Lucene search
+L

7044 matches found

PyPA
PyPA
•added 2026/04/21 12:16 a.m.•3 views

PYSEC-2026-2177

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Cassandra export module glances/exports/glancescassandra/init.py interpolates keyspace, table, and replicationfactor configuration values directly into CQL statements without validation. A user with write...

6.3CVSS6.1AI score0.00212EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2026/04/21 12:16 a.m.•2 views

PYSEC-2026-2176

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, a Server-Side Request Forgery SSRF vulnerability exists in the Glances IP plugin due to improper validation of the publicapi configuration parameter. The value of publicapi is used directly in outbound HTTP...

8.8CVSS6.2AI score0.00396EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2026/04/21 12:16 a.m.•2 views

PYSEC-2026-2175

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Glances web server exposes a REST API /api/4/ that is accessible without authentication and allows cross-origin requests from any origin due to a permissive CORS policy Access-Control-Allow-Origin: . This...

8.7CVSS6.1AI score0.00408EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2026/04/20 5:16 p.m.•3 views

PYSEC-2026-2270

python-dotenv reads key-value pairs from a .env file and can set them as environment variables. Prior to version 1.2.2, setkey and unsetkey in python-dotenv follow symbolic links when rewriting .env files, allowing a local attacker to overwrite arbitrary files via a crafted symlink when a...

6.6CVSS7.1AI score0.00236EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2026/04/18 7:16 a.m.•28 views

PYSEC-2026-19

Secrets in Variables saved as JSON dictionaries were not properly redacted - in case thee variables were retrieved by the user the secrets stored as nested fields were not masked.If you do not store variables with sensitive values in JSON form, you are not affected. Otherwise please upgrade to...

3.7CVSS5.8AI score0.00421EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/18 7:16 a.m.•10 views

PYSEC-2026-18

In case of SQL errors, exception/stack trace of errors was exposed in API even if "api/exposestacktraces" was set to false. That could lead to exposing additional information to potential attacker. Users are recommended to upgrade to Apache Airflow 3.2.0, which fixes the issue...

7.5CVSS5.8AI score0.00449EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/04/18 7:16 a.m.•14 views

PYSEC-2026-13

Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly trusted, severity of this issue is Low.Users are recommended to upgrade to Apache Airflow 3.2.0, whi...

7.2CVSS6.1AI score0.00822EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/04/18 3:16 a.m.•3 views

PYSEC-2026-2158

gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP or TAR archive, the library fails to sanitize or validate the filenames of the archive members...

7.8CVSS6.2AI score0.00575EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2026/04/15 11:16 p.m.•4 views

PYSEC-2026-2250

Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when decoding a FITS image, making them vulnerable to decompression bomb attacks. A specially crafted FITS file could cause unbounded memory consumption, leading to denial of...

8.7CVSS7AI score0.00671EPSS
Exploits0References30Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•8 views

PYSEC-2026-2315

Weblate is a web based localization tool. In versions prior to 5.17, repository-boundary validation relies on string prefix checks on resolved absolute paths. In multiple code paths, the check uses startswith against the repository root path. This is not path-segment aware and can be bypassed whe...

5CVSS6.1AI score0.00324EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•13 views

PYSEC-2026-156

Weblate is a web based localization tool. In versions prior to 5.17, the webhook add-on did not utilize existing SSRF protections. This issue has been fixed in version 5.17. If developers are unable to update immediately, they can disable the webhook add-on as a workaround...

4.1CVSS5.7AI score0.00275EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•11 views

PYSEC-2026-155

Weblate is a web based localization tool. In versions prior to 5.17, the user patching API endpoint didn't properly limit the scope of edits. This issue has been fixed in version 5.17...

8.8CVSS5.7AI score0.00391EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•2 views

PYSEC-2026-2313

Weblate is a web based localization tool. In versions prior to 5.17, the ZIP download feature didn't verify downloaded files, potentially following symlinks outside the repository. This issue has been fixed in version 5.17...

7.7CVSS6AI score0.00465EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•13 views

PYSEC-2026-154

Weblate is a web based localization tool. In versions prior to 5.17, the project backup didn't filter Git and Mercurial configuration files which could lead to remote code execution under certain circumstances. This issue has been fixed in version 5.17. If developers are unable to update...

8CVSS6.4AI score0.00708EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•17 views

PYSEC-2026-153

Weblate is a web based localization tool. In versions prior to 5.17, the translation memory API exposed unintended endpoints, which in turn didn't perform proper access control. This issue has been fixed in version 5.17. If developers are unable to update immediately, they can disable this featur...

6.8CVSS5.7AI score0.00323EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•3 views

PYSEC-2026-2312

Weblate is a web based localization tool. In versions prior to 5.17, the ALLOWEDASSETDOMAINS setting applied only to the first issued requests and didn't restrict possible redirects. This issue has been fixed in version 5.17...

5CVSS6AI score0.0024EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 7:16 p.m.•2 views

PYSEC-2026-2314

Weblate is a web based localization tool. In versions prior to 5.17, a user with the project.edit permission granted by the per-project "Administration" role can configure machine translation service URLs pointing to arbitrary internal network addresses. During configuration validation, Weblate...

5CVSS6.1AI score0.0024EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 6:17 p.m.•17 views

PYSEC-2026-152

Weblate is a web based localization tool. In versions prior to 5.17, the translation memory API exposed unintended endpoints, which in turn didn't enforce proper access control. This issue has been fixed in version 5.17. If users are unable to update immediately, they can work around this issue b...

4.3CVSS5.7AI score0.00236EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/15 6:17 p.m.•3 views

PYSEC-2026-2311

Weblate is a web based localization tool. In versions prior to 5.17, the tasks API didn't verify user access for pending tasks. This could expose logs of in-progress operations to users who don't have access to given scope. The attacker needs to brute-force the random UUID of the task, so...

3.1CVSS6.1AI score0.00221EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/13 3:17 p.m.•16 views

PYSEC-2026-20

Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly trusted, severity of this issue is Low.Users are recommended to upgrade to Apache Airflow 3.2.0, whi...

8.8CVSS6.1AI score0.00592EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/13 3:17 p.m.•15 views

PYSEC-2026-8

Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions and pay attention to security details and security model of Airflow. Some assumptions the Deployment Manager could make were not clear or explicit enough, even though...

7.5CVSS5.8AI score0.00439EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/12 3:16 a.m.•3 views

PYSEC-2026-2200

A Cross-site Scripting XSS vulnerability was identified in the fromdict method of the AppLollmsMessage class in parisneo/lollms prior to version 2.2.0. The vulnerability arises from the lack of sanitization or HTML encoding of the content field when deserializing user-provided data. This allows a...

8.2CVSS7AI score0.00258EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2026/04/10 8:16 p.m.•23 views

PYSEC-2026-61

GeoNode versions 4.4.5 and 5.0.2 and prior within their respective releases contain a server-side request forgery vulnerability in the service registration endpoint that allows authenticated attackers to trigger outbound network requests to arbitrary URLs by submitting a crafted service URL durin...

6.3CVSS5.9AI score0.00172EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/10 8:16 p.m.•4 views

PYSEC-2026-2159

GeoNode versions 4.0 before 4.4.5 and 5.0 before 5.0.2 contain a server-side request forgery vulnerability that allows authenticated users with document upload permissions to trigger arbitrary outbound HTTP requests by providing a malicious URL via the docurl parameter during document upload...

6.3CVSS6.2AI score0.00222EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2026/04/10 5:17 p.m.•2 views

PYSEC-2026-2274

Rembg is a tool to remove images background. Prior to 2.0.75, a path traversal vulnerability in the rembg HTTP server allows unauthenticated remote attackers to read arbitrary files from the server's filesystem. By sending a crafted request with a malicious modelpath parameter, an attacker can...

5.3CVSS6.2AI score0.00592EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2026/04/10 3:16 a.m.•11 views

PYSEC-2026-202

An issue was discovered in OpenStack Keystone 14 through 26 before 26.1.1, 27.0.0, 28.0.0, and 29.0.0. Restricted application credentials can create EC2 credentials. By using a restricted application credential to call the EC2 credential creation API, an authenticated user with only a reader role...

5.3CVSS5.5AI score0.0022EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2026/04/09 7:16 p.m.•33 views

PYSEC-2026-151

Wasmtime is a runtime for WebAssembly. In 43.0.0, cloning a wasmtime::Linker is unsound and can result in use-after-free bugs. This bug is not controllable by guest Wasm programs. It can only be triggered by a specific sequence of embedder API calls made by the host. Specifically, the following...

5CVSS5.8AI score0.00117EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/04/09 6:17 p.m.•2 views

PYSEC-2026-2093

AGiXT is a dynamic AI Agent Automation Platform. Prior to 1.9.2, the safejoin function in the essentialabilities extension fails to validate that resolved file paths remain within the designated agent workspace. An authenticated attacker can use directory traversal sequences to read, write, or...

8.8CVSS6.2AI score0.01318EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2026/04/09 6:17 p.m.•4 views

PYSEC-2026-2265

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to 6.9.5, the safeEjs.ts file does not properly sanitize EJS templates. Users with the Manage customization capability can run arbitrary JavaScript in the context of the OpenCTI platform...

9.1CVSS6.2AI score0.00522EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/09 4:16 p.m.•53 views

PYSEC-2026-135

In Ubuntu, Subiquity version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, Subiquity could include certain user credentials, such as the user's plaintext Wi-Fi password, in the attached logs...

8.1CVSS5.8AI score0.00278EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/09 10:16 a.m.•13 views

PYSEC-2026-21

Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run read permissions, such as the Viewer role.This behavior conflicts with the FAB RBAC model, which treats XCom as a separate protected resource, and with the security mode...

6.5CVSS5.9AI score0.00685EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/08 9:17 p.m.•11 views

PYSEC-2026-36

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers e.g. Hash.update, this could lead to buffer overflows. This vulnerability is fixed in...

9.8CVSS5.9AI score0.00652EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/08 9:16 p.m.•3 views

PYSEC-2026-2234

NiceGUI is a Python-based UI framework. Prior to 3.10.0, Since PurePosixPath only recognizes forward slashes / as path separators, an attacker can bypass this sanitization on Windows by using backslashes \ in the upload filename. Applications that construct file paths using file.name a pattern...

7.5CVSS6.2AI score0.00371EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/04/08 1:16 p.m.•10 views

PYSEC-2026-111

A new API endpoint introduced in pretix 2025 that is supposed to return all check-in events of a specific event in fact returns all check-in events belonging to the respective organizer. This allows an API consumer to access information for all other events under the same organizer, even those th...

5.5CVSS5.8AI score0.00255EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2026/04/07 10:16 p.m.•11 views

PYSEC-2026-59

Emmett is a full-stack Python web framework designed with simplicity. From 2.5.0 to before 2.8.1, the RSGI static handler for Emmett's internal assets /emmett paths is vulnerable to path traversal attacks. An attacker can use ../ sequences eg /emmett/../rsgi/handlers.py to read arbitrary files...

9.1CVSS5.9AI score0.00495EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/04/07 8:16 p.m.•13 views

PYSEC-2026-60

FastFeedParser is a high performance RSS, Atom and RDF parser. Prior to 0.5.10, when parse fetches a URL that returns an HTML page containing a tag, it recursively calls itself with the redirect URL — with no depth limit, no visited-URL deduplication, and no redirect count cap. An...

7.5CVSS5.8AI score0.00328EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/04/07 8:16 p.m.•12 views

PYSEC-2026-70

JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust server memory by sending crafted JWE tokens with ZIP compression. The existing patch for CVE-2024-28102 limits input token size to 250KB but does not validate th...

6.8CVSS6.7AI score0.0098EPSS
Exploits2References1Affected Software1
PyPA
PyPA
•added 2026/04/07 5:16 p.m.•13 views

PYSEC-2026-123

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev97, the ADMINONLYCOREOPTIONS authorization set in setconfigvalue uses incorrect option names sslcert and sslkey, while the actual configuration option names are sslcertfile and sslkeyfile. This name mismatch...

6.8CVSS5.8AI score0.00142EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/04/07 5:16 p.m.•12 views

PYSEC-2026-124

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev97, the safeextractall function in src/pyload/plugins/extractors/UnTar.py uses os.path.commonprefix for its path traversal check, which performs character-level string comparison rather than path-level...

8.1CVSS5.8AI score0.00327EPSS
Exploits2References1Affected Software1
PyPA
PyPA
•added 2026/04/07 5:16 p.m.•9 views

PYSEC-2026-133

Strawberry GraphQL is a library for creating GraphQL APIs. Strawberry up until version 0.312.3 is vulnerable to an authentication bypass on WebSocket subscription endpoints. The legacy graphql-ws subprotocol handler does not verify that a connectioninit handshake has been completed before...

7.5CVSS5.7AI score0.00424EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/04/07 4:16 p.m.•10 views

PYSEC-2026-134

Strawberry GraphQL is a library for creating GraphQL APIs. Prior to 0.312.3, Strawberry GraphQL's WebSocket subscription handlers for both the graphql-transport-ws and legacy graphql-ws protocols allocate an asyncio.Task and associated Operation object for every incoming subscribe message without...

7.5CVSS5.8AI score0.00274EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2026/04/07 4:16 p.m.•13 views

PYSEC-2026-28

changedetection.io is a free open source web page change detection tool. Prior to 0.54.8, the @loginoptionallyrequired decorator is placed before outer to @blueprint.route instead of after it. In Flask, @route must be the outermost decorator because it registers the function it receives. When the...

9.8CVSS5.8AI score0.00536EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/04/07 3:17 p.m.•12 views

PYSEC-2026-51

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30.ASGIRequest allows a remote attacker to spoof headers by exploiting an ambiguous mapping of two header variants with hyphens or with underscores to a single version with underscores.Earlier, unsupported Django...

7.5CVSS5.8AI score0.00436EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/07 3:17 p.m.•14 views

PYSEC-2026-52

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30.Add permissions on inline model instances were not validated on submission offorged POST data in GenericInlineModelAdmin.Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluated and...

9.8CVSS5.8AI score0.00458EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/07 3:17 p.m.•13 views

PYSEC-2026-53

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30.Admin changelist forms using ModelAdmin.listeditable incorrectly allowed newinstances to be created via forged POST data.Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluated and...

2.7CVSS5.8AI score0.00294EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/07 3:17 p.m.•2 views

PYSEC-2026-2267

pyLoad is a free and open-source download manager written in Python. In 0.5.0b3.dev96 and earlier, the ADMINONLYOPTIONS protection mechanism restricts security-critical configuration values reconnect scripts, SSL certs, proxy credentials to admin-only access. However, this protection is only...

8.8CVSS6.2AI score0.00815EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2026/04/07 3:17 p.m.•11 views

PYSEC-2026-49

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30.ASGI requests with a missing or understated Content-Length header couldbypass the DATAUPLOADMAXMEMORYSIZE limit when readingHttpRequest.body, allowing remote attackers to load an unbounded request body...

7.5CVSS5.8AI score0.00769EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2026/04/07 3:17 p.m.•13 views

PYSEC-2026-48

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30.MultiPartParser allows remote attackers to degrade performance by submitting multipart uploads with Content-Transfer-Encoding: base64 including excessive whitespace.Earlier, unsupported Django series such as...

6.5CVSS5.8AI score0.00879EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2026/04/07 1:16 p.m.•14 views

PYSEC-2026-94

MLflow is vulnerable to an authorization bypass affecting the AJAX endpoint used to download saved model artifacts. Due to missing access‑control validation, a user without permissions to a given experiment can directly query this endpoint and retrieve model artifacts they are not authorized to...

5.4CVSS5.8AI score0.00362EPSS
Exploits2References4Affected Software1
PyPA
PyPA
•added 2026/04/07 1:16 p.m.•17 views

PYSEC-2026-93

MLflow is vulnerable to Stored Cross-Site Scripting XSS caused by unsafe parsing of YAML-based MLmodel artifacts in its web interface. An authenticated attacker can upload a malicious MLmodel file containing a payload that executes when another user views the artifact in the UI. This allows actio...

5.4CVSS5.8AI score0.00218EPSS
Exploits1References4Affected Software1
Total number of security vulnerabilities7044