Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
M Directory Traversal	composio-core[0,]	pip	5 Dec 2025
M Access Control Bypass	open-webui[0,]	pip	5 Dec 2025
M Server-side Request Forgery (SSRF)	open-webui[,0.6.37)	pip	5 Dec 2025
M Cross-site Scripting (XSS)	open-webui[,0.6.37)	pip	5 Dec 2025
M Insertion of Sensitive Information into Log File	ansible[,12.0.0)	pip	5 Dec 2025
H Use of Incorrectly-Resolved Name or Reference	strands-agents[,1.18.0)	pip	5 Dec 2025
M Incorrect Authorization	agent-mcp-gateway[,0.2.0)	pip	5 Dec 2025
C Command Injection	rxiv-maker[,1.8.9)	pip	5 Dec 2025
M SQL Injection	sonnixgres[,0.2.0)	pip	5 Dec 2025
C SQL Injection	asyncmy[0,]	pip	4 Dec 2025
M Access Control Bypass	chainlit[,2.8.5)	pip	4 Dec 2025
C Command Injection	agentc[,0.2.5a4)	pip	4 Dec 2025
C Arbitrary Code Injection	agentc[,0.2.5a4)	pip	4 Dec 2025
M Incorrect Default Permissions	caffeinated-whale-cli[,0.14.0)	pip	4 Dec 2025
H Directory Traversal	rxiv-maker[,1.9.0)	pip	4 Dec 2025
M Incorrect Default Permissions	bzfs[,1.14.0)	pip	4 Dec 2025
C Command Injection	caffeinated-whale-cli[,0.14.0)	pip	4 Dec 2025
H Allocation of Resources Without Limits or Throttling	brotlicffi[,1.2.0.0)	pip	4 Dec 2025
C Command Injection	claude-statusline[,1.9.9)	pip	4 Dec 2025
H Directory Traversal	flamehaven-filesearch[,1.1.0)	pip	4 Dec 2025
H Improper Restriction of Communication Channel to Intended Endpoints	fastcrud[,0.19.0)	pip	4 Dec 2025
M SQL Injection	fraiseql[,1.4.0)	pip	4 Dec 2025
H Directory Traversal	gapless-crypto-data[,2.16.0)	pip	4 Dec 2025
H Directory Traversal	gapless-crypto-clickhouse[,4.0.0)	pip	4 Dec 2025
M Missing Authorization	github-webhook-server[,4.0.0)	pip	4 Dec 2025
C Arbitrary Code Injection	kagura-ai[,4.2.3)	pip	4 Dec 2025
M Missing Authorization	label-studio-sso[,6.0.8)	pip	4 Dec 2025
M Cross-site Request Forgery (CSRF)	label-studio-sso[,6.0.3)	pip	4 Dec 2025
H Race Condition	lifx-async[,2.2.1)	pip	4 Dec 2025
C Command Injection	mcp-docker[,1.0.2)	pip	4 Dec 2025

APPLICATION

OPERATING SYSTEM