Lucene search
+L

7044 matches found

pypa
pypa
added 2026/07/07 2:34 p.m.6 views

PheonixAppAPI has visible Encoding Maps

ImpactThis is a kind of moderate issue. The impact is not big for normal users but can be for users who want to secure their code/files/etc.The issue is that the map of encoding/decoding languages are visible in code. PatchesThe Problem was patched in 0.2.5, so you should try to upgrade to the...

5.3CVSS6AI score0.0017EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

TorchServe gRPC Port Exposure

ImpactThe two gRPC ports 7070 and 7071, are not bound to localhost by default, so when TorchServe is launched, these two interfaces are bound to all interfaces. Customers using PyTorch inference Deep Learning Containers DLC through Amazon SageMaker and EKS are not affected. PatchesThis issue in...

8.8CVSS6AI score0.00631EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Aim Stored Cross-site Scripting Vulnerability

A stored cross-site scripting XSS vulnerability exists in aimhubio/aim version 3.19.3. The vulnerability arises from the improper neutralization of input during web page generation, specifically in the logs-tab for runs. The terminal output logs are displayed using the dangerouslySetInnerHTML...

7.2CVSS5.8AI score0.00282EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Ankitects Anki arbitrary script execution vulnerability

An arbitrary script execution vulnerability exists in the MPV functionality of Ankitects Anki 24.04. A specially crafted flashcard can lead to a arbitrary code execution. An attacker can send malicious flashcard to trigger this vulnerability...

9.6CVSS6.4AI score0.15067EPSS
Exploits1References8Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

ops leaking secrets if `subprocess.CalledProcessError` happens with a `secret-*` CLI command

SummaryThe issue here is that we pass the secret content as one of the args via CLI. This issue may affect any of our charms that are using: Juju =3.0, Juju secrets and not correctly capturing and processing subprocess.CalledProcessError.There are two points that may log this command, in differen...

6.9CVSS5.9AI score0.00198EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.4 views

OpenStack Nova vulnerable to unauthorized access to potentially sensitive data

In OpenStack Nova before 27.4.1, 28 before 28.2.1, and 29 before 29.1.1, by supplying a raw format image that is actually a crafted QCOW2 image with a backing file path or VMDK flat image with a descriptor file path, an authenticated user may convince systems to return a copy of the referenced...

6.5CVSS5.9AI score0.00941EPSS
Exploits1References10Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.4 views

Sentry vulnerable to stored Cross-Site Scripting (XSS)

ImpactAn unsanitized payload sent by an Integration platform integration allows the storage of arbitrary HTML tags on the Sentry side. This payload could subsequently be rendered on the Issues page, creating a Stored Cross-Site Scripting XSS vulnerability. This vulnerability might lead to the...

7.1CVSS6.1AI score0.00467EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

twisted.web has disordered HTTP pipeline response

SummaryThe HTTP 1.0 and 1.1 server provided by twisted.web could process pipelined HTTP requests out-of-order, possibly resulting in information disclosure. PoC0. Start a fresh Debian container:shdocker run --workdir /repro --rm -it debian:bookworm-slim1. Install twisted and its dependencies:shap...

8.3CVSS7.2AI score0.00856EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Guardrails AI vulnerable to Improper Restriction of XML External Entity Reference

RAIL documents are an XML-based format invented by Guardrails AI to enforce formatting checks on LLM outputs. Guardrails users that consume RAIL documents from external sources are vulnerable to XXE, which may cause leakage of internal file data via the SYSTEM entity...

8.2CVSS5.9AI score0.00408EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Ankitects Anki LaTeX Blocklist Bypass vulnerability

A blocklist bypass vulnerability exists in the LaTeX functionality of Ankitects Anki 24.04. A specially crafted malicious flashcard can lead to an arbitrary file creation at a fixed path. An attacker can share a malicious flashcard to trigger this vulnerability...

4.3CVSS6.1AI score0.12111EPSS
Exploits1References9Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

LoLLMS vulnerable to Expected Behavior Violation

A path traversal vulnerability exists in the applysettings function of parisneo/lollms versions prior to 9.5.1. The sanitizepath function does not adequately secure the discussiondbname parameter, allowing attackers to manipulate the path and potentially write to important system folders...

7.3CVSS5.9AI score0.00265EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

Calibre-Web Cross Site Scripting (XSS)

In janeczku Calibre-Web 0.6.0 to 0.6.21, the editbookcomments function is vulnerable to Cross Site Scripting XSS due to improper sanitization performed by the cleanstring function. The vulnerability arises from the way the cleanstring function handles HTML sanitization...

5.4CVSS5.9AI score0.22894EPSS
Exploits4References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.3 views

Anki Latex Incomplete Blocklist Vulnerability

An vulnerability in the handling of Latex exists in Ankitects Anki 24.04. When Latex is sanitized to prevent unsafe commands, the verbatim package, which comes installed by default in many Latex distributions, has been overlooked. A specially crafted flashcard can lead to an arbitrary file read. ...

6.5CVSS6AI score0.11512EPSS
Exploits1References9Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

TensorFlow has segfault in array_ops.upper_bound

Impactarrayops.upperbound causes a segfault when not given a rank 2 tensor. PatchesWe have patched the issue in GitHub commit 915884fdf5df34aaedd00fc6ace33a2cfdefa586.The fix will be included in TensorFlow 2.13. We will also cherrypick this commit in TensorFlow 2.12.1. For more informationPlease...

8.7CVSS5.9AI score0.00429EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.4 views

[PUNCIA] [CWE-319] Cleartext Transmission of Sensitive Information via HTTP urls in `API_URLS`

ImpactAPIURLS is utilizing HTTP instead of HTTPS for communication that can lead to issues like Eavesdropping, Data Tampering, Unauthorized Data Access & MITM Attacks. ReferencesISSUEPATCH...

6.3CVSS5.9AI score0.0027EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Information Disclosure Vulnerability in Privacy Center of SERVER_SIDE_FIDES_API_URL

SERVERSIDEFIDESAPIURL is a server-side configuration environment variable used by the Fides Privacy Center to communicate with the Fides webserver backend. The value of this variable is a URL which typically includes a private IP address, private domain name, and/or port.This vulnerability allows...

5.3CVSS5.8AI score0.01114EPSS
Exploits1References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Red-DiscordBot vulnerable to Incorrect Authorization in commands API

ImpactDue to a bug in Red's Core API, 3rd-party cogs using the @commands.canmanagechannel command permission check without additional permission controls may authorize a user to run a command even when that user doesn't have permissions to manage a channel.None of the core commands or core cogs a...

6.9CVSS6AI score0.0041EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

yt-dlp File system modification and RCE through improper file-extension sanitization

Summaryyt-dlp does not limit the extensions of downloaded files, which could lead to arbitrary filenames being created in the download folder and path traversal on Windows. Since yt-dlp also reads config from the working directory and on Windows executables will be executed from the yt-dlp...

7.8CVSS6.3AI score0.00322EPSS
Exploits0References12Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Local File Inclusion in Solara

A Local File Inclusion LFI vulnerability was identified in widgetti/solara, in version 1.35.1, which was fixed in version 1.35.1. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../' when serving static files. ...

8.6CVSS7.3AI score0.02884EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Apache Superset vulnerable to improper SQL authorization

An SQL Injection vulnerability in Apache Superset exists due to improper neutralization of special elements used in SQL commands. Specifically, certain engine-specific functions are not checked, which allows attackers to bypass Apache Superset's SQL authorization. To mitigate this, a new...

9.8CVSS6AI score0.04433EPSS
Exploits2References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Vanna vulnerable to SQL Injection

vanna-ai/vanna version v0.3.4 is vulnerable to SQL injection in some file-critical functions such as pgreadfile. This vulnerability allows unauthenticated remote users to read arbitrary local files on the victim server, including sensitive files like /etc/passwd, by exploiting the exposed SQL...

8.7CVSS7.3AI score0.00604EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Inclusion of Untrusted polyfill.io Code Vulnerability in fides.js

NoteOn Thursday, June 27, 2024, Cloudflare and Namecheap intervened at a domain level to ensure polyfill.io and its subdomains could not resolve to the compromised service, rendering this vulnerability unexploitable.The following sections describe this vulnerability prior to the domain level...

9.8CVSS5.8AI score0.01427EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Sentry's Python SDK unintentionally exposes environment variables to subprocesses

ImpactThe bug in Sentry's Python SDK subprocess.checkoutput"env", env="TEST":"1"b'TEST=1\n'If you'd want to not pass any variables, you can set an empty dict: subprocess.checkoutput"env", env=b''However, the bug in Sentry SDK 2.8.0 causes all environment variables to be passed to the subprocesses...

5.3CVSS6AI score0.00198EPSS
Exploits0References13Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

lollms path traversal vulnerability allows overriding of config.yaml file, leading to RCE

A path traversal vulnerability in the /setpersonalityconfig endpoint of parisneo/lollms version 9.4.0 allows an attacker to overwrite the configs/config.yaml file. This can lead to remote code execution by changing server configuration properties such as forceacceptremoteaccess and...

7.4CVSS6.6AI score0.00444EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

zipp Denial of Service vulnerability

A Denial of Service DoS vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the...

6.9CVSS6.8AI score0.00236EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Weblate vulnerable to improper sanitization of project backups

ImpactWeblate didn't correctly validate filenames when restoring project backup. It may be possible to gain unauthorized access tofiles on the server using a crafted ZIP file. PatchesThis issue has been addressed in Weblate 5.6.2 via...

5.4CVSS5.9AI score0.00315EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

setuptools vulnerable to Command Injection via package URL

A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to code...

8.8CVSS7.6AI score0.01939EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

OpaMiddleware does not filter HTTP OPTIONS requests

SummaryHTTP OPTIONS requests are always allowed by OpaMiddleware, even when they lack authentication, and are passed through directly to the application.The maintainer uncertain whether this should be classed as a "bug" or "security issue" – but is erring on the side of "security issue" as an...

6.9CVSS5.9AI score0.00563EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.12 views

OpenStack Cinder, Glance, and Nova vulnerable to arbitrary file access

An issue was discovered in OpenStack Cinder through 24.0.0, Glance before 28.0.2, and Nova before 29.0.3. Arbitrary file access can occur via custom QCOW2 external data. By supplying a crafted QCOW2 image that references a specific data file path, an authenticated user may convince systems to...

7.1CVSS6AI score0.00835EPSS
Exploits0References17Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Aim denial of service vulnerability

A vulnerability in aimhubio/aim version 3.19.3 allows an attacker to cause an infinite loop by configuring the remote tracking server to point at itself. This results in the server endlessly connecting to itself, rendering it unable to respond to other connections...

8.7CVSS6AI score0.00573EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Cross-site Scripting in djangorestframework

Versions of the package djangorestframework before 3.15.2 are vulnerable to Cross-site Scripting XSS via the breaklongheaders template filter due to improper input sanitization before splitting and joining with tags...

6.1CVSS5.9AI score0.01133EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

pdoc embeds link to malicious CDN if math mode is enabled

ImpactDocumentation generated with pdoc --math linked to JavaScript files from polyfill.io.The polyfill.io CDN has been sold and now serves malicious code.Users who produce documentation with math mode should update immediately. All other users are unaffected. PatchesThis issue has been fixed in...

7.2CVSS5.9AI score0.03832EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Remote Code Execution in create_conda_env function in lollms

A remote code execution vulnerability exists in the createcondaenv function of the parisneo/lollms repository. The vulnerability arises from the use of shell=True in the subprocess.Popen function, which allows an attacker to inject arbitrary commands by manipulating the envname and pythonversion...

6.8CVSS7.5AI score0.00446EPSS
Exploits2References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Path traversal in saltstack

A specially crafted url can be created which leads to a directory traversal in the salt file server.A malicious user can read an arbitrary file from a Salt master’s filesystem...

7.7CVSS7.1AI score0.0083EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

h2o vulnerable to unexpected POST request shutting down server

In h2oai/h2o-3 version 3.46.0, the runtool command in the rapids component allows the main function of any class under the water.tools namespace to be called. One such class, MojoConvertTool, crashes the server when invoked with an invalid argument, causing a denial of service...

7.5CVSS7AI score0.00787EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Directory creation by malicious user in saltstack

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can leada malicious attacker to create an arbitrary directory on a Salt master...

5CVSS6.2AI score0.00693EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Improper line feed handling in zenml

A denial of service DoS vulnerability exists in zenml-io/zenml version 0.56.3 due to improper handling of line feed \n characters in component names. When a low-privileged user adds a component through the API endpoint api/v1/workspaces/default/components with a name containing a \n character, it...

4.3CVSS5.9AI score
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

js2py allows remote code execution

An issue in the component js2py.disablepyimport of js2py up to v0.74 allows attackers to execute arbitrary code via a crafted API call...

8.8CVSS6.2AI score0.04548EPSS
Exploits22References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

litellm vulnerable to improper access control in team management

berriai/litellm version 1.34.34 is vulnerable to improper access control in its team management functionality. This vulnerability allows attackers to perform unauthorized actions such as creating, updating, viewing, deleting, blocking, and unblocking any teams, as well as adding or deleting any...

6.5CVSS6AI score0.00406EPSS
Exploits1References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

Apache Superset server arbitrary file read

Improper Input Validation vulnerability in Apache Superset, allows for an authenticated attacker to create a MariaDB connection with localinfile enabled. If both the MariaDB server off by default and the local mysql client on the web server are set to allow for local infile, it's possible for the...

6.8CVSS6.1AI score0.01571EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

lollms vulnerable to dot-dot-slash path traversal in XTTS server

A path traversal vulnerability exists in the XTTS server of the parisneo/lollms package version v9.6. This vulnerability allows an attacker to write audio files to arbitrary locations on the system and enumerate file paths. The issue arises from improper validation of user-provided file paths in...

7.3CVSS7.2AI score0.0052EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

Open redirect in gradio

An open redirect vulnerability exists in the gradio-app/gradio, affecting the latest version. The vulnerability allows an attacker to redirect users to arbitrary websites, which can be exploited for phishing attacks, Cross-site Scripting XSS, Server-Side Request Forgery SSRF, amongst others. This...

6.1CVSS6.3AI score0.01021EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

lollms vulnerable to path traversal due to unauthenticated root folder settings change

A path traversal vulnerability exists in the XTTS server included in the lollms package, version v9.6. This vulnerability arises from the ability to perform an unauthenticated root folder settings change. Although the read file endpoint is protected against path traversals, this protection can be...

8.6CVSS7.3AI score0.00644EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Arbitrary file deletion in litellm

BerriAI's litellm, in its latest version, is vulnerable to arbitrary file deletion due to improper input validation on the /audio/transcriptions endpoint. An attacker can exploit this vulnerability by sending a specially crafted request that includes a file path to the server, which then deletes...

8.1CVSS6.2AI score0.00614EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

LNbits improperly handles potential network and payment failures when using Eclair backend

SummaryPaying invoices in Eclair that do not get settled within the internal timeout about 30s lead to a payment being considered failed, even though it may still be in flight. DetailsUsing blocking: true on the API call will lead to a timeout error if a payment does not get settled in the 30s...

8.1CVSS6AI score0.00602EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.5 views

zenml-io/zenml does not expire the session after password reset

A vulnerability in zenml-io/zenml version 0.56.3 allows attackers to reuse old session credentials or session IDs due to insufficient session expiration. Specifically, the session does not expire after a password change, enabling an attacker to maintain access to a compromised account without the...

8.8CVSS6.3AI score0.00405EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

6.8CVSS5.9AI score0.00788EPSS
Exploits0References10Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.8 views

LoLLMS Path Traversal vulnerability

A path traversal vulnerability exists in the parisneo/lollms application, specifically within the sanitizepathfromendpoint and sanitizepath functions in lollmscore\lollms\security.py. This vulnerability allows for arbitrary file reading when the application is running on Windows. The issue arises...

9.8CVSS6.1AI score0.28317EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

TinyMCE Cross-Site Scripting (XSS) vulnerability using noscript elements

ImpactA cross-site scripting XSS vulnerability was discovered in TinyMCE’s content parsing code. This allowed specially crafted noscript elements containing malicious code to be executed when that content was loaded into the editor. PatchesThis vulnerability has been patched in TinyMCE 7.2.0,...

6.1CVSS5.9AI score0.00529EPSS
Exploits0References10Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.4 views

ebookmeta XML External Entity vulnerability

An XML External Entity XXE vulnerability in the ebookmeta.getmetadata function via lxml dependency allows attackers to access sensitive information or cause a Denial of Service DoS via crafted XML input...

9.1CVSS6AI score0.00532EPSS
Exploits0References5Affected Software1
Total number of security vulnerabilities7044