Lucene search
+L

7044 matches found

PyPA
PyPA
added 2026/03/13 7:55 p.m.16 views

PYSEC-2026-120

PyJWT is a JSON Web Token implementation in Python. Prior to 2.12.0, PyJWT does not validate the crit Critical Header Parameter defined in RFC 7515 §4.1.11. When a JWS token contains a crit array listing extensions that PyJWT does not understand, the library accepts the token instead of rejecting...

7.5CVSS6.8AI score0.00269EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/03/13 7:54 p.m.3 views

PYSEC-2026-2122

CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to Kozea/CairoSVG has exponential denial of service via recursive element amplification in cairosvg/defs.py. This causes CPU exhaustion from a small input...

7.5CVSS7AI score0.0049EPSS
Exploits2References2Affected Software1
PyPA
PyPA
added 2026/03/12 8:16 p.m.4 views

PYSEC-2026-2121

Black is the uncompromising Python code formatter. Prior to 26.3.1, Black writes a cache file, the name of which is computed from various formatting options. The value of the --python-cell-magics option was placed in the filename without sanitization, which allowed an attacker who controls the...

8.7CVSS7.1AI score0.00572EPSS
Exploits0References10Affected Software1
PyPA
PyPA
added 2026/03/12 5:16 p.m.16 views

PYSEC-2026-118

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to 6.8.16, the OpenCTI platform’s data ingestion feature accepts user-supplied URLs without validation and uses the Axios HTTP client with its default configuration allowAbsoluteUrls: true...

7.7CVSS5.9AI score0.00212EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/03/11 9:16 p.m.16 views

PYSEC-2026-31

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

7.5CVSS5.8AI score0.00344EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/03/11 9:16 p.m.9 views

PYSEC-2026-32

Copyparty is a portable file server. Prior to 1.20.12, if an attacker has been given both read- and write-permissions to the server, they can upload a malicious file with the filename .prologue.html and then craft a link to potentially execute arbitrary JavaScript in the victim's context. Note th...

4.4CVSS6AI score0.00162EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/03/11 8:16 p.m.10 views

PYSEC-2026-140

Tornado is a Python web framework and asynchronous networking library. In versions of Tornado prior to 6.5.5, the only limit on the number of parts in multipart/form-data is the maxbodysize setting default 100MB. Since parsing occurs synchronously on the main thread, this creates the possibility ...

8.7CVSS7.3AI score0.00375EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/03/11 8:16 p.m.4 views

PYSEC-2026-2120

Black is the uncompromising Python code formatter. Black provides a GitHub action for formatting code. This action supports an option, usepyproject: true, for reading the version of Black to use from the repository pyproject.toml. A malicious pull request could edit pyproject.toml to use a direct...

9.8CVSS6.5AI score0.0046EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/03/10 6:18 p.m.3 views

PYSEC-2026-2137

Copyparty is a portable file server. Prior to v1.20.11., the nohtml config option, intended to prevent execution of JavaScript in user-uploaded HTML files, did not apply to SVG images. A user with write-permission could upload an SVG containing embedded JavaScript, which would execute in the...

5.4CVSS6.2AI score0.00323EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2026/03/10 6:18 p.m.4 views

PYSEC-2026-2165

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.1, The TimescaleDB export module constructs SQL queries using string concatenation with unsanitized system monitoring data. The normalize method wraps string values in single quotes but does not escape embedded single...

9.8CVSS6.6AI score0.00364EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/03/10 6:18 p.m.3 views

PYSEC-2026-2164

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.1, the /api/4/config REST API endpoint returns the entire parsed Glances configuration file glances.conf via self.config.asdict with no filtering of sensitive values. The configuration file contains credentials for all...

8.7CVSS7AI score0.01657EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/03/09 8:16 p.m.10 views

PYSEC-2026-97

A vulnerability in the filestring function of the nltk.util module in nltk version 3.9.2 allows arbitrary file read due to improper validation of input paths. The function directly opens files specified by user input without sanitization, enabling attackers to access sensitive system files by...

8.6CVSS7.4AI score0.00428EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/03/09 4:16 p.m.10 views

PYSEC-2026-84

An issue pertaining to CWE-312: Cleartext Storage of Sensitive Information was discovered in lesspass lesspass v9.6.9 which allows attackers to obtain sensitive information...

6.5CVSS5.8AI score0.00167EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2026/03/07 4:15 p.m.3 views

PYSEC-2026-2148

emlparser serves as a python module for parsing eml files and returning various information found in the e-mail as well as computed information. Prior to version 2.0.1, the official example script examples/recursivelyextractattachments.py contains a path traversal vulnerability that allows...

5.5CVSS6.1AI score0.00237EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/03/07 4:15 p.m.12 views

PYSEC-2026-121

pyLoad is a free and open-source download manager written in Python. From version 0.5.0b3.dev13 to 0.5.0b3.dev96, the editpackage function implements insufficient sanitization for the packfolder parameter. The current protection relies on a single-pass string replacement of "../", which can be...

7.1CVSS5.7AI score0.00517EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/03/06 7:16 a.m.3 views

PYSEC-2026-2129

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, a Zip Slip vulnerability in the backup restore functionality allows arbitrary file overwrite via path traversal in uploaded ZIP archives. This issue has been patched in version 0.54.4...

9.3CVSS6.1AI score0.00527EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/03/06 7:16 a.m.3 views

PYSEC-2026-2127

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, there is a reflected cross-site scripting XSS vulnerability identified in the /rss/tag/ endpoint of changedetection.io. The taguuid path parameter is reflected directly in the HTTP response body...

6.1CVSS6AI score0.00282EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/03/06 7:16 a.m.3 views

PYSEC-2026-2128

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, the changedetection.io application allows users to specify XPath expressions as content filters via the includefilters field. These XPath expressions are processed using the elementpath library which...

9.3CVSS6.1AI score0.00484EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/03/06 7:16 a.m.3 views

PYSEC-2026-2118

Authlib is a Python library which builds OAuth and OpenID Connect servers. From version 1.6.5 to before version 1.6.7, previous tests involving passing a malicious JWT containing alg: none and an empty signature was passing the signature verification step without any changes to the application co...

9.8CVSS7AI score0.00425EPSS
Exploits1References12Affected Software1
PyPA
PyPA
added 2026/03/06 7:15 a.m.4 views

PYSEC-2026-2133

CocoIndex is a data transformation framework for AI. Prior to version 0.3.34, the Doris target connector didn't verify the configured table name before creating some SQL statements ALTER TABLE. So, in the application code, if the table name is provided by an untrusted upstream, it expose...

9.8CVSS6.1AI score0.00282EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/03/06 5:16 a.m.3 views

PYSEC-2026-2186

Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format. From version 4.4.0 to before version 4.4.5 and from version 4.5.0 to before version 4.5.1, an attacker can manipulate the HTTP Host header on a password reset or account creation...

8.1CVSS6AI score0.00427EPSS
Exploits0References5Affected Software1
PyPA
PyPA
added 2026/03/05 9:16 p.m.14 views

PYSEC-2026-112

Products.isurlinportal is a replacement for isURLInPortal method in Plone. Prior to versions 2.1.0, 3.1.0, and 4.0.0, a url /login?camefrom=////evil.example may redirect to an external website after login. This issue has been patched in versions 2.1.0, 3.1.0, and 4.0.0...

6.1CVSS5.7AI score0.00227EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/03/05 9:16 p.m.17 views

PYSEC-2026-99

NLTK versions =3.9.2 are vulnerable to arbitrary code execution due to improper input validation in the StanfordSegmenter module. The module dynamically loads external Java .jar files without verification or sandboxing. An attacker can supply or replace the JAR file, enabling the execution of...

10CVSS8.1AI score0.00809EPSS
Exploits3References1Affected Software1
PyPA
PyPA
added 2026/03/05 8:16 p.m.4 views

PYSEC-2026-2202

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.4, the tag passes through the default Cleaner configuration. While pagestructure=True removes html, head, and title tags, there is no specific handling for , allowing an attacker to inje...

6.1CVSS6.7AI score0.00254EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/03/05 8:16 p.m.3 views

PYSEC-2026-2201

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.4, the hassneakyjavascript method strips backslashes before checking for dangerous CSS keywords. This causes CSS Unicode escape sequences to bypass the @import and expression filters,...

6.1CVSS6.4AI score0.00228EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/03/05 8:16 p.m.10 views

PYSEC-2026-83

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. In version 1.0.9 and prior, LangGraph checkpointers can load msgpack-encoded checkpoints that reconstruct Python objects during deserialization. If an attacker can...

7.2CVSS5.8AI score0.05219EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/03/05 8:16 p.m.3 views

PYSEC-2026-2307

Wagtail is an open source content management system built on Django. Prior to versions 6.3.8, 7.0.6, 7.2.3, and 7.3.1, a stored cross-site scripting XSS vulnerability exists on rendering TableBlock blocks within a StreamField. A user with access to create or edit pages containing TableBlock...

6.1CVSS6.1AI score0.00418EPSS
Exploits0References9Affected Software1
PyPA
PyPA
added 2026/03/05 8:16 p.m.3 views

PYSEC-2026-2308

Wagtail is an open source content management system built on Django. Prior to versions 6.3.8, 7.0.6, 7.2.3, and 7.3.1, a stored cross-site scripting XSS vulnerability exists on confirmation messages within the wagtail.contrib.simpletranslation module. A user with access to the Wagtail admin area...

6.1CVSS6.1AI score0.00459EPSS
Exploits0References9Affected Software1
PyPA
PyPA
added 2026/03/05 4:16 p.m.3 views

PYSEC-2026-2322

xgrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to version 0.1.32, the multi-level nested syntax caused a segmentation fault core dumped. This issue has been patched in version 0.1.32...

8.7CVSS7AI score0.00688EPSS
Exploits1References9Affected Software1
PyPA
PyPA
added 2026/03/05 3:16 p.m.12 views

PYSEC-2026-89

Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser.HTMLParser to raise an unhandled AssertionError during Markdown parsing. Because Python-Markdown does not catch this exception, any application that processes attacker-controlled Markdown...

7.5CVSS7.3AI score0.00566EPSS
Exploits1References5Affected Software1
PyPA
PyPA
added 2026/03/05 6:16 a.m.27 views

PYSEC-2026-56

An open redirect vulnerability exists in django-allauth versions prior to 65.14.1 when SAML IdP initiated SSO is enabled it is disabled by default, which may allow an attacker to redirect users to an arbitrary external website via a crafted URL...

6.1CVSS5.9AI score0.00159EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2026/03/04 7:16 p.m.11 views

PYSEC-2026-98

A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in multiple CorpusReader classes, including WordListCorpusReader, TaggedCorpusReader, and BracketParseCorpusReader. These classes fail to properly sanitize or validate file paths, enabling...

8.6CVSS7.8AI score0.00924EPSS
Exploits3References2Affected Software1
PyPA
PyPA
added 2026/02/27 10:16 p.m.11 views

PYSEC-2026-65

Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, the redirecttotarget function in Gradio's OAuth flow accepts an unvalidated targeturl query parameter, allowing redirection to arbitrary external URLs. This affects the /logout and /login/callback...

4.7CVSS5.9AI score0.00232EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/02/27 10:16 p.m.20 views

PYSEC-2026-64

Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.7, Gradio apps running on Window with Python 3.13+ are vulnerable to an absolute path traversal issue that enables unauthenticated attackers to read arbitrary files from the file system. Python 3.13+ change...

7.5CVSS7.4AI score0.03095EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/02/27 10:16 p.m.11 views

PYSEC-2026-66

Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, a Server-Side Request Forgery SSRF vulnerability in Gradio allows an attacker to make arbitrary HTTP requests from a victim's server by hosting a malicious Gradio Space. When a victim application uses...

8.6CVSS5.9AI score0.00316EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/02/27 10:16 p.m.9 views

PYSEC-2026-63

Gradio is an open-source Python package designed for quick prototyping. Starting in version 4.16.0 and prior to version 6.6.0, Gradio applications running outside of Hugging Face Spaces automatically enable "mocked" OAuth routes when OAuth components e.g. gr.LoginButton are used. When a user visi...

5.9CVSS5.8AI score0.00453EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/02/27 9:16 p.m.3 views

PYSEC-2026-2183

Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In versions prior to 3.3.11, the API endpoint used to manage event series is missing an access check, allowing unauthenticated/unauthorized access to this endpoint. The impact of this ...

6.5CVSS6.1AI score0.00264EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/02/27 8:21 p.m.3 views

PYSEC-2026-2248

pillowheif is a Python library for working with HEIF images and plugin for Pillow. Prior to version 1.3.0, an integer overflow in the encode path buffer validation of pillowheif.c allows an attacker to bypass bounds checks by providing large image dimensions, resulting in a heap out-of-bounds rea...

9.1CVSS6.2AI score0.00632EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/02/27 8:21 p.m.3 views

PYSEC-2026-2258

pillowheif is a Python library for working with HEIF images and plugin for Pillow. Prior to version 1.3.0, an integer overflow in the encode path buffer validation of pillowheif.c allows an attacker to bypass bounds checks by providing large image dimensions, resulting in a heap out-of-bounds rea...

9.1CVSS6.2AI score0.00632EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/02/27 8:17 a.m.3 views

PYSEC-2026-2295

A flaw was found in uv. This vulnerability allows an attacker to execute malicious code during package resolution or installation via specially crafted ZIP Zipped Information Package archives that exploit parsing differentials, requiring user interaction to install an attacker-controlled package...

6.3CVSS6.1AI score0.0015EPSS
Exploits0References5Affected Software1
PyPA
PyPA
added 2026/02/26 10:20 p.m.3 views

PYSEC-2026-2310

Weblate is a web based localization tool. Prior to version 5.16.1, the REST API's AddonViewSet weblate/api/views.py, line 2831 uses queryset = Addon.objects.all without overriding getqueryset to scope results by user permissions. This allows any authenticated user or anonymous users if REQUIRELOG...

4.3CVSS6.1AI score0.00303EPSS
Exploits0References6Affected Software1
PyPA
PyPA
added 2026/02/26 2:16 a.m.12 views

PYSEC-2026-7

Agenta is an open-source LLMOps platform. A Server-Side Template Injection SSTI vulnerability exists in versions prior to 0.86.8 in Agenta's API server evaluator template rendering. Although the vulnerable code lives in the SDK package, it is executed server-side within the API process when runni...

8.8CVSS5.9AI score0.00318EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/02/26 2:16 a.m.14 views

PYSEC-2026-6

Agenta is an open-source LLMOps platform. In Agenta-API prior to version 0.48.1, a Python sandbox escape vulnerability existed in Agenta's custom code evaluator. Agenta used RestrictedPython as a sandboxing mechanism for user-supplied evaluator code, but incorrectly whitelisted the numpy package ...

9.9CVSS6.3AI score0.00497EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2026/02/26 2:16 a.m.3 views

PYSEC-2026-2246

OpenLIT is an open source platform for AI engineering. Prior to version 1.37.1, several GitHub Actions workflows in OpenLIT's GitHub repository use the pullrequesttarget event while checking out and executing untrusted code from forked pull requests. These workflows run with the security context ...

9.9CVSS6.1AI score0.00395EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/02/26 2:16 a.m.3 views

PYSEC-2026-2136

Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter ?setck=.... Version 1.20.9 fixes the issue...

6.1CVSS6AI score0.00163EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/02/26 12:16 a.m.3 views

PYSEC-2026-2262

psd-tools is a Python package for working with Adobe Photoshop PSD files. Prior to version 1.12.2, when a PSD file contains malformed RLE-compressed image data e.g. a literal run that extends past the expected row size, decoderle raises ValueError which propagated all the way to the user, crashin...

9.1CVSS6.1AI score0.0041EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2026/02/25 5:17 a.m.3 views

PYSEC-2026-2125

changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1, the RSS single-watch endpoint reflects the UUID path parameter directly in the HTTP response body without HTML escaping. Since Flask returns text/html by default for plain string responses, the...

6.1CVSS6.1AI score0.00445EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/02/25 5:17 a.m.4 views

PYSEC-2026-2126

changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1, changedetection.io is vulnerable to Server-Side Request Forgery SSRF because the URL validation function issafevalidurl does not validate the resolved IP address of watch URLs against private,...

8.6CVSS6.1AI score0.00445EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2026/02/24 6:29 p.m.4 views

PYSEC-2026-2232

NiceGUI is a Python-based UI framework. Prior to version 3.8.0, several NiceGUI APIs that execute methods on client-side elements Element.runmethod, AgGrid.rungridmethod, EChart.runchartmethod, and others use an eval fallback in the JavaScript-side runMethod function. When user-controlled input i...

6.1CVSS6.2AI score0.00163EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2026/02/24 3:21 p.m.3 views

PYSEC-2026-2205

MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.9.1.1, there is a path traversal vulnerability in Mindsdb's /api/files interface, which an authenticated attacker can exploit to achieve remote command execution. The vulnerability exists in the...

8.8CVSS6.2AI score0.11113EPSS
Exploits5References3Affected Software1
Total number of security vulnerabilities7044