Lucene search
+L

7044 matches found

pypa
pypa
added 2026/07/07 11:45 a.m.3 views

python-multipart vulnerable to Content-Type Header ReDoS

SummaryWhen using form data, python-multipart uses a Regular Expression to parse the HTTP Content-Type header, including options.An attacker could send a custom-made Content-Type option that is very difficult for the RegEx to process, consuming CPU resources and stalling indefinitely minutes or...

7.5CVSS6.8AI score0.01523EPSS
Exploits1References12Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Gradio apps vulnerable to timing attacks to guess password

ImpactThis security policy is with regards to a timing attack that allows users of Gradio apps to potentially guess the password of password-protected Gradio apps. This relies on the fact that string comparisons in Python terminate early, as soon as there is a string mismatch. Because Gradio apps...

5.9CVSS6.2AI score0.00497EPSS
Exploits1References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Allegro AI ClearML path traversal vulnerability

A path traversal vulnerability in versions 1.4.0 to 1.14.1 of the client SDK of Allegro AI’s ClearML platform enables a maliciously uploaded dataset to write local or remote files to an arbitrary location on an end user’s system when interacted with...

8.8CVSS7.3AI score0.00798EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Null pointer dereference in PKCS12 parsing

Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSLto crash leading to a potential Denial of Service attackImpact summary: Applications loading files in the PKCS12 format from untrustedsources might terminate abruptly.A file in PKCS12 format can contain certificates and...

5.5CVSS6.7AI score0.03174EPSS
Exploits0References22Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

vantage6 vulnerable to username timing attack

ImpactIt is possible to find out usernames from the response time of login requests. This could aid attackers in credential attacks WorkaroundsNo...

3.7CVSS5.9AI score0.00398EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

m2crypto Bleichenbacher timing attack - incomplete fix for CVE-2020-25657

A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data...

7.5CVSS6.8AI score0.01727EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

glance-store logs s3 access keys

A vulnerability was found in python-glance-store. The issue occurs when the package logs the accesskey for the glance-store when the DEBUG log level is enabled...

5.5CVSS6.1AI score0.00226EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

vantage6 has insecure SSH configuration for node and server containers

ImpactNodes and servers get a ssh config by default that permits root login with password authentication. In a proper deployment, the SSH service is not exposed so there is no risk, but not all deployments are ideal. The default should therefore be less permissive.We will probably opt to complete...

9.8CVSS7.2AI score0.00466EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

ai-flow Deserialization of Untrusted Data vulnerability

A vulnerability was found in flink-extended ai-flow 0.3.1. It has been declared as critical. Affected by this vulnerability is the function cloudpickle.loads of the file \aiflow\cli\commands\workflowcommand.py. The manipulation leads to deserialization. The attack can be launched remotely. The...

9.8CVSS5.2AI score0.00713EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Apache Airflow CNCF Kubernetes provider, Apache Airflow: Kubernetes configuration file saved without encryption in the Metadata and logged as plain text in the Triggerer service

Since version 5.2.0, when using deferrable mode with the path of a Kubernetes configuration file for authentication, the Airflow worker serializes this configuration file as a dictionary and sends it to the triggerer by storing it in metadata without any encryption. Additionally, if used with an...

6.5CVSS6.6AI score0.00381EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Path traversal in flaskcode

An issue was discovered in the flaskcode package through 0.0.8 for Python. An unauthenticated directory traversal, exploitable with a POST request to a /update-resource-data/ URI from views.py, allows attackers to write to arbitrary files...

7.5CVSS7.2AI score0.00718EPSS
Exploits0References4Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Unsecured endpoints in the jupyter-lsp server extension

ImpactInstallations of jupyter-lsp running in environments without configured file system access control on the operating system level, and with jupyter-server instances exposed to non-trusted network are vulnerable to unauthorised access and modification of file system beyond the jupyter root...

9.8CVSS7.1AI score0.00491EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

JupyterLab vulnerable to SXSS in Markdown Preview

ImpactThe vulnerability depends on user interaction by opening a malicious notebook with Markdown cells, or Markdown file using JupyterLab preview feature.A malicious user can access any data that the attacked user has access to as well as perform arbitrary requests acting as the attacked user...

6.5CVSS6.8AI score0.00568EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Privilege escalation for users that can access mock configuration

The Mock software contains a vulnerability wherein an attacker could potentially exploit privilege escalation, enabling the execution of arbitrary code with root user privileges. This weakness stems from the absence of proper sandboxing during the expansion and execution of Jinja2 templates, whic...

9.8CVSS7.3AI score0.01552EPSS
Exploits1References12Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Path traversal in flaskcode

An issue was discovered in the flaskcode package through 0.0.8 for Python. An unauthenticated directory traversal, exploitable with a GET request to a /resource-data/.txt URI from views.py, allows attackers to read arbitrary files...

7.5CVSS7.2AI score0.008EPSS
Exploits0References4Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Cross-Frame Scripting vulnerability has been found on Plone CMS

A Cross-Frame Scripting vulnerability has been found on Plone CMS affecting version below 6.0.5. An attacker could store a malicious URL to be opened by an administrator and execute a malicios iframe element...

7.1CVSS6.9AI score0.00294EPSS
Exploits0References5Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

JupyterLab vulnerable to potential authentication and CSRF tokens leak

ImpactUsers of JupyterLab who click on a malicious link may get their Authorization and XSRFToken tokens exposed to a third party when running an older jupyter-server version. PatchesJupyterLab 4.1.0b2, 4.0.11, and 3.6.7 were patched. WorkaroundsNo workaround has been identified, however users...

7.6CVSS6.8AI score0.00665EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Minerva timing attack on P-256 in python-ecdsa

python-ecdsa has been found to be subject to a Minerva timing attack on the P-256 curve. Using the ecdsa.SigningKey.signdigest API function and timing signatures an attacker can leak the internal nonce which may allow for private key discovery. Both ECDSA signatures, key generation, and ECDH...

7.4CVSS6.9AI score0.00977EPSS
Exploits1References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

pyload Unauthenticated Flask Configuration Leakage vulnerability

SummaryAny unauthenticated user can browse to a specific URL to expose the Flask config, including the SECRETKEY variable. DetailsAny unauthenticated user can browse to a specific URL to expose the Flask config, including the SECRETKEY variable. PoCRun pyload in the default configuration by runni...

7.5CVSS7.2AI score0.42173EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.7 views

D-Tale server-side request forgery through Web uploads

ImpactUsers hosting D-Tale publicly can be vulnerable to server-side request forgery SSRF allowing attackers to access files on the server. PatchesUsers should upgrade to version 3.9.0 where the "Load From the Web" input is turned off by default. You can find out more information on how to turn i...

7.5CVSS7.1AI score0.00711EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.12 views

fonttools XML External Entity Injection (XXE) Vulnerability

SummaryAs of fonttools=4.28.2 the subsetting module has a XML External Entity Injection XXE vulnerability which allows an attacker to resolve arbitrary entities when a candidate font OT-SVG fonts, which contains a SVG table, is parsed. This allows attackers to include arbitrary files from the...

7.5CVSS7.1AI score0.01238EPSS
Exploits1References10Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Apache Superset incorrect write permissions vulnerability

An authenticated Gamma user has the ability to create a dashboard and add charts to it, this user would automatically become one of the owners of the charts allowing him to incorrectly have write permissions to these charts.This issue affects Apache Superset: before 2.1.3, from 3.0.0 before...

7.7CVSS6.9AI score0.00942EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

MLflow Path Traversal Vulnerability

This vulnerability is capable of writing arbitrary files into arbitrary locations on the remote filesystem in the context of the server process...

8.8CVSS7.3AI score0.01008EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Ansible symlink attack vulnerability

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS6.8AI score0.00859EPSS
Exploits0References11Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

MLflow Local File Disclosure Vulnerability

This vulnerability enables malicious users to read sensitive files on the server...

10CVSS7.1AI score0.03924EPSS
Exploits2References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

pyload Log Injection vulnerability

SummaryA log injection vulnerability was identified in pyload. This vulnerability allows any unauthenticated actor to inject arbitrary messages into the logs gathered by pyload. Detailspyload will generate a log entry when attempting to sign in with faulty credentials. This entry will be in the...

5.3CVSS6.2AI score0.24513EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter

The xmlattr filter in affected versions of Jinja accepts keys containing spaces. XML/HTML attributes cannot contain spaces, as each would then be interpreted as a separate attribute. If an application accepts keys as opposed to only values as user input, and renders these in pages that other user...

6.1CVSS6.8AI score0.00892EPSS
Exploits0References12Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Apache Superset SQL injection vulnerability

A wherein JINJA macro allows users to specify a quote, which combined with a carefully crafted statementwould allow for SQL injectionin Apache Superset.This issue affects Apache Superset: before 2.1.3, from 3.0.0 before 3.0.2.Users are recommended to upgrade to version 2.1.3 or 3.0.2, which fixes...

8.8CVSS7.2AI score0.01178EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.9 views

PyCryptodome and pycryptodomex side-channel leakage for OAEP decryption

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

7.1CVSS6.5AI score0.00618EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Information exposure in MLflow

An issue in MLFlow versions 2.8.1 and before allows a remote attacker to obtain sensitive information via a crafted request to REST API...

7.5CVSS7.1AI score0.36582EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Out of memory error when submitting the dataset form with a specially-crafted field

ImpactWhen submitting a POST request to the /dataset/new endpoint including either the auth cookie or the Authorization header with a specially-crafted field, an attacker can create an out-of-memory error in the hosting server.To trigger this error the user needs to have permissions to create or...

6.5CVSS6.5AI score0.00576EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Reflected XSS Vulnerability in dpaste

ImpactA security vulnerability has been identified in the expires parameter of the dpaste API, allowing for a POST Reflected XSS attack. This vulnerability can be exploited by an attacker to execute arbitrary JavaScript code in the context of a user's browser, potentially leading to unauthorized...

8.3CVSS7.1AI score0.00517EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

DockerSpawner allows any image by default

ImpactUsers of JupyterHub deployments running DockerSpawner starting with 0.11.0 without specifying DockerSpawner.allowedimages configuration allow users to launch any pullable image, instead of restricting to only the single configured image, as intended. PatchesUpgrade to DockerSpawner 13...

8CVSS6.6AI score0.00633EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin

SummaryTerrapin is a prefix truncation attack targeting the SSH protocol. More precisely, Terrapin breaks the integrity of SSH's secure channel. By carefully adjusting the sequence numbers during the handshake, an attacker can remove an arbitrary amount of messages sent by the client or server at...

5.9CVSS7AI score0.93305EPSS
Exploits4References147Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

mlflow Command Injection vulnerability

with only one user interactiondownload a malicious config, attackers can gain full command execution on the victim system...

9CVSS7.3AI score0.01219EPSS
Exploits0References9Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

pubnub Insufficient Entropy vulnerability

Versions of the package pubnub before 7.4.0; all versions of the package com.pubnub:pubnub; versions of the package pubnub before 6.19.0; all versions of the package github.com/pubnub/go; versions of the package github.com/pubnub/go/v7 before 7.2.0; versions of the package pubnub before 7.3.0;...

5.9CVSS6.3AI score0.00955EPSS
Exploits1References23Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Apache Superset uncontrolled resource consumption

Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets.This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1...

6.5CVSS6.5AI score0.01653EPSS
Exploits0References10Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

User accounts disclosed to unauthenticated actors on the LAN

SummaryThe login page discloses all active user accounts to any unauthenticated browsing request originating on the Local Area Network. DetailsStarting the Home Assistant 2023.12 release, the login page returns all currently active user accounts to browsing requests from the Local Area Network...

4.3CVSS6AI score0.00908EPSS
Exploits1References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Ansible template injection vulnerability

A template injection flaw was found in Ansible where a user's controller internal templating operations may remove the unsafe designation from template data. This issue could allow an attacker to use a specially crafted file to introduce templating injection when supplying templating data...

7.8CVSS6.8AI score0.00539EPSS
Exploits0References11Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.5 views

Exposure of Sensitive Information in mltable

Azure Machine Learning Compute Instance for SDK Users Information Disclosure Vulnerability...

4.7CVSS6.3AI score0.00708EPSS
Exploits0References4Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Download to arbitrary folder can lead to RCE

SummaryA web UI user can store files anywhere on the pyLoad server and gain command execution by abusing scripts. DetailsWhen a user creates a new package, a subdirectory is created within the /downloads folder to store files. This new directory name is derived from the package name, except a...

8.8CVSS7.7AI score0.01049EPSS
Exploits1References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

Apache Superset - Elevation of Privilege

OverviewAn attacker with access to the SQL Lab and the abuser and abuserrole tables can elevate his privileges to become administrator. DetailsOn a more general level, diverse tables who are supposed to be only readable can be modified using the WITH … AS and RETURNING keywords.Modification of th...

8.8CVSS7.5AI score0.01335EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Apache Superset Allocation of Resources Without Limits or Throttling vulnerability

An authenticated malicious user could initiate multiple concurrent requests, each requesting multiple dashboard exports, leading to a possible denial of service.This issue affects Apache Superset: before 3.0.0...

6.5CVSS6.6AI score0.0114EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

Ethyca Fides Cryptographically Weak Generation of One-Time Codes for Identity Verification

ImpactThe Fides Privacy Center allows data subject users to submit privacy and consent requests to data controller users of the Fides web application.Privacy requests allow data subjects to submit a request to access all person data held by the data controller, or delete/erase it. Consent request...

9.1CVSS7.1AI score0.00992EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Apache Superset has Incorrect Default Permissions

Unnecessary read permissions within the Gamma role would allow authenticated users to read configured CSS templates and annotations.This issue affects Apache Superset: before 2.1.2.Users should upgrade to version or above 2.1.2 and run superset init to reconstruct the Gamma role or remove canread...

4.3CVSS5.9AI score0.0086EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

Apache Superset Exposure of Sensitive Information to an Unauthorized Actor vulnerability

An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection's username.This issue affects Apache Superset before 3.0.0...

4.3CVSS5.9AI score0.01009EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

Apache Superset Open Redirect vulnerability

An authenticated attacker with update datasets permission could change a dataset link to an untrusted site by spoofing the HTTP Host header, users could be redirected to this site when clicking on that specific dataset. This issue affects Apache Superset versions before 3.0.0...

5.4CVSS6AI score0.00823EPSS
Exploits0References6Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.4 views

TorchServe ZipSlip

ImpactUsing the model/workflow management API, there is a chance of uploading potentially harmful archives that contain files that are extracted to any location on the filesystem that is within the process permissions. Leveraging this issue could aid third-party actors in hiding harmful code in...

5.3CVSS6.2AI score0.00673EPSS
Exploits0References8Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.6 views

Apache Superset Cross-site Scripting vulnerability

Improper payload validation and an improper REST API response type, made it possible for an authenticated malicious actor to store malicious code into Chart's metadata, this code could get executed if a user specifically accesses a specific deprecated API endpoint.This issue affects Apache Supers...

5.4CVSS6.2AI score0.01004EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2026/07/07 11:45 a.m.3 views

Cross-Site Request Forgery vulnerability in Prefect

An attacker is able to steal secrets and potentially gain remote code execution via CSRF using a self-hosted, open source Prefect API...

8.8CVSS7.8AI score0.00389EPSS
Exploits1References7Affected Software1
Total number of security vulnerabilities7044