Lucene search
K
PypaMost viewed

5624 matches found

PyPA
PyPA
•added 2025/03/20 10:15 a.m.•10 views

PYSEC-2025-222

vllm-project vllm version 0.6.0 contains a vulnerability in the AsyncEngineRPCServer RPC server entrypoints. The core functionality runserverloop calls the function makehandlercoro, which directly uses cloudpickle.loads on received messages without any sanitization. This can result in remote code...

9.8CVSS7.4AI score0.01274EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2025/03/20 10:15 a.m.•10 views

PYSEC-2025-83

A directory traversal vulnerability exists in modelscope/agentscope version 0.0.4. An attacker can exploit this vulnerability to read any local JSON file by sending a crafted POST request to the /read-examples endpoint...

7.5CVSS7.2AI score0.01211EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2025/03/19 4:15 p.m.•10 views

PYSEC-2025-63

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. When vLLM is configured to use Mooncake, unsafe deserialization exposed directly over ZMQ/TCP on all network interfaces will allow attackers to execute remote code on distributed hosts. This is a remote code...

9CVSS8.4AI score0.0082EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2025/03/19 4:15 p.m.•10 views

PYSEC-2025-223

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. The outlines library is one of the backends used by vLLM to support structured output a.k.a. guided decoding. Outlines provides an optional cache for its compiled grammars on the local filesystem. This cache has...

6.5CVSS6.6AI score0.00421EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2025/03/11 9:15 a.m.•10 views

PYSEC-2025-122

The Keras Model.loadmodel function permits arbitrary code execution, even with safemode=True, through a manually constructed, malicious .keras archive. By altering the config.json file within the archive, an attacker can specify arbitrary Python modules and functions, along with their arguments, ...

9.8CVSS6.7AI score0.02803EPSS
Exploits3References3Affected Software1
PyPA
PyPA
•added 2025/03/10 2:15 p.m.•10 views

PYSEC-2025-159

A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function Assimp::BaseImporter::ConvertToUTF8 of the file BaseImporter.cpp of the component File Handler. The manipulation leads to heap-based buffer overflow. The...

9.8CVSS6.8AI score0.00485EPSS
Exploits1References5Affected Software1
PyPA
PyPA
•added 2025/03/03 5:15 p.m.•10 views

PYSEC-2025-24

Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the /api/remove endpoint takes a URL query parameter that allows an image to be fetched, processed and returned. An attacker may be able to query this endpoint to view pictures hosted on the internal network of the rembg...

7.5CVSS6.7AI score0.00485EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2025/02/26 8:57 p.m.•10 views

Exfiltrates user cookies to hardcoded server endpoint during normal operations

Published in 2020, the autodzee package is a Python librarythat bypasses Deezer API restrictions to download music.The package was found to exfiltrate user data to a hardcoded server,which could be used for malicious purposes...

6.7AI score
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/02/26 3:15 p.m.•10 views

PYSEC-2025-18

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

5.3CVSS6.9AI score0.01592EPSS
Exploits2References3Affected Software1
PyPA
PyPA
•added 2025/02/21 10:15 p.m.•10 views

PYSEC-2025-30

vyper is a Pythonic Smart Contract Language for the EVM. Multiple evaluation of a single expression is possible in the iterator target of a for loop. While the iterator expression cannot produce multiple writes, it can consume side effects produced in the loop body e.g. read a storage variable...

7.5CVSS6.8AI score0.00412EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2025/01/23 1:15 a.m.•10 views

PYSEC-2025-130

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovgpathaddpath...

6.5CVSS5.7AI score0.00334EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2025/01/14 7:15 p.m.•10 views

PYSEC-2025-1

An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial-of-service attack. The undocumented and private functions cleanipv6address and...

7.5CVSS6.9AI score0.01854EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2024/12/12 2:2 a.m.•10 views

PYSEC-2024-297

OpenCTI is an open-source cyber threat intelligence platform. In versions below 6.2.18, because the function to limit the rate of OTP does not exist, an attacker with valid credentials or a malicious user who commits internal fraud can break through the two-factor authentication and hijack the...

8.1CVSS5.8AI score0.00578EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2024/12/10 7:19 p.m.•10 views

A number of releases of ultralytics contained malicious crypto miner software.

Ultralytics has identified a supply chain attackaffecting affecting multiple versions of the ultralytics package.The compromised versions contained unauthorized code thatdownloaded and executed cryptocurrency mining softwarewhen instantiating YOLO models.This code was injected into the PyPI relea...

8.7CVSS7.2AI score
Exploits0References7Affected Software1
PyPA
PyPA
•added 2024/12/10 5:15 a.m.•10 views

PYSEC-2024-159

Versions of the package luigi before 3.6.0 are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip due to improper destination file path validation in the extractpackagesarchive function...

8.6CVSS7AI score0.01096EPSS
Exploits0References5Affected Software1
PyPA
PyPA
•added 2024/11/25 7:30 p.m.•10 views

aiocpa 0.1.13 contains credential harvesting code

aiocpa is a user-facing library for generating color gradients of text.Version 0.1.13 introduced obfuscated, malicious code targetingCrypto Pay users, forwarding client credentials to a remote Telegram bot.All versions have been removed from PyPI...

7.3AI score
Exploits0References2Affected Software1
PyPA
PyPA
•added 2024/11/24 4:15 p.m.•10 views

PYSEC-2024-187

virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...

9.8CVSS7.6AI score0.01557EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2024/11/22 10:15 p.m.•10 views

PYSEC-2024-227

Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in...

8.8CVSS7.7AI score0.06898EPSS
Exploits4References2Affected Software1
PyPA
PyPA
•added 2024/11/08 10:15 p.m.•10 views

PYSEC-2024-303

wasm3 139076a is vulnerable to Denial of Service DoS...

7.5CVSS5.8AI score0.00441EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2024/11/06 3:15 p.m.•10 views

PYSEC-2024-183

CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Authentication method confusion allows logging in as the built-in root user from an external service. The built-in root user up until 6.24.1 is generated in a weak manner, cannot...

8.7CVSS7.1AI score0.00472EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2024/10/31 2:15 p.m.•10 views

PYSEC-2024-279

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS6.4AI score0.01023EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2024/10/09 6:15 p.m.•10 views

PYSEC-2024-311

Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a wasmtime::Engine's internal type registry was susceptible to double-unregistration bugs due to a race condition, leading to panics and potentially type registry corruption. That registry corruption...

2.9CVSS5.7AI score0.00152EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2024/09/12 1:15 p.m.•10 views

PYSEC-2024-81

An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server. For databases created with the SharePoint engine, an ‘INSERT’ query can be used for list item creation. If such a...

8.8CVSS7.9AI score0.00864EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2024/09/12 1:15 p.m.•10 views

PYSEC-2024-78

An arbitrary code execution vulnerability exists in versions 23.12.4.0 up to 24.7.4.1 of the MindsDB platform, when the ChromaDB integration is installed on the server. If a specially crafted ‘INSERT’ query containing Python code is run against a database created with the ChromaDB engine, the cod...

8.8CVSS7.9AI score0.00844EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2024/09/04 8:15 p.m.•10 views

PYSEC-2024-90

Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In Indico prior to version 3.3.4, corresponding to Flask-Multipass prior to version 0.5.5, there is a Cross-Site-Scripting vulnerability during account creation when redirecting to the...

6.1CVSS7AI score0.00361EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2024/08/18 7:15 p.m.•10 views

PYSEC-2024-260

Withdrawn as duplicate of PYSEC-2024-71. A vulnerability in corydolphin/flask-cors version 4.0.1 allows the Access-Control-Allow-Private-Network CORS header to be set to true by default. This behavior can expose private network resources to unauthorized external access, leading to significant...

7.5CVSS6.7AI score0.00677EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2024/07/10 5:15 a.m.•10 views

PYSEC-2024-59

An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. getsupportedlanguagevariant was subject to a potential denial-of-service attack when used with very long strings containing specific characters...

7.5CVSS8.2AI score0.28637EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2024/07/10 5:15 a.m.•10 views

PYSEC-2024-58

An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes of the django.core.files.storage.Storage base class, when they override generatefilename without replicating the file-path validations from the parent class, potentially allow directory traversal via certain...

4.3CVSS8.3AI score0.01008EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2024/06/30 4:15 p.m.•10 views

PYSEC-2024-176

A reflected Cross-Site Scripting XSS vulnerability was identified in zenml-io/zenml version 0.57.1. The vulnerability exists due to improper neutralization of input during web page generation, specifically within the survey redirect parameter. This flaw allows an attacker to redirect users to a...

6.1CVSS6AI score0.00388EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2024/06/07 7:15 p.m.•10 views

PYSEC-2024-76

An XML External Entity XXE vulnerability in the ebookmeta.getmetadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service DoS via crafted XML input...

7.5CVSS6.8AI score0.00498EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2024/06/06 7:16 p.m.•10 views

PYSEC-2024-108

A path traversal vulnerability exists in the parisneo/lollms application, affecting version 9.4.0 and potentially earlier versions, but fixed in version 5.9.0. The vulnerability arises due to improper validation of file paths between Windows and Linux environments, allowing attackers to traverse...

7.5CVSS6.4AI score0.00881EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2024/06/06 7:15 p.m.•10 views

PYSEC-2024-193

An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to improper authentication mechanisms, an attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for unauthorized...

3.3CVSS7.1AI score0.00241EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2024/05/20 8:15 a.m.•10 views

PYSEC-2024-258

In scrapy/scrapy, an issue was identified where the Authorization header is not removed during redirects that only change the scheme e.g., HTTPS to HTTP but remain within the same domain. This behavior contravenes the Fetch standard, which mandates the removal of Authorization headers in...

7.5CVSS6.3AI score0.00682EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2024/05/14 4:17 p.m.•10 views

PYSEC-2024-264

Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs.Users are recommended to upgrade to version 2.9.1, which fixes this issue...

5.4CVSS6AI score0.01559EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2024/05/06 4:15 p.m.•10 views

PYSEC-2024-307

wasm3 v0.5.0 was discovered to contain an out-of-bound memory read which leads to segmentation fault via the function "main" in wasm3/platforms/app/main.c...

7.5CVSS5.8AI score0.00515EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2024/05/06 3:15 p.m.•10 views

PYSEC-2024-309

wasm3 v0.5.0 was discovered to contain a global buffer overflow which leads to segmentation fault via the function "PreserveRegisterIfOccupied" in wasm3/source/m3compile.c...

7.5CVSS6AI score0.00627EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2024/05/06 3:15 p.m.•10 views

PYSEC-2024-308

wasm3 v0.5.0 was discovered to contain a heap buffer overflow which leads to segmentation fault via the function "DeallocateSlot" in wasm3/source/m3compile.c...

9.8CVSS6AI score0.007EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2024/05/06 12:15 a.m.•10 views

PYSEC-2024-185

Nebari through 2024.4.1 prints the temporary Keycloak root password...

4.8CVSS7AI score0.00353EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2024/05/05 8:15 p.m.•10 views

PYSEC-2024-255

Gradio before 4.20 allows credential leakage on Windows...

7.5CVSS7AI score0.00567EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2024/05/01 3:15 a.m.•10 views

PYSEC-2024-285

lunasvg v2.3.9 was discovered to contain a segmentation violation via the component compositionsolidsourceover...

9.8CVSS5.7AI score0.00847EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2024/05/01 3:15 a.m.•10 views

PYSEC-2024-282

lunasvg v2.3.9 was discovered to contain a stack-overflow at lunasvg/source/element.h...

5.5CVSS5.8AI score0.00306EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2024/04/25 6:15 p.m.•10 views

PYSEC-2024-207

Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions 0.3.10 and prior, using the slice builtin can result in a double eval vulnerability when the buffer argument is either msg.data, self.code or .code and either the start or length arguments have side-effects...

5.3CVSS7.1AI score0.00451EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2024/04/19 8:15 p.m.•10 views

PYSEC-2024-271

corydolphin/flask-cors is vulnerable to log injection when the log level is set to debug. An attacker can inject fake log entries into the log file by sending a specially crafted GET request containing a CRLF sequence in the request path. This vulnerability allows attackers to corrupt log files,...

5.3CVSS6.4AI score0.00574EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2024/03/27 6:15 a.m.•10 views

PYSEC-2024-49

Lektor before 3.3.11 does not sanitize DB path traversal. Thus, shell commands might be executed via a file that is added to the templates directory, if the victim's web browser accesses an untrusted website that uses JavaScript to send requests to localhost port 5000, and the web browser is...

9.1CVSS7AI score0.00842EPSS
Exploits0References7Affected Software1
PyPA
PyPA
•added 2024/02/23 10:15 p.m.•10 views

PYSEC-2024-241

Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset. This issue leads to a client-side RCE when running the recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over dataset table fields...

9.6CVSS6.3AI score0.00651EPSS
Exploits1References5Affected Software1
PyPA
PyPA
•added 2024/02/07 5:15 p.m.•10 views

PYSEC-2024-150

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...

9.8CVSS6.8AI score0.01539EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2024/01/31 6:15 p.m.•10 views

PYSEC-2024-29

OctoPrint is a web interface for 3D printer.s OctoPrint versions up until and including 1.9.3 contain a vulnerability that allows malicious admins to change the password of other admin accounts, including their own, without having to repeat their password. An attacker who managed to hijack an adm...

4.9CVSS6.8AI score0.00519EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2024/01/30 9:15 p.m.•10 views

PYSEC-2024-151

Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. Vyper compiler allows passing a value in builtin rawcall even if the call is a delegatecall or a staticcall. But in the context of delegatecall and staticcall the handling of value is not possible due to the semantics o...

5.3CVSS6.7AI score0.00485EPSS
Exploits3References3Affected Software1
PyPA
PyPA
•added 2024/01/30 1:16 a.m.•10 views

PYSEC-2024-25

DuckDB =0.9.2 and DuckDB extension-template =0.9.2 are vulnerable to malicious extension injection via the custom extension feature...

9.8CVSS7.4AI score
Exploits0References2Affected Software1
PyPA
PyPA
•added 2024/01/11 3:15 a.m.•10 views

PYSEC-2024-5

cdo-local-uuid project provides a specialized UUID-generating function that can, on user request, cause a program to generate deterministic UUIDs. An information leakage vulnerability is present in cdo-local-uuid at version 0.4.0, and in case-utils in unpatched versions matching the pattern 0.x.0...

2.8CVSS6.7AI score0.0041EPSS
Exploits1References15Affected Software1
Total number of security vulnerabilities5000