Lucene search
K
PypaMost viewed

5624 matches found

PyPA
PyPA
•added 2019/04/10 8:29 p.m.•11 views

PYSEC-2019-214

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views...

4.8CVSS7.4AI score0.02767EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2019/04/02 7:29 p.m.•11 views

PYSEC-2019-166

The Serialize.deserialize method in CoAPthon3 1.0 and 1.0.1 mishandles certain exceptions, leading to a denial of service in applications that use this library e.g., the standard CoAP server, CoAP client, example collect CoAP server and client when they receive crafted CoAP messages...

7.5CVSS6.8AI score0.01446EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2019/02/25 3:29 p.m.•11 views

PYSEC-2019-249

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impact...

8.8CVSS7.3AI score0.02783EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2018/04/18 7:29 p.m.•11 views

PYSEC-2018-75

OISF suricata-update version 1.0.0a1 contains an Insecure Deserialization vulnerability in the insecure yaml.load-Function as used in the following files: config.py:136, config.py:142, sources.py:99 and sources.py:131. The "list-sources"-command is affected by this bug. that can result in Remote...

9.3CVSS7.3AI score0.04159EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2017/09/21 9:29 p.m.•11 views

PYSEC-2017-152

A flaw was found in instack-undercloud 7.2.0 as packaged in Red Hat OpenStack Platform Pike, 6.1.0 as packaged in Red Hat OpenStack Platform Oacta, 5.3.0 as packaged in Red Hat OpenStack Newton, where pre-install and security policy scripts used insecure temporary files. A local user could exploi...

6.4CVSS6.6AI score0.00347EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2017/09/13 4:29 p.m.•11 views

PYSEC-2017-147

In Apache Spark 1.6.0 until 2.1.1, the launcher API performs unsafe deserialization of data received by its socket. This makes applications launched programmatically using the launcher API potentially vulnerable to arbitrary code execution by an attacker with access to any user account on the loc...

7.8CVSS8AI score0.00734EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2017/02/22 4:59 p.m.•11 views

PYSEC-2017-15

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS6.2AI score0.02141EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2015/08/24 2:59 p.m.•11 views

PYSEC-2015-22

contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...

5CVSS6.9AI score0.05163EPSS
Exploits0References14Affected Software1
PyPA
PyPA
•added 2014/04/23 3:55 p.m.•11 views

PYSEC-2014-1

The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 allows remote attackers to import and execute arbitrary Python modules by leveraging a view that constructs URLs using user input and a "dotted Python path."...

5.1CVSS7.4AI score0.0565EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2014/03/11 7:37 p.m.•11 views

PYSEC-2014-57

typeswidget.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce the immutable setting on unspecified content edit forms, which allows remote attackers to hide fields on the forms via a crafted URL...

4.3CVSS6.9AI score0.0119EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2014/03/11 7:37 p.m.•11 views

PYSEC-2014-55

zip.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce access restrictions when including content in a zip archive, which allows remote attackers to obtain sensitive information by reading a generated archive...

5.8CVSS6.6AI score0.0119EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2013/03/22 9:55 p.m.•11 views

PYSEC-2013-46

The v1 API in OpenStack Glance Essex 2012.1, Folsom 2012.2, and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obtain the operator's backend credentials via a request for a cached image...

3.5CVSS5.8AI score0.01356EPSS
Exploits0References12Affected Software1
PyPA
PyPA
•added 2011/06/06 7:55 p.m.•11 views

PYSEC-2011-16

plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011...

5.5CVSS7AI score0.01579EPSS
Exploits0References8Affected Software1
PyPA
PyPA
•added 2011/02/14 9:0 p.m.•11 views

PYSEC-2011-30

Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via forged AJAX requests that leverage a "combination of browser plugins...

6.8CVSS5.8AI score0.01589EPSS
Exploits1References18Affected Software1
PyPA
PyPA
•added 2008/12/17 6:30 p.m.•11 views

PYSEC-2008-6

Unspecified vulnerability in Trac before 0.11.2 allows attackers to cause a denial of service via unknown attack vectors related to "certain wiki markup."...

7.5CVSS6.7AI score0.01227EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 3 days ago•10 views

DB-GPT vulnerable to Cross-Site Request Forgery

In version 0.6.0 of eosphoros-ai/db-gpt, the uvicorn app created by dbgptserver uses an overly permissive instance of CORSMiddleware which sets the Access-Control-Allow-Origin to for all requests. This configuration makes all endpoints exposed by the server vulnerable to Cross-Site Request Forger...

8.1CVSS6AI score0.00228EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 3 days ago•10 views

Refuel Autolab Eval Injection vulnerability

An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its multilabel classification tasks handle provided CSV files. If a user creates a multilabel classification task using a maliciously crafted CSV file containing Python...

8.6CVSS6.6AI score0.00349EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2026/06/22 6:16 p.m.•10 views

PYSEC-2026-249

Starlette is a lightweight ASGI framework/toolkit. From 0.4.1 until 1.3.1, request.form accepts maxfields and maxpartsize to bound resource consumption while parsing form data. These limits are enforced for multipart/form-data, but silently ignored for application/x-www-form-urlencoded. An...

7.5CVSS5.8AI score0.00275EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/06/04 12:16 p.m.•10 views

PYSEC-0000-CVE-2026-10803

A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digestutils of the file mlflow/data/digestutils.py of the component Dataset Digest Computation. This manipulation causes use of weak hash. It is possible to launch the attack on the local host. The attack is...

3.6CVSS4.7AI score0.00103EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2026/06/01 9:16 a.m.•10 views

PYSEC-0000-CVE-2026-42359

A bug in Apache Airflow's XCom PATCH endpoint PATCH /api/v2/xcomEntries/key allowed an authenticated UI/API user with XCom write permission on a Dag to set XCom entries under reserved key names e.g. returnvalue that the matching POST endpoint already validated against FORBIDDENXCOMKEYS. The...

8.8CVSS5.8AI score0.0055EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/05/28 4:16 p.m.•10 views

PYSEC-0000-CVE-2026-48522

PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, PyJWKClient passes its uri argument directly to urllib.request.urlopen which uses Python stdlib's default OpenerDirector registering HTTPHandler, HTTPSHandler, FTPHandler, FileHandler, and DataHandler. There is currently no...

4.2CVSS5.9AI score0.00181EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/27 6:16 p.m.•10 views

PYSEC-0000-CVE-2026-44345

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, src/bentoml/internal/container/frontend/dockerfile/templates/basev2.j2 interpolates docker.baseimage raw with no escaping, newline filtering, or validation. A malicious...

8.8CVSS5.9AI score0.00317EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/27 6:16 p.m.•10 views

PYSEC-0000-CVE-2026-44346

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs.name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentom...

8.8CVSS5.9AI score0.00321EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/27 6:16 p.m.•10 views

PYSEC-2026-189

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, src/bentoml/internal/container/frontend/dockerfile/templates/basev2.j2 interpolates docker.baseimage raw with no escaping, newline filtering, or validation. A malicious...

8.8CVSS5.9AI score0.00317EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/26 9:16 p.m.•10 views

PYSEC-0000-CVE-2026-44896

Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and realier, in src/mistune/directives/image.py, the renderfigure function concatenates figclass and figwidth options directly into HTML attributes without escaping. This allows attribute injection and XSS even when...

6.1CVSS5.8AI score0.00198EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/05/01 9:16 a.m.•10 views

PYSEC-2026-205

An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0. Ironic Python Agent IPA sometimes executes grub-install from within a chroot of the deployed partition image, leading to code execution in the case of a malicious image...

8CVSS6AI score0.00837EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/04/18 7:16 a.m.•10 views

PYSEC-2026-18

In case of SQL errors, exception/stack trace of errors was exposed in API even if "api/exposestacktraces" was set to false. That could lead to exposing additional information to potential attacker. Users are recommended to upgrade to Apache Airflow 3.2.0, which fixes the issue...

7.5CVSS5.8AI score0.00449EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/04/08 9:17 p.m.•10 views

PYSEC-2026-36

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers e.g. Hash.update, this could lead to buffer overflows. This vulnerability is fixed in...

9.8CVSS5.9AI score0.00652EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/07 4:16 p.m.•10 views

PYSEC-2026-134

Strawberry GraphQL is a library for creating GraphQL APIs. Prior to 0.312.3, Strawberry GraphQL's WebSocket subscription handlers for both the graphql-transport-ws and legacy graphql-ws protocols allocate an asyncio.Task and associated Operation object for every incoming subscribe message without...

7.5CVSS5.8AI score0.00274EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/03/27 9:17 p.m.•10 views

PYSEC-2026-82

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.9.0, the Agentic Assistant feature in Langflow executes LLM-generated Python code during its validation phase. Although this phase appears intended to validate generated component code, the...

9.9CVSS6.1AI score0.01426EPSS
Exploits1References16Affected Software1
PyPA
PyPA
•added 2026/03/11 8:16 p.m.•10 views

PYSEC-2026-140

Tornado is a Python web framework and asynchronous networking library. In versions of Tornado prior to 6.5.5, the only limit on the number of parts in multipart/form-data is the maxbodysize setting default 100MB. Since parsing occurs synchronously on the main thread, this creates the possibility ...

8.7CVSS7.3AI score0.00375EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/03/09 8:16 p.m.•10 views

PYSEC-2026-97

A vulnerability in the filestring function of the nltk.util module in nltk version 3.9.2 allows arbitrary file read due to improper validation of input paths. The function directly opens files specified by user input without sanitization, enabling attackers to access sensitive system files by...

8.6CVSS7.4AI score0.00428EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2026/03/09 4:16 p.m.•10 views

PYSEC-2026-84

An issue pertaining to CWE-312: Cleartext Storage of Sensitive Information was discovered in lesspass lesspass v9.6.9 which allows attackers to obtain sensitive information...

6.5CVSS5.8AI score0.00167EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/03/05 8:16 p.m.•10 views

PYSEC-2026-83

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. In version 1.0.9 and prior, LangGraph checkpointers can load msgpack-encoded checkpoints that reconstruct Python objects during deserialization. If an attacker can...

7.2CVSS5.8AI score0.05219EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/02/27 10:16 p.m.•10 views

PYSEC-2026-65

Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, the redirecttotarget function in Gradio's OAuth flow accepts an unvalidated targeturl query parameter, allowing redirection to arbitrary external URLs. This affects the /logout and /login/callback...

4.7CVSS5.9AI score0.00232EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/02/06 8:16 p.m.•10 views

PYSEC-2026-74

A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security TLS authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to perform administrative operations, including listing...

9.8CVSS5.7AI score0.05431EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2026/02/03 3:16 p.m.•10 views

PYSEC-2026-42

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.The django.contrib.auth.handlers.modwsgi.checkpassword function for authentication via modwsgi allows remote attackers to enumerate users via a timing attack.Earlier, unsupported Django series such as 5.0.x,...

5.3CVSS5.8AI score0.00713EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•10 views

PYSEC-2025-216

Hugging Face Transformers HuBERT convertconfig Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the...

7.8CVSS7.6AI score0.00278EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•10 views

PYSEC-2025-214

Hugging Face Transformers SEW convertconfig Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the targe...

7.8CVSS7.6AI score0.00278EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/19 6:15 p.m.•10 views

PYSEC-2025-125

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0, if an arbitrary path is specified in the request body's fspath, the server serializes the Flow object into JSON and creates/overwrites a file at that path. There is no path restriction,...

7.1CVSS5.9AI score0.03631EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2025/11/12 9:15 p.m.•10 views

PYSEC-2025-210

An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop can cause torch.profiler.profile PythonTracer to crash or hang during finalization, leading to a Denial of Service DoS...

3.3CVSS6.1AI score0.00112EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2025/09/09 12:15 a.m.•10 views

PYSEC-2025-141

MONAI Medical Open Network for AI is an AI toolkit for health care imaging. In versions up to and including 1.5.0, in modeldict = torch.loadfullpath, maplocation=torch.devicedevice, weightsonly=True in monai/bundle/scripts.py , weightsonly=True is loaded securely. However, insecure loading method...

8.8CVSS5.8AI score0.00684EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2025/07/23 4:15 p.m.•10 views

PYSEC-2025-137

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

4.8CVSS5.9AI score0.00576EPSS
Exploits3References3Affected Software1
PyPA
PyPA
•added 2025/06/19 9:15 p.m.•10 views

PYSEC-2025-67

A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerability affects the function os.path.join of the file markdown/server.py. The manipulation of the argument file.filename leads to path traversal. The exploit has been disclosed to the public and may be used...

9.8CVSS6.6AI score0.00662EPSS
Exploits1References8Affected Software1
PyPA
PyPA
•added 2025/06/17 7:15 a.m.•10 views

PYSEC-2025-64

A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0.5.5. Affected is the function createworkflow of the file pythona2a/agentflow/server/api.py. The manipulation leads to path traversal. Upgrading to version 0.5.6 is able to address this issue. It is recommend...

9.8CVSS6.8AI score0.00726EPSS
Exploits1References12Affected Software1
PyPA
PyPA
•added 2025/06/10 4:15 p.m.•10 views

PYSEC-2025-79

Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions prior to 2.4.10 or prior to 1.6.32 are potentially affected. Due to insufficient security configuration of the Jinja2 templating feature used in computed fields, custom links, etc. in Nautobot, a...

7.1CVSS5.8AI score0.00303EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2025/05/31 1:15 a.m.•10 views

PYSEC-2025-44

django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask0 in models.py...

5.1CVSS7AI score0.00171EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2025/05/26 7:15 a.m.•10 views

PYSEC-2025-45

A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic. Affected by this issue is the function load of the file pypickle/pypickle.py. The manipulation leads to deserialization. Local access is required to approach this attack. The exploit has been disclosed to th...

7.8CVSS6AI score0.00265EPSS
Exploits1References15Affected Software1
PyPA
PyPA
•added 2025/05/26 5:15 a.m.•10 views

PYSEC-2025-176

A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This affects the function MDLImporter::InternReadFile3DGSMDL345 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation leads to out-of-bounds read. Local access is required to approac...

5.5CVSS4.7AI score0.00208EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2025/05/14 11:15 p.m.•10 views

PYSEC-2025-124

Label Studio is a multi-type data labeling and annotation tool. A vulnerability in versions prior to 1.18.0 allows an attacker to inject a malicious script into the context of a web page, which can lead to data theft, session hijacking, unauthorized actions on behalf of the user, and other attack...

7.6CVSS5.8AI score0.0054EPSS
Exploits1References1Affected Software1
Total number of security vulnerabilities5000