injecting the pkonly or excluded parameters when used...

9.8CVSS5.8AI score0.01192EPSS

Exploits1References2

OSV•added 2026/03/19 9:17 p.m.•3 views

DEBIAN-CVE-2026-27953

ormar is a async mini ORM for Python. Versions 0.23.0 and below are vulnerable to Pydantic validation bypass through the model constructor, allowing any unauthenticated user to skip all field validation by injecting "pkonly": true into a JSON request body. By injecting "pkonly": true into a JSON...

9.8CVSS5.6AI score0.01192EPSS

Exploits1References1