Lucene search
+L

7044 matches found

pypa
pypa
added 2026/07/07 2:34 p.m.6 views

document-merge-service vulnerable to Remote Code Execution via Server-Side Template Injection

ImpactWhat kind of vulnerability is it? Who is impacted?A remote code execution RCE via server-side template injection SSTI allows for user supplied code to be executed in the server's context where it is executed as the document-merge-server user with the UID 901 thus giving an attacker...

7.2CVSS6.5AI score0.01031EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

SQL injection in litellm

A blind SQL injection vulnerability exists in the berriai/litellm application, specifically within the '/team/update' process. The vulnerability arises due to the improper handling of the 'userid' parameter in the raw SQL query used for deleting users. An attacker can exploit this vulnerability b...

4.9CVSS6AI score0.0056EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

TinyMCE Cross-Site Scripting (XSS) vulnerability using noneditable_regexp option

ImpactA cross-site scripting XSS vulnerability was discovered in TinyMCE’s content extraction code. When using the noneditableregexp option, specially crafted HTML attributes containing malicious code were able to be executed when content was extracted from the editor. PatchesThis vulnerability h...

6.1CVSS5.9AI score0.00529EPSS
Exploits0References11Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

Globus `identity_provider` restriction ignored when used with `allow_all` in JupyterHub 5.0

ImpactJupyterHub 5.0, when used with GlobusOAuthenticator, could be configured to allow all users from a particular institution only. The configuration for this would look like:python Require users to be using the "foo.horse" identity provider, often an institution or...

8.1CVSS6AI score0.00405EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Arbitrary system path lookup in h20

In h2oai/h2o-3 version 3.40.0.4, an exposure of sensitive information vulnerability exists due to an arbitrary system path lookup feature. This vulnerability allows any remote user to view full paths in the entire file system where h2o-3 is hosted. Specifically, the issue resides in the Typeahead...

5.3CVSS6.3AI score0.00835EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.19 views

SQL injection in litellm

An SQL Injection vulnerability exists in the berriai/litellm repository, specifically within the /global/spend/logs endpoint. The vulnerability arises due to improper neutralization of special elements used in an SQL command. The affected code constructs an SQL query by concatenating an unvalidat...

7.2CVSS6.1AI score0.00429EPSS
Exploits1References7Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.6 views

urllib3's Proxy-Authorization request header isn't stripped during cross-origin redirects

When using urllib3's proxy support with ProxyManager, the Proxy-Authorization header is only sent to the configured proxy, as expected.However, when sending HTTP requests without using urllib3's proxy support, it's possible to accidentally configure the Proxy-Authorization header even though it...

6.5CVSS6.8AI score0.01141EPSS
Exploits1References10Affected Software1
pypa
pypa
added 2026/07/07 2:34 p.m.7 views

Invalid char to bool conversion when printing a tensor

ImpactWhen printing a tensor, we get it's data as a const char array since that's the underlying storage and then we typecast it to the element type. However, conversions from char to bool are undefined if the char is not 0 or 1, so sanitizers/fuzzers will crash. PatchesWe have patched the issue ...

7.5CVSS7.1AI score0.00389EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

ydata unsafe deserialization

Deseriliazation of untrusted data can occur in versions 3.7.0 or newer of Ydata's ydata-profiling open-source library, enabling a maliciously crafted dataset to run arbitrary code on an end user's system when loaded...

7.8CVSS7.4AI score0.00239EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

MLFlow improper input validation

Remote Code Execution can occur in versions of the MLflow platform running version 1.11.0 or newer, enabling a maliciously crafted MLproject to execute arbitrary code on an end user’s system when run due to unfiltered input...

8.8CVSS6.5AI score0.00884EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Undefined Behavior in mlflow

A vulnerability in mlflow/mlflow version 2.11.1 allows attackers to create multiple models with the same name by exploiting URL encoding. This flaw can lead to Denial of Service DoS as an authenticated user might not be able to use the intended model, as it will open a different model each time...

5.4CVSS5.9AI score0.00442EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

ydata unsafe deserialization

Deserialization of untrusted data can occur in versions 3.7.0 or newer of Ydata's ydata-profiling open-source library, enabling a malicously crafted report to run arbitrary code on an end user's system when loaded...

7.8CVSS6.3AI score0.00239EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 0.5.0 or newer, enabling a maliciously uploaded PyTorch model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00618EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Server-Side Request Forgery in langchain-community.retrievers.web_research.WebResearchRetriever

A Server-Side Request Forgery SSRF vulnerability exists in the Web Research Retriever component in langchain-community langchain-community.retrievers.webresearch.WebResearchRetriever. The vulnerability arises because the Web Research Retriever does not restrict requests to remote internet...

7.7CVSS6.3AI score0.00691EPSS
Exploits1References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.27.0 or newer, enabling a maliciously crafted Recipe to execute arbitrary code on an end user’s system when run...

8.8CVSS6.4AI score0.00769EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Skops unsafe deserialization

Deserialization of untrusted data can occur in versions 0.6 or newer of the skops python library, enabling a maliciously crafted model to run arbitrary code on an end user's system when loaded...

7.8CVSS7.4AI score0.00239EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 2.0.0rc0 or newer, enabling a maliciously uploaded Tensorflow model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00618EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.10 views

Server-Side Request Forgery in gradio

A Server-Side Request Forgery SSRF vulnerability exists in the gradio-app/gradio and was discovered in version 4.21.0, specifically within the /queue/join endpoint and the saveurltocache function. The vulnerability arises when the path value, obtained from the user and expected to be a URL, is us...

8.6CVSS7.2AI score0.37366EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

PyMongo Out-of-bounds Read in the bson module

Versions of the package pymongo before 4.6.3 are vulnerable to Out-of-bounds Read in the bson module. Using the crafted payload the attacker could force the parser to deserialize unmanaged memory. The parser tries to interpret bytes next to buffer and throws an exception with string. If the...

8.1CVSS6.6AI score0.00663EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.9 views

ydata cross-site scripting

A cross-site scripting XSS vulnerability in versions 3.7.0 or newer of Ydata's ydata-profiling open-source library allows for payloads to be run when a maliocusly crafted report is viewed in the browser...

7.8CVSS5.8AI score0.00321EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

path traversal vulnerability was identified in the parisneo/lollms-webui

A path traversal vulnerability was identified in the parisneo/lollms-webui repository, specifically within version 9.6. The vulnerability arises due to improper handling of user-supplied input in the 'listpersonalities' endpoint. By crafting a malicious HTTP request, an attacker can traverse the...

4CVSS6.1AI score0.00285EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Improper Handling of Insufficient Permissions in `wagtail.contrib.settings`

ImpactDue to an improperly applied permission check in the wagtail.contrib.settings module, a user with access to the Wagtail admin and knowledge of the URL of the edit view for a settings model can access and update that setting, even when they have not been granted permission over the model. Th...

5.5CVSS6.1AI score0.0033EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00618EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.24.0 or newer, enabling a maliciously uploaded pmdarima model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00618EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.23.0 or newer, enabling a maliciously uploaded LightGBM scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00618EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

code injection vulnerability exists in the huggingface/text-generation-inference repository

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...

4.4CVSS6.5AI score0.00316EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 0.9.0 or newer, enabling a maliciously uploaded PyFunc model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00703EPSS
Exploits5References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 2.5.0 or newer, enabling a maliciously uploaded Langchain AgentExecutor model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00618EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.3AI score0.00618EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

Slack integration leaks sensitive information in logs

ImpactSentry's Slack integration incorrectly records the incoming request body in logs. This request data can contain sensitive information, including the deprecated Slack verification token. With this verification token, it is possible under specific configurations, an attacker can forge request...

2CVSS5.9AI score0.00575EPSS
Exploits0References11Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

dbt allows Binding to an Unrestricted IP Address via socketsocket

SummaryBinding to INADDRANY 0.0.0.0 or IN6ADDRANY :: exposes an application on all network interfaces, increasing the risk of unauthorized access.While doing some static analysis and code inspection, I found the following code binding a socket to INADDRANY by passing "" as the address. This...

5.3CVSS5.8AI score0.0071EPSS
Exploits0References15Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

jupyter-scheduler's endpoint is missing authentication

Impactjupyterscheduler is missing an authentication check in Jupyter Server on an API endpoint GET /scheduler/runtimeenvironments which lists the names of the Conda environments on the server. In affected versions, jupyterscheduler allows an unauthenticated user to obtain the list of Conda...

5.3CVSS6AI score0.00331EPSS
Exploits0References10Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Gradio applications running locally vulnerable to 3rd party websites accessing routes and uploading files

ImpactThis CVE covers the ability of 3rd party websites to access routes and upload files to users running Gradio applications locally. For example, the malicious owners of www.dontvisitme.com could put a script on their website that uploads a large file to http://localhost:7860/upload and anyone...

4.3CVSS5.9AI score0.00352EPSS
Exploits1References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

NASA AIT-Core uses unencrypted channels to exchange data over the network

NASA AIT-Core v2.5.2 was discovered to use unencrypted channels to exchange data over the network, allowing attackers to execute a man-in-the-middle attack...

7.3CVSS6AI score0.00546EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Fides Webserver Logs Hosted Database Password Partial Exposure Vulnerability

The Fides webserver requires a connection to a hosted PostgreSQL database for persistent storage of application data. If the password used by the webserver for this database connection includes special characters such as @ and $, webserver startup fails and the part of the password following the...

3.3CVSS5.8AI score0.00275EPSS
Exploits1References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.9 views

ansibleguy-webui Cross-site Scripting vulnerability

ImpactMultiple forms in version = 0.0.21 References Report GitHub Issue 44...

8.2CVSS5.9AI score0.004EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.8 views

rockhopper Buffer Overflow vulnerability

A vulnerability, which was classified as critical, has been found in bwoodsend rockhopper up to 0.1.2. Affected by this issue is the function countrows of the file rockhopper/src/raggedarray.c of the component Binary Parser. The manipulation of the argument raw leads to buffer overflow. Local...

5.3CVSS6.1AI score0.00233EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Sensitive Data Disclosure Vulnerability in Connection Configuration Endpoints

The Fides webserver has a number of endpoints that retrieve ConnectionConfiguration records and their associated secrets which can contain sensitive data e.g. passwords, private keys, etc.. These secrets are stored encrypted at rest in the application database, and the associated endpoints are no...

6.5CVSS5.8AI score0.00577EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

OMERO.web must check that the JSONP callback is a valid function

BackgroundThere is currently no escaping or validation of the callback parameter that can be passed to various OMERO.web endpoints that have JSONP enabled. One such endpoint is /webclient/imgData/.... As we only really use these endpoints with jQuery's own callback name generation ^1 it is quite...

6.1CVSS6AI score0.00291EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

vantage6 collaboration admins can extend their influence by expanding the collaboration

ImpactCollaboration administrators can add extra organizations to their collaboration. When doing that, they extend their influence: for instance, for organizations that they include, they can then create new users for which they know the passwords, and use that to read task results of other...

2.7CVSS6AI score0.00316EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

aiosmtpd STARTTLS unencrypted commands injection

SummaryServers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if they came from inside the encrypted connection. This could be exploited by a MitM attack. References NO STARTTLS: Similar vulnerabilities discovered by previous researchers...

5.4CVSS5.9AI score0.00228EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Arbitrary HTML present after sanitization because of unicode normalization

ImpactIf using keeptypographicwhitespace=False which is the default, the sanitizer normalizes unicode to the NFKC form at the end. Some unicode characters normalize to chevrons; this allows specially crafted HTML to escape sanitization. PatchesThe problem has been fixed in 2.4.2. WorkaroundsSet...

6.1CVSS5.9AI score0.00551EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.8 views

litellm passes untrusted data to `eval` function without sanitization

A remote code execution RCE vulnerability exists in the berriai/litellm project due to improper control of the generation of code when using the eval function unsafely in the litellm.getsecret method. Specifically, when the server utilizes Google KMS, untrusted data is passed to the eval function...

9.8CVSS6.6AI score0.00876EPSS
Exploits0References10Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Requests `Session` object does not verify requests after making first request with verify=False

When using a requests.Session, if the first request to a given origin is made with verify=False, TLS certificate verification may remain disabled for all subsequent requests to that origin, even if verify=True is explicitly specified later.This occurs because the underlying connection is reused...

5.6CVSS6.6AI score0.0034EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

RunGptLLM class in LlamaIndex has a command injection

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

8.8CVSS6.2AI score0.02118EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

LoLLMS Command Injection vulnerability

A vulnerability in the parisneo/lollms, specifically in the /unInstallbinding endpoint, allows for arbitrary code execution due to insufficient sanitization of user input. The issue arises from the lack of path sanitization when handling the name parameter in the unInstallbinding function, allowi...

9.8CVSS6.8AI score0.00916EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

Nautobot's BANNER_* configuration can be used to inject arbitrary HTML content into Nautobot pages

ImpactA Nautobot user with admin privileges can modify the BANNERTOP, BANNERBOTTOM, and BANNERLOGIN configuration settings via the /admin/constance/config/ endpoint. Normally these settings are used to provide custom banner text at the top and bottom of all Nautobot web pages or specifically on t...

7.5CVSS5.9AI score0.00606EPSS
Exploits1References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Apache Superset Incorrect Authorization vulnerability

An authenticated user could potentially access metadata for a datasource they are not authorized to view by submitting a targeted REST API request. This issue affects Apache Superset before 3.1.2.Users are recommended to upgrade to version 3.1.2 or above, which fixes the issue...

4.3CVSS6AI score0.00699EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Ryu Infinite Loop vulnerability

OFPMultipartReply in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via b.length=0...

7.5CVSS7.1AI score0.00681EPSS
Exploits1References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Ryu Infinite Loop vulnerability

OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPQueueProp.len=0...

8.7CVSS7.1AI score0.00646EPSS
Exploits1References5Affected Software1
Total number of security vulnerabilities7044