Lucene search
+L

7044 matches found

PyPA
PyPA
added 2026/05/09 6:16 a.m.2 views

PYSEC-2026-2251

Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs that accept coordinates such as ImagePath.Path, ImageDraw.ImageDraw.polygon and ImageDraw.ImageDraw.line could cause a heap buffer overflow, as nested lists were recursive...

5.5CVSS6.9AI score0.00133EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/05/09 6:16 a.m.2 views

PYSEC-2026-2252

Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This issue has been patched in version 12.2.0...

8.6CVSS7AI score0.0015EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/09 6:16 a.m.19 views

PYSEC-2026-165

Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0...

5.5CVSS7.1AI score0.00114EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/05/08 10:16 p.m.2 views

PYSEC-2026-2296

Ray is an AI compute engine. From version 2.54.0 to before version 2.55.0, Ray Data registers custom Arrow extension types ray.data.arrowtensor, ray.data.arrowtensorv2, ray.data.arrowvariableshapedtensor globally in PyArrow. When PyArrow reads a Parquet file containing one of these extension type...

8.9CVSS6.4AI score0.00473EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/08 10:16 p.m.2 views

PYSEC-2026-2272

Ray is an AI compute engine. From version 2.54.0 to before version 2.55.0, Ray Data registers custom Arrow extension types ray.data.arrowtensor, ray.data.arrowtensorv2, ray.data.arrowvariableshapedtensor globally in PyArrow. When PyArrow reads a Parquet file containing one of these extension type...

8.9CVSS6.4AI score0.00473EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/08 3:16 p.m.25 views

PYSEC-2026-37

An issue in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a remote attacker to execute arbitrary code via the dashuploader/httprequesthandler.py, dashuploader/upload.py in the Upload function and maxfilesize parameter, dashuploader/configureupload.py components...

7.5CVSS6.2AI score0.02643EPSS
Exploits5References9Affected Software1
PyPA
PyPA
added 2026/05/08 4:16 a.m.3 views

PYSEC-2026-2321

wlc is a Weblate command-line client using Weblate's REST API. Prior to version 2.0.0, the HTML output format in wlc embeds API response data into HTML without escaping, allowing cross-site scripting when the output is rendered in a browser. This issue has been patched in version 2.0.0...

5.1CVSS6AI score0.00174EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/07 8:16 p.m.3 views

PYSEC-2026-2156

A weakness has been identified in OSGeo gdal up to 3.13.0dev-4. The affected element is the function GDfieldinfo of the file frmts/hdf4/hdf-eos/GDapi.c. Executing a manipulation can lead to out-of-bounds read. The attack needs to be launched locally. The exploit has been made available to the...

5.5CVSS5.5AI score0.00246EPSS
Exploits1References9Affected Software1
PyPA
PyPA
added 2026/05/07 8:16 p.m.3 views

PYSEC-2026-2155

A security flaw has been discovered in OSGeo gdal up to 3.13.0dev-4. Impacted is the function GDnentries of the file frmts/hdf4/hdf-eos/GDapi.c. Performing a manipulation of the argument DataFieldName results in heap-based buffer overflow. The attack must be initiated from a local position. The...

7.8CVSS6.1AI score0.00223EPSS
Exploits1References9Affected Software1
PyPA
PyPA
added 2026/05/07 7:16 p.m.3 views

PYSEC-2026-2154

A vulnerability was identified in OSGeo gdal up to 3.13.0dev-4. This issue affects the function SWnentries of the file frmts/hdf4/hdf-eos/SWapi.c. Such manipulation of the argument DimensionName leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly...

7.8CVSS6.1AI score0.00237EPSS
Exploits1References9Affected Software1
PyPA
PyPA
added 2026/05/07 7:16 p.m.2 views

PYSEC-2026-2162

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.48, a vulnerability in GitPython allows attackers who can supply a crafted reference path to an application using GitPython to write, overwrite, move, or delete files outside the repository’s .git directory...

8.8CVSS7AI score0.00419EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/05/07 7:16 p.m.2 views

PYSEC-2026-2163

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.49, GitConfigParser.setvalue passes values to Python's configparser without validating for newlines. GitPython's own write converts embedded newlines into indented continuation lines e.g. \n becomes \n\t, b...

7.8CVSS7AI score0.00237EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/05/07 7:16 p.m.2 views

PYSEC-2026-2153

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit...

5.5CVSS5.7AI score0.00264EPSS
Exploits1References9Affected Software1
PyPA
PyPA
added 2026/05/07 7:16 p.m.3 views

PYSEC-2026-2161

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.47, clone validates multioptions as the original list, then executes shlex.split" ".joinmultioptions. A string like "--branch main --config core.hooksPath=/x" passes validation starts with --branch, but aft...

9.8CVSS6.9AI score0.00571EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/05/07 7:16 p.m.3 views

PYSEC-2026-2160

GitPython is a python library used to interact with Git repositories. From version 3.1.30 to before version 3.1.47, GitPython blocks dangerous Git options such as --upload-pack and --receive-pack by default, but the equivalent Python kwargs uploadpack and receivepack bypass that check. If an...

8.8CVSS7AI score0.00719EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/05/07 3:16 p.m.2 views

PYSEC-2026-2318

Weblate is a web based localization tool. Prior to version 5.17.1, the screenshots, tasks, and component link API allowed for the enumeration of translations in a project inaccessible to the user. This issue has been patched in version 5.17.1...

4.3CVSS6AI score0.00288EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/07 3:16 p.m.3 views

PYSEC-2026-2319

Weblate is a web based localization tool. Prior to version 5.17.1, the Markdown renderer used in user comments and other user-provided content didn't properly sanitize some attributes. This issue has been patched in version 5.17.1...

4.3CVSS6AI score0.00275EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/07 3:16 p.m.2 views

PYSEC-2026-2316

Weblate is a web based localization tool. Prior to version 5.17.1, when a user changes their password, browser sessions are correctly invalidated via "cyclesessionkeys", but DRF API tokens "wlu" prefix stored in "authtokentoken" are not revoked. This issue has been patched in version 5.17.1...

5.4CVSS6AI score0.00228EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/07 3:16 p.m.2 views

PYSEC-2026-2317

Weblate is a web based localization tool. Prior to version 5.17.1, an authenticated user with project.add permission default on hosted Weblate SaaS and for any user holding an active billing/trial plan can import a crafted project backup ZIP whose components/.json contains an attacker-chosen repo...

8.1CVSS6AI score0.00371EPSS
Exploits0References6Affected Software1
PyPA
PyPA
added 2026/05/05 10:16 p.m.2 views

PYSEC-2026-2187

Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the Origin header validation uses Python's re.match to check incoming origins against the alloworiginpat configuration value. Because re.match only anchors at the start of the string and does not require a...

7.6CVSS6AI score0.00333EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2026/05/05 10:16 p.m.16 views

PYSEC-2026-69

Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the secret used to sign authentication cookies is persisted to a static file at /.local/share/jupyter/runtime/jupytercookiesecret and is never rotated when a user changes their password. After a password...

7.6CVSS5.7AI score0.00308EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/05/05 8:16 p.m.16 views

PYSEC-2026-68

Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, a path traversal vulnerability in the REST API allows an authenticated user to escape the configured rootdir and access sibling directories whose names begin with the same prefix as the rootdir. For exampl...

8.8CVSS5.8AI score0.00583EPSS
Exploits2References1Affected Software1
PyPA
PyPA
added 2026/05/05 7:16 p.m.16 views

PYSEC-2026-119

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. In versions 6.6.0 through 6.9.12, there is a privilege escalation vulnerability that can be exploited by unauthenticated attackers to query the API as any existing user, including the default admi...

9.8CVSS5.7AI score0.0048EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/05/05 4:16 p.m.15 views

PYSEC-2026-55

An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14.django.middleware.cache.UpdateCacheMiddleware erroneously caches requests where the Vary header contained an asterisk ''. This can lead to private data being stored and served.Earlier, unsupported Django series such as 5.0.x, 4.1.x...

5.3CVSS5.8AI score0.00358EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/05 4:16 p.m.23 views

PYSEC-2026-54

An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14.ASGI requests with a missing or understated Content-Length header can bypass the FILEUPLOADMAXMEMORYSIZE limit, potentially loading large files into memory and causing service degradation. As a reminder, Django expects a limit to b...

6.3CVSS5.8AI score0.00423EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/05 4:16 p.m.19 views

PYSEC-2026-50

An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14.Response headers do not vary on cookies if a session is not modified, but SESSIONSAVEEVERYREQUEST is True. A remote attacker can steal a user's session after that user visits a cached public page.Earlier, unsupported Django series...

6.5CVSS5.8AI score0.00544EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/05/05 4:16 p.m.24 views

PYSEC-2026-67

Jupyter Server is the backend for Jupyter web applications. In jupyterserver versions through 2.17.0, the next query parameter in the login flow is insufficiently validated in LoginFormHandler.redirectsafe, which allows redirects to arbitrary external domains via values such as ///example.com. An...

6.3CVSS5.9AI score0.00265EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/05/04 6:16 p.m.3 views

PYSEC-2026-2245

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. Prior to version 7.0.0-rc3, the Script Runner widget allows users to execute Python and Ruby scripts directly from the openc3-COSMOS-script-runner-api container. Because all the...

9.6CVSS6.2AI score0.00341EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/05/04 6:16 p.m.2 views

PYSEC-2026-2242

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. Prior to versions 6.10.5 and 7.0.0-rc3, the OpenC3 password change functionality allows a user to change their password without providing the old password, by accepting a valid...

8.1CVSS6AI score0.00305EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2026/05/04 6:16 p.m.3 views

PYSEC-2026-2244

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. From version 6.7.0 to before version 7.0.0-rc3, a SQL injection vulnerability exists in the Time-Series Database TSDB component of COSMOS. The tsdblookup function in the...

9.6CVSS6.3AI score0.00323EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/05/04 6:16 p.m.30 views

PYSEC-2026-105

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. Prior to version 7.0.0, the Command Sender UI uses an unsafe eval function on array-like command parameters, which allows a user-supplied payload to execute in the browser when...

4.6CVSS6AI score0.002EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/05/04 6:16 p.m.10 views

PYSEC-2026-2243

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. Prior to versions 6.10.5 and 7.0.0-rc3, OpenC3 COSMOS contains a design flaw in the savetoolconfig function that allows saving tool configuration files at arbitrary locations...

4.3CVSS6.1AI score0.00313EPSS
Exploits1References5Affected Software1
PyPA
PyPA
added 2026/05/01 9:16 a.m.3 views

PYSEC-2026-602

An issue was discovered in OpenStack Keystone before 29.0.2. POST /v3/credentials did not validate that the caller-supplied projectid for an EC2-type credential matched the project of the authenticating application credential. This allowed an attacker holding an unrestricted application credentia...

8CVSS6AI score0.00456EPSS
Exploits1References7Affected Software1
PyPA
PyPA
added 2026/05/01 9:16 a.m.10 views

PYSEC-2026-205

An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0. Ironic Python Agent IPA sometimes executes grub-install from within a chroot of the deployed partition image, leading to code execution in the case of a malicious image...

8CVSS6AI score0.00837EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2026/04/30 2:16 p.m.2 views

PYSEC-2026-2132

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands from an unprivileged account...

7.2CVSS6.2AI score0.0081EPSS
Exploits1References7Affected Software1
PyPA
PyPA
added 2026/04/30 10:16 a.m.13 views

PYSEC-2026-24

Apache Airflow's SMTP provider SmtpHook called Python's smtplib.SMTP.starttls without an SSL context, so no certificate validation was performed on the TLS upgrade. A man-in-the-middle between the Airflow worker and the SMTP server could present a self-signed certificate, complete the STARTTLS...

5.9CVSS5.8AI score0.00268EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2026/04/28 7:36 p.m.14 views

PYSEC-2026-100

NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A successful exploit of this vulnerability may lead to privilege escalation, data tampering, information...

9.8CVSS5.8AI score0.00573EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2026/04/27 5:16 p.m.4 views

PYSEC-2026-2306

A vulnerability was found in vllm up to 0.19.0. The affected element is the function hasmambalayers of the file vllm/v1/kvcacheinterface.py of the component KV Block Handler. Performing a manipulation results in uninitialized resource. It is possible to initiate the attack remotely. The attack is...

6.3CVSS5.7AI score0.00288EPSS
Exploits0References8Affected Software1
PyPA
PyPA
added 2026/04/24 9:16 p.m.16 views

PYSEC-2026-76

LangChain is a framework for building agents and LLM-powered applications. Prior to 1.1.14, langchain-openai's urltosize helper used by getnumtokensfrommessages for image token counting validated URLs for SSRF protection and then fetched them in a separate network operation with independent DNS...

3.1CVSS5.8AI score0.00158EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/04/24 9:16 p.m.14 views

PYSEC-2026-77

LangChain is a framework for building agents and LLM-powered applications. Prior to langchain-text-splitters 1.1.2, HTMLHeaderTextSplitter.splittextfromurl validated the initial URL using validatesafeurl but then performed the fetch with requests.get with redirects enabled the default. Because...

6.5CVSS5.8AI score0.0026EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/04/24 8:16 p.m.14 views

PYSEC-2026-25

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on the cache feature in authlib.integrations.starletteclient.OAuth. This vulnerability is fixed in 1.6.11...

5.4CVSS5.8AI score0.00106EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/04/24 8:16 p.m.15 views

PYSEC-2026-109

pretalx is a conference planning tool. Prior to 2026.1.0, an unauthenticated attacker can send arbitrary HTML-rendered emails from a pretalx instance's configured sender address by embedding malformed HTML or markdown link syntax in a user-controlled template placeholder such as the account displ...

6.1CVSS5.9AI score0.00154EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/04/24 5:16 p.m.24 views

PYSEC-2026-87

lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to resolveentities='internal' ...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/04/23 7:17 p.m.20 views

PYSEC-2026-88

Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.gettemplate is vulnerable to path traversal when a URI starts with // e.g., //../../../secret.txt. The root cause is an inconsistency between two slash-stripping implementations. Any file readable by the process can be...

8.7CVSS5.8AI score0.00361EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/04/23 7:17 p.m.19 views

PYSEC-2026-108

pretalx is a conference planning tool. Prior to 2026.1.0, The organiser search in the pretalx backend rendered submission titles, speaker display names, and user names/emails into the result dropdown using innerHTML string interpolation. Any user who controls one of those fields which includes an...

8.7CVSS5.9AI score0.00166EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/04/23 10:16 a.m.2 views

PYSEC-2026-2180

A critical remote code execution vulnerability exists in the unauthenticated REST API endpoint /99/ImportSQLTable in H2O-3 version 3.46.0.9 and prior. The vulnerability arises due to insufficient security controls in the parameter blacklist mechanism, which only targets MySQL JDBC driver-specific...

9.8CVSS7.3AI score0.00938EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/04/21 6:16 p.m.20 views

PYSEC-2026-92

mitmproxy is a interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers and mitmweb is a web-based interface for mitmproxy. In mitmproxy 12.2.1 and below, the builtin LDAP proxy authentication does not correctly sanitize the username when querying the LDAP...

4.8CVSS5.7AI score0.00166EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/04/21 6:16 p.m.14 views

PYSEC-2026-125

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev98, the setsessioncookiesecure beforerequest handler in src/pyload/webui/app/init.py reads the X-Forwarded-Proto header from any HTTP request without validating that the request originates from a trusted prox...

4.8CVSS5.8AI score0.00171EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/04/21 1:16 a.m.2 views

PYSEC-2026-2230

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. In versions 6.5 through 7.17.0, when HTMLExporter.embedimages=True, nbconvert's markdown renderer allows arbitrary file read via path traversal in image references. A malicious notebook...

6.5CVSS6.2AI score0.00306EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/04/21 1:16 a.m.2 views

PYSEC-2026-2229

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The...

6.5CVSS6.2AI score0.00266EPSS
Exploits0References2Affected Software1
Total number of security vulnerabilities7044