Lucene search
K
PypaMost viewed

5612 matches found

PyPA
PyPA
•added 2023/03/14 5:15 a.m.•13 views

PYSEC-2023-315

SAP Business Object Adaptive Job Server - versions 420, 430, allows remote execution of arbitrary commands on Unix, when program objects execution is enabled, to authenticated users with scheduling rights, using the BI Launchpad, Central Management Console or a custom application based on the...

9CVSS7.6AI score0.00926EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2023/01/31 10:15 a.m.•13 views

PYSEC-2023-5

Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database. This problem is fixed from version 0.13....

8.8CVSS7AI score0.01245EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2022/06/23 5:15 p.m.•13 views

PYSEC-2022-210

An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still run Salt commands when their account is locked. This affects both local shell accounts with an...

8.8CVSS6.9AI score0.01878EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2020/11/16 12:15 p.m.•13 views

PYSEC-2020-261

A weak robustness vulnerability exists in the AWS Encryption SDKs for Java, Python, C and Javalcript prior to versions 2.0.0. Due to the non-committing property of AES-GCM and other AEAD ciphers such as AES-GCM-SIV or XChaCha20Poly1305 used by the SDKs to encrypt messages, an attacker can craft a...

8.1CVSS7.2AI score0.00394EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2020/07/27 6:15 p.m.•13 views

PYSEC-2020-264

In "I hate money" before version 4.1.5, an authenticated member of one project can modify and delete members of another project, without knowledge of this other project's private code. This can be further exploited to access all bills of another project without knowledge of this other project's...

4.9CVSS6.8AI score0.01029EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2020/07/10 9:15 p.m.•13 views

PYSEC-2020-39

Django Two-Factor Authentication before 1.12, stores the user's password in clear text in the user session base64-encoded. The password is stored in the session when the user submits their username and password, and is removed once they complete authentication by entering a two-factor...

5.4CVSS7.3AI score0.00579EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2019/06/30 11:15 p.m.•13 views

PYSEC-2019-257

http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...

6.5CVSS6.8AI score0.02115EPSS
Exploits1References7
PyPA
PyPA
•added 2017/07/17 1:18 p.m.•13 views

PYSEC-2017-85

txAWS all current versions fail to perform complete certificate verification resulting in vulnerability to MitM attacks and information disclosure...

5.9CVSS6.8AI score0.00746EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/06/03 2:16 p.m.•12 views

PYSEC-2026-198

An issue was discovered in Django 5.2 before 5.2.15 and 6.0 before 6.0.6.django.utils.cache.hasvaryheader in Django does not strip leading or trailing whitespace from Vary response header values before comparison, which allows remote attackers to read cached responses via requests to URLs whose...

5.3CVSS5.4AI score0.00354EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/06/02 10:16 p.m.•12 views

PYSEC-2026-203

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does...

6.1CVSS5.4AI score0.00149EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/06/01 5:17 p.m.•12 views

PYSEC-0000-CVE-2026-8643

pip would treat consolescripts and guiscripts as paths instead of file names without sanitizing the resolved absolute path to the installation directory, leading to entry points being installed outside the installation directory...

5.5CVSS5.5AI score0.0032EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/06/01 9:16 a.m.•12 views

PYSEC-2026-172

A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking e.g. nested password / token / secret / apikey keys inside a JSON template structure to be bypassed when the rendered field exceeded core maxtemplatedfieldlength: Airflow stringified the structure befor...

7.5CVSS5.8AI score0.00586EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/06/01 9:16 a.m.•12 views

PYSEC-0000-CVE-2026-42252

Apache Airflow's official documentation at core-concepts/dag-run.html "Passing Parameters when triggering Dags" showed a verbatim BashOperatorbashcommand="echo value: dagrun.conf'conf1' " example without any quoting / sanitization warning. Dag authors who copied the pattern verbatim into...

9.1CVSS5.8AI score0.00369EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/06/01 9:16 a.m.•12 views

PYSEC-2026-171

Apache Airflow's JWTRefreshMiddleware set the JWT auth cookie without the Secure flag, so deployments running the Airflow API server behind an HTTPS-terminating reverse proxy e.g. nginx / Envoy / a managed load balancer that terminates TLS and forwards plaintext to the API server, the default...

5.9CVSS5.9AI score0.00265EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/06/01 8:16 a.m.•12 views

PYSEC-2026-173

A bug in the GET /api/v2/connections/connectionid REST API endpoint in Apache Airflow allowed an authenticated UI/API user with Connection-read permission to retrieve secrets stored in a Connection's extra JSON blob under field names not present in the redaction allowlist DEFAULTSENSITIVEFIELDS —...

6.5CVSS5.8AI score0.0041EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/05/28 4:16 p.m.•12 views

PYSEC-2026-176

PyJWT is a JSON Web Token implementation in Python. From 2.9.0 to 2.12.1, there is a verifier-side algorithm allow-list bypass when jwt.decode or jwt.decodecomplete are called with a PyJWK key. The token header alg is checked against the caller-supplied algorithms allow-list, but signature...

5.4CVSS5.8AI score0.00127EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/05/27 8:16 p.m.•12 views

PYSEC-0000-CVE-2026-44681

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.12 and 1.7.1, an unauthenticated open redirect in Authlib's OpenIDImplicitGrant and OpenIDHybridGrant authorization endpoint lets a remote attacker cause the authorization server to issue an HTTP 302 to an...

6.1CVSS5.8AI score0.00203EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•12 views

PYSEC-2026-156

Weblate is a web based localization tool. In versions prior to 5.17, the webhook add-on did not utilize existing SSRF protections. This issue has been fixed in version 5.17. If developers are unable to update immediately, they can disable the webhook add-on as a workaround...

4.1CVSS5.7AI score0.00275EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•12 views

PYSEC-2026-154

Weblate is a web based localization tool. In versions prior to 5.17, the project backup didn't filter Git and Mercurial configuration files which could lead to remote code execution under certain circumstances. This issue has been fixed in version 5.17. If developers are unable to update...

8CVSS6.4AI score0.00708EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/07 8:16 p.m.•12 views

PYSEC-2026-70

JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust server memory by sending crafted JWE tokens with ZIP compression. The existing patch for CVE-2024-28102 limits input token size to 250KB but does not validate th...

6.8CVSS6.7AI score0.0098EPSS
Exploits2References1Affected Software1
PyPA
PyPA
•added 2026/04/07 3:17 p.m.•12 views

PYSEC-2026-52

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30.Add permissions on inline model instances were not validated on submission offorged POST data in GenericInlineModelAdmin.Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluated and...

9.8CVSS5.8AI score0.00458EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/07 7:16 a.m.•12 views

PYSEC-2026-170

In parisneo/lollms version 2.1.0, the application's session management is vulnerable to improper access control due to the use of a weak secret key for signing JSON Web Tokens JWT. This vulnerability allows an attacker to perform an offline brute-force attack to recover the secret key. Once the...

9.8CVSS7.3AI score0.0054EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2026/04/06 6:16 p.m.•12 views

PYSEC-2026-72

Kedro is a toolbox for production-ready data science. Prior to 1.3.0, Kedro allows the logging configuration file path to be set via the KEDROLOGGINGCONFIG environment variable and loads it without validation. The logging configuration schema supports the special key, which enables arbitrary...

9.8CVSS6.6AI score0.00714EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/03/24 2:16 p.m.•12 views

PYSEC-2026-80

Langflow is a tool for building and deploying AI-powered agents and workflows. In versions 1.0.0 through 1.8.1, the /api/v1/files/images/flowid/filename endpoint serves image files without any authentication or ownership check. Any unauthenticated request with a known flowid and filename returns...

7.5CVSS5.8AI score0.05838EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/03/17 11:16 a.m.•12 views

PYSEC-2026-17

Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop HITL endpoints that allows any authenticated task instance to read, approve, or reject HITL workflows belonging to any other task instance.Users are recommended to upgrade to...

8.1CVSS5.8AI score0.00409EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/02/26 2:16 a.m.•12 views

PYSEC-2026-6

Agenta is an open-source LLMOps platform. In Agenta-API prior to version 0.48.1, a Python sandbox escape vulnerability existed in Agenta's custom code evaluator. Agenta used RestrictedPython as a sandboxing mechanism for user-supplied evaluator code, but incorrectly whitelisted the numpy package ...

9.9CVSS6.3AI score0.00497EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/02/16 4:15 a.m.•12 views

PYSEC-2026-91

A security vulnerability has been detected in MindsDB up to 25.14.1. This vulnerability affects the function clearfilename of the file mindsdb/utilities/security.py of the component File Upload. Such manipulation leads to server-side request forgery. The attack may be performed from remote. The...

7.3CVSS6AI score0.00226EPSS
Exploits1References8Affected Software1
PyPA
PyPA
•added 2026/02/09 11:16 a.m.•12 views

PYSEC-2026-12

Apache Airflow versions 3.0.0 - 3.1.7, has vulnerability that allows authenticated UI users with permission to one or more specific Dags to view import errors generated by other Dags they did not have access to. Users are advised to upgrade to 3.1.7 or later, which resolves this issue...

6.5CVSS5.8AI score0.00739EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/02/09 11:16 a.m.•12 views

PYSEC-2026-11

Apache Airflow versions 3.1.0 through 3.1.6 contain an authorization flaw that can allow an authenticated user with custom permissions limited to task access to view task logs without having task log access. Users are recommended to upgrade to Apache Airflow 3.1.7 or later, which resolves this...

6.5CVSS5.8AI score0.00382EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/02/06 10:16 p.m.•12 views

PYSEC-2026-95

NiceGUI is a Python-based UI framework. Prior to 3.7.0, NiceGUI's FileUpload.name property exposes client-supplied filename metadata without sanitization, enabling path traversal when developers use the pattern UPLOADDIR / file.name. Malicious filenames containing ../ sequences allow attackers to...

7.5CVSS6.5AI score0.03212EPSS
Exploits3References3Affected Software1
PyPA
PyPA
•added 2026/02/03 3:16 p.m.•12 views

PYSEC-2026-46

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.FilteredRelation is subject to SQL injection in column aliases via control characters, using a suitably crafted dictionary, with dictionary expansion, as the kwargs passed to QuerySet methods annotate, aggregate...

5.4CVSS7.3AI score0.00754EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/02/02 11:16 p.m.•12 views

PYSEC-2026-138

A stored cross-site scripting XSS vulnerability in the Forums module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS5.9AI score0.00235EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/01/30 7:16 p.m.•12 views

PYSEC-2026-62

SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the topostgis function being used to write GeoDataFrames to a PostgreSQL database...

8.6CVSS5.8AI score0.00385EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2026/01/16 11:16 a.m.•12 views

PYSEC-2026-9

In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed coremaxtemplatedfieldlength, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include...

7.5CVSS5.8AI score0.00586EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/01/12 11:15 p.m.•12 views

PYSEC-2026-75

LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service ReDoS vulnerability in the MRKLOutputParser.parse method libs/langchain/langchain/agents/mrkl/outputparser.py. The parser applies a backtracking-prone regular expression when extracting tool actions from...

8.7CVSS6AI score0.0041EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2025/12/31 2:15 a.m.•12 views

PYSEC-2025-90

cbor2 provides encoding and decoding for the Concise Binary Object Representation CBOR serialization format. Starting in version 3.0.0 and prior to version 5.8.0, whhen a CBORDecoder instance is reused across multiple decode operations, values marked with the shareable tag 28 persist in memory an...

7.5CVSS7.1AI score0.00423EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2025/12/16 1:15 a.m.•12 views

PYSEC-2025-233

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to retrieve user notification settings or list all users via API. Version 5.15 fixes the issue...

4.3CVSS5.8AI score0.00235EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/12/15 2:15 p.m.•12 views

PYSEC-2025-110

An issue was discovered in allauth-django before 65.13.0. IdP: marking a user as isactive=False after having handed tokens for that user while the account was still active had no effect. Fixed the access/refresh tokens are now rejected...

5.4CVSS5.8AI score0.00138EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/12/14 11:15 p.m.•12 views

PYSEC-2025-134

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is...

6.1CVSS4.2AI score0.00392EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2025/12/08 7:15 p.m.•12 views

PYSEC-2025-89

NUT-14 allows cashu tokens to be created with a preimage hash. However, nutshell cashubtc/nuts before 0.18.0 do not validate the size of preimage when the token is spent. The preimage is stored by the mint and attacker can exploit this vulnerability to fill the mint's db nd disk with arbitrary da...

9.1CVSS5.9AI score0.00358EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2025/10/05 1:15 a.m.•12 views

PYSEC-2025-155

A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. This manipulation causes allocation of resources. The attack is restricted to local execution. The exploit has been...

5.5CVSS5.4AI score0.00188EPSS
Exploits1References5Affected Software1
PyPA
PyPA
•added 2025/09/26 8:15 a.m.•12 views

PYSEC-2025-85

Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to sensitive connection fields to Connection Editing Users, effectively applying a "write-only" model for sensitive values.In Airflow 3.0.3, this model was unintentional...

6.5CVSS8AI score0.00903EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2025/09/19 9:15 a.m.•12 views

PYSEC-2025-76

The Keras Model.loadmodelmethod can be exploited to achieve arbitrary code execution, even with safemode=True.One can create a specially crafted .kerasmodel archive that, when loaded via Model.loadmodel, will trigger arbitrary code to be executed. This is achieved by crafting a special config.jso...

8.6CVSS7.5AI score0.00186EPSS
Exploits0References2
PyPA
PyPA
•added 2025/09/17 11:15 a.m.•12 views

PYSEC-2025-152

An Improper Handling of Exceptional Conditions vulnerability in the ZIP archive scanning component of mmaitre314 picklescan allows a remote attacker to bypass security scans. This is achieved by crafting a ZIP archive containing a file with a bad Cyclic Redundancy Check CRC, which causes the...

9.8CVSS7.5AI score0.01428EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2025/07/22 5:15 p.m.•12 views

PYSEC-2025-102

Local File Inclusion in dagster.grpc.impl.getnotebookdata in Dagster 1.10.14 allows attackers with access to the gRPC server to read arbitrary files by supplying path traversal sequences in the notebookpath field of ExternalNotebookData requests, bypassing the intended extension-based check...

6.6CVSS5.9AI score0.00524EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2025/07/07 1:15 p.m.•12 views

PYSEC-2025-65

A path traversal vulnerability exists in run-llama/llamaindex versions 0.12.27 through 0.12.40, specifically within the encodeimage function in genericutils.py. This vulnerability allows an attacker to manipulate the imagepath input to read arbitrary files on the server, including sensitive syste...

7.5CVSS6.8AI score0.00545EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2025/06/10 4:15 p.m.•12 views

PYSEC-2025-74

Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions prior to 2.4.10 or prior to 1.6.32 are potentially affected. Due to insufficient security configuration of the Jinja2 templating feature used in computed fields, custom links, etc. in Nautobot, a...

7.1CVSS5.8AI score0.00303EPSS
Exploits0References5
PyPA
PyPA
•added 2025/05/30 7:15 p.m.•12 views

PYSEC-2025-55

vLLM is an inference and serving engine for large language models LLMs. Version 0.8.0 up to but excluding 0.9.0 have a Denial of Service ReDoS that causes the vLLM server to crash if an invalid regex was provided while using structured output. This vulnerability is similar to...

6.5CVSS7AI score0.00453EPSS
Exploits1References5Affected Software1
PyPA
PyPA
•added 2025/04/07 3:15 p.m.•12 views

PYSEC-2025-36

Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint. A remote and unauthenticated attacker can send crafted HTTP requests to execute arbitrarycode...

9.8CVSS7.9AI score0.99972EPSS
Exploits33References4Affected Software1
PyPA
PyPA
•added 2025/04/02 1:15 p.m.•12 views

PYSEC-2025-14

An issue was discovered in Django 5.1 before 5.1.8 and 5.0 before 5.0.14. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.views.LoginView, django.contrib.auth.views.LogoutView, and django.views.i18n.setlanguage are subject to a potential denial-of-service attack v...

7.5CVSS7AI score0.00997EPSS
Exploits1References5Affected Software1
Total number of security vulnerabilities5000