Lucene search
K
PypaMost viewed

5624 matches found

PyPA
PyPA
•added 2023/02/23 10:15 p.m.•11 views

PYSEC-2023-16

Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio's share links i.e. creating a Gradio app and then setting share=True, a private SSH key is sent to any...

9.8CVSS6.8AI score0.00553EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2022/10/06 6:16 p.m.•11 views

PYSEC-2022-301

dparse is a parser for Python dependency files. dparse in versions before 0.5.2 contain a regular expression that is vulnerable to a Regular Expression Denial of Service. All the users parsing index server URLs with dparse are impacted by this vulnerability. A patch has been applied in version...

7.5CVSS7AI score0.00982EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2022/09/05 10:15 a.m.•11 views

PYSEC-2022-43070

Apache IoTDB grafana-connector version 0.13.0 contains an interface without authorization, which may expose the internal structure of database. Users should upgrade to version 0.13.1 which addresses this issue...

7.5CVSS7AI score0.01146EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2022/06/24 9:15 p.m.•11 views

PYSEC-2022-214

The Beginner package in PyPI v0.0.2 to v0.0.4 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

9.8CVSS8AI score0.01857EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2021/09/08 11:15 a.m.•11 views

PYSEC-2021-332

This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an attacker to trick a user into performing these actions unknowingly through a Cross Site Reques...

8.8CVSS7.2AI score0.00477EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2021/05/14 8:15 p.m.•11 views

PYSEC-2021-481

TensorFlow is an end-to-end open source platform for machine learning. An attacker can read data outside of bounds of heap allocated buffer in tf.rawops.QuantizeAndDequantizeV3. This is because the...

7.1CVSS7.1AI score0.00198EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2021/05/14 8:15 p.m.•11 views

PYSEC-2021-729

TensorFlow is an end-to-end open source platform for machine learning. A specially crafted TFLite model could trigger an OOB write on heap in the TFLite implementation of...

7.8CVSS7.2AI score0.00201EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2021/05/14 8:15 p.m.•11 views

PYSEC-2021-444

TensorFlow is an end-to-end open source platform for machine learning. Calling tf.rawops.RaggedTensorToVariant with arguments specifying an invalid ragged tensor results in a null pointer dereference. The implementation of RaggedTensorToVariant...

5.5CVSS6.9AI score0.00198EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2021/02/02 7:15 a.m.•11 views

PYSEC-2021-9

In Django 2.2 before 2.2.18, 3.0 before 3.0.12, and 3.1 before 3.1.6, the django.utils.archive.extract method used by "startapp --template" and "startproject --template" allows directory traversal via an archive with absolute paths or relative paths with dot segments...

5.3CVSS7AI score0.07605EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2020/10/17 8:15 p.m.•11 views

PYSEC-2020-59

DISPUTED TAXII libtaxii through 1.1.117, as used in EclecticIQ OpenTAXII through 0.2.0 and other products, allows SSRF via an initial http:// substring to the parse method, even when the nonetwork setting is used for the XML parser. NOTE: the vendor points out that the parse method "wraps the lxm...

9.8CVSS7AI score0.0225EPSS
Exploits2References4Affected Software1
PyPA
PyPA
•added 2020/09/30 8:15 p.m.•11 views

PYSEC-2020-263

A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Django REST Framework fails to properly escape certain strings that can come from user input. This allows a user who can control those strings to inject malicious...

6.1CVSS6.5AI score0.01286EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2020/09/25 7:15 p.m.•11 views

PYSEC-2020-329

In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger a write out bounds / segmentation fault if the segment ids are not sorted. Code assumes that the segment ids are in increasing order, using the last element of the tensor holding them to determine the...

8.1CVSS6.9AI score0.00556EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2020/08/05 2:15 p.m.•11 views

PYSEC-2020-342

Resolved Only when using H2/MySQL/TiDB as Apache SkyWalking storage, there is a SQL injection vulnerability in the wildcard query cases...

9.8CVSS8.1AI score0.33478EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2020/01/14 8:15 p.m.•11 views

PYSEC-2020-175

In PyInstaller before version 3.6, only on Windows, a local privilege escalation vulnerability is present in this particular case: If a software using PyInstaller in "onefile" mode is launched by a privileged user at least more than the current one which have his "TempPath" resolving to a world...

7.8CVSS6.9AI score0.00689EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2019/12/26 5:15 p.m.•11 views

PYSEC-2019-138

In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests containing special...

8.2CVSS6.5AI score0.02587EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2019/04/10 8:29 p.m.•11 views

PYSEC-2019-214

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views...

4.8CVSS7.4AI score0.02767EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2019/04/02 7:29 p.m.•11 views

PYSEC-2019-166

The Serialize.deserialize method in CoAPthon3 1.0 and 1.0.1 mishandles certain exceptions, leading to a denial of service in applications that use this library e.g., the standard CoAP server, CoAP client, example collect CoAP server and client when they receive crafted CoAP messages...

7.5CVSS6.8AI score0.01446EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2019/02/25 3:29 p.m.•11 views

PYSEC-2019-249

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impact...

8.8CVSS7.3AI score0.02783EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2018/04/18 7:29 p.m.•11 views

PYSEC-2018-75

OISF suricata-update version 1.0.0a1 contains an Insecure Deserialization vulnerability in the insecure yaml.load-Function as used in the following files: config.py:136, config.py:142, sources.py:99 and sources.py:131. The "list-sources"-command is affected by this bug. that can result in Remote...

9.3CVSS7.3AI score0.04159EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2017/09/21 9:29 p.m.•11 views

PYSEC-2017-152

A flaw was found in instack-undercloud 7.2.0 as packaged in Red Hat OpenStack Platform Pike, 6.1.0 as packaged in Red Hat OpenStack Platform Oacta, 5.3.0 as packaged in Red Hat OpenStack Newton, where pre-install and security policy scripts used insecure temporary files. A local user could exploi...

6.4CVSS6.6AI score0.00347EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2017/09/13 4:29 p.m.•11 views

PYSEC-2017-147

In Apache Spark 1.6.0 until 2.1.1, the launcher API performs unsafe deserialization of data received by its socket. This makes applications launched programmatically using the launcher API potentially vulnerable to arbitrary code execution by an attacker with access to any user account on the loc...

7.8CVSS8AI score0.00734EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2017/02/22 4:59 p.m.•11 views

PYSEC-2017-15

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS6.2AI score0.02141EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2015/08/24 2:59 p.m.•11 views

PYSEC-2015-22

contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...

5CVSS6.9AI score0.05163EPSS
Exploits0References14Affected Software1
PyPA
PyPA
•added 2014/04/23 3:55 p.m.•11 views

PYSEC-2014-1

The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 allows remote attackers to import and execute arbitrary Python modules by leveraging a view that constructs URLs using user input and a "dotted Python path."...

5.1CVSS7.4AI score0.0565EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2014/03/11 7:37 p.m.•11 views

PYSEC-2014-57

typeswidget.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce the immutable setting on unspecified content edit forms, which allows remote attackers to hide fields on the forms via a crafted URL...

4.3CVSS6.9AI score0.0119EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2014/03/11 7:37 p.m.•11 views

PYSEC-2014-55

zip.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce access restrictions when including content in a zip archive, which allows remote attackers to obtain sensitive information by reading a generated archive...

5.8CVSS6.6AI score0.0119EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2013/03/22 9:55 p.m.•11 views

PYSEC-2013-46

The v1 API in OpenStack Glance Essex 2012.1, Folsom 2012.2, and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obtain the operator's backend credentials via a request for a cached image...

3.5CVSS5.8AI score0.01356EPSS
Exploits0References12Affected Software1
PyPA
PyPA
•added 2011/06/06 7:55 p.m.•11 views

PYSEC-2011-16

plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011...

5.5CVSS7AI score0.01579EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2011/02/14 9:0 p.m.•11 views

PYSEC-2011-30

Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via forged AJAX requests that leverage a "combination of browser plugins...

6.8CVSS5.8AI score0.01589EPSS
Exploits1References18Affected Software1
PyPA
PyPA
•added 2008/12/17 6:30 p.m.•11 views

PYSEC-2008-6

Unspecified vulnerability in Trac before 0.11.2 allows attackers to cause a denial of service via unknown attack vectors related to "certain wiki markup."...

7.5CVSS6.7AI score0.01227EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2 days ago•10 views

SQL injection in litellm

An SQL Injection vulnerability exists in the berriai/litellm repository, specifically within the /global/spend/logs endpoint. The vulnerability arises due to improper neutralization of special elements used in an SQL command. The affected code constructs an SQL query by concatenating an unvalidat...

7.2CVSS6.1AI score0.00429EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2026/06/04 12:16 p.m.•10 views

PYSEC-0000-CVE-2026-10803

A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digestutils of the file mlflow/data/digestutils.py of the component Dataset Digest Computation. This manipulation causes use of weak hash. It is possible to launch the attack on the local host. The attack is...

3.6CVSS4.7AI score0.00103EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2026/06/01 9:16 a.m.•10 views

PYSEC-0000-CVE-2026-42359

A bug in Apache Airflow's XCom PATCH endpoint PATCH /api/v2/xcomEntries/key allowed an authenticated UI/API user with XCom write permission on a Dag to set XCom entries under reserved key names e.g. returnvalue that the matching POST endpoint already validated against FORBIDDENXCOMKEYS. The...

8.8CVSS5.8AI score0.0055EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/06/01 9:16 a.m.•10 views

PYSEC-0000-CVE-2026-41014

The partitioneddagruns endpoints in the Airflow UI enforced only asset-level access control, not per-Dag authorization. An authenticated UI/API user with global Asset:read permission could enumerate partition run state, schedule configuration, and asset wiring for Dags they were not authorized to...

4.3CVSS5.8AI score0.00352EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/05/28 4:16 p.m.•10 views

PYSEC-0000-CVE-2026-48522

PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, PyJWKClient passes its uri argument directly to urllib.request.urlopen which uses Python stdlib's default OpenerDirector registering HTTPHandler, HTTPSHandler, FTPHandler, FileHandler, and DataHandler. There is currently no...

4.2CVSS5.9AI score0.00181EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/27 6:16 p.m.•10 views

PYSEC-0000-CVE-2026-44345

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, src/bentoml/internal/container/frontend/dockerfile/templates/basev2.j2 interpolates docker.baseimage raw with no escaping, newline filtering, or validation. A malicious...

8.8CVSS5.9AI score0.00317EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/27 6:16 p.m.•10 views

PYSEC-0000-CVE-2026-44346

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs.name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentom...

8.8CVSS5.9AI score0.00321EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/27 6:16 p.m.•10 views

PYSEC-2026-189

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, src/bentoml/internal/container/frontend/dockerfile/templates/basev2.j2 interpolates docker.baseimage raw with no escaping, newline filtering, or validation. A malicious...

8.8CVSS5.9AI score0.00317EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/26 9:16 p.m.•10 views

PYSEC-0000-CVE-2026-44896

Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and realier, in src/mistune/directives/image.py, the renderfigure function concatenates figclass and figwidth options directly into HTML attributes without escaping. This allows attribute injection and XSS even when...

6.1CVSS5.8AI score0.00198EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/05/01 9:16 a.m.•10 views

PYSEC-2026-205

An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0. Ironic Python Agent IPA sometimes executes grub-install from within a chroot of the deployed partition image, leading to code execution in the case of a malicious image...

8CVSS6AI score0.00837EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/04/18 7:16 a.m.•10 views

PYSEC-2026-18

In case of SQL errors, exception/stack trace of errors was exposed in API even if "api/exposestacktraces" was set to false. That could lead to exposing additional information to potential attacker. Users are recommended to upgrade to Apache Airflow 3.2.0, which fixes the issue...

7.5CVSS5.8AI score0.00449EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/04/08 9:17 p.m.•10 views

PYSEC-2026-36

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers e.g. Hash.update, this could lead to buffer overflows. This vulnerability is fixed in...

9.8CVSS5.9AI score0.00652EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/07 4:16 p.m.•10 views

PYSEC-2026-134

Strawberry GraphQL is a library for creating GraphQL APIs. Prior to 0.312.3, Strawberry GraphQL's WebSocket subscription handlers for both the graphql-transport-ws and legacy graphql-ws protocols allocate an asyncio.Task and associated Operation object for every incoming subscribe message without...

7.5CVSS5.8AI score0.00274EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/03/27 9:17 p.m.•10 views

PYSEC-2026-82

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.9.0, the Agentic Assistant feature in Langflow executes LLM-generated Python code during its validation phase. Although this phase appears intended to validate generated component code, the...

9.9CVSS6.1AI score0.01426EPSS
Exploits1References16Affected Software1
PyPA
PyPA
•added 2026/03/11 8:16 p.m.•10 views

PYSEC-2026-140

Tornado is a Python web framework and asynchronous networking library. In versions of Tornado prior to 6.5.5, the only limit on the number of parts in multipart/form-data is the maxbodysize setting default 100MB. Since parsing occurs synchronously on the main thread, this creates the possibility ...

8.7CVSS7.3AI score0.00375EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/03/09 8:16 p.m.•10 views

PYSEC-2026-97

A vulnerability in the filestring function of the nltk.util module in nltk version 3.9.2 allows arbitrary file read due to improper validation of input paths. The function directly opens files specified by user input without sanitization, enabling attackers to access sensitive system files by...

8.6CVSS7.4AI score0.00428EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2026/03/09 4:16 p.m.•10 views

PYSEC-2026-84

An issue pertaining to CWE-312: Cleartext Storage of Sensitive Information was discovered in lesspass lesspass v9.6.9 which allows attackers to obtain sensitive information...

6.5CVSS5.8AI score0.00167EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/03/05 8:16 p.m.•10 views

PYSEC-2026-83

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. In version 1.0.9 and prior, LangGraph checkpointers can load msgpack-encoded checkpoints that reconstruct Python objects during deserialization. If an attacker can...

7.2CVSS5.8AI score0.05219EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/02/27 10:16 p.m.•10 views

PYSEC-2026-65

Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, the redirecttotarget function in Gradio's OAuth flow accepts an unvalidated targeturl query parameter, allowing redirection to arbitrary external URLs. This affects the /logout and /login/callback...

4.7CVSS5.9AI score0.00232EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/02/19 5:24 p.m.•10 views

PYSEC-2026-163

Semantic Kernel, Microsoft's semantic kernel Python SDK, has a remote code execution vulnerability in versions prior to 1.39.4, specifically within the InMemoryVectorStore filter functionality. The problem has been fixed in version python-1.39.4. Users should upgrade this version or higher. As a...

9.9CVSS6.4AI score0.02914EPSS
Exploits2References3Affected Software1
Total number of security vulnerabilities5000