Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
XML External Entity (XXE) Injection		peppol-py[,1.1.1)pip28 Nov 2025
  • M
Cross-site Scripting (XSS)		pretix[,2025.7.2)[2025.8.0,2025.8.1)[2025.9.0,2025.9.1)pip27 Nov 2025
  • L
Cross-site Scripting (XSS)		spotipy[,2.25.2)pip27 Nov 2025
  • M
Use of Cache Containing Sensitive Information		tutor[0,]pip27 Nov 2025
  • H
External Control of File Name or Path		mistral-dashboard[,14.0.1)pip27 Nov 2025
  • C
Arbitrary Code Injection		ray[,2.52.0)pip27 Nov 2025
  • C
Command Injection		fugue[0,]pip27 Nov 2025
  • M
Use of Multiple Resources with Duplicate Identifier		keylime[0,]pip25 Nov 2025
  • H
Improper Handling of Highly Compressed Data (Data Amplification)		pypdf[,6.4.0)pip25 Nov 2025
  • H
Out-of-bounds Write		vllm[0.10.2, 0.11.1)pip23 Nov 2025
  • H
Improper Validation of Array Index		vllm[0.5.5,0.11.1)pip23 Nov 2025
  • H
Allocation of Resources Without Limits or Throttling		vllm[0.5.5, 0.11.1)pip23 Nov 2025
  • H
Template Injection		langchain-core[,0.3.80)[0.4.0.dev0, 1.0.7)pip23 Nov 2025
  • H
Allocation of Resources Without Limits or Throttling		joserfc[,1.3.5)[1.4.0,1.4.2)pip20 Nov 2025
  • C
Deserialization of Untrusted Data		modular[,25.6.0)pip19 Nov 2025
  • H
Missing Release of Memory after Effective Lifetime		cbor2[,5.7.1)pip19 Nov 2025
  • C
Access Control Bypass		swift[0,]pip17 Nov 2025
  • C
Access Control Bypass		keystone[0,]pip17 Nov 2025
  • H
Uncontrolled Search Path Element		aws_advanced_python_wrapper[,1.4.0)pip16 Nov 2025
  • C
Use of Hard-coded Credentials		astrbot[,3.5.18)pip16 Nov 2025
  • M
Use After Free		openexr[3.2.3,3.2.5)[3.3.0,3.3.6)[3.4.0,3.4.3)pip14 Nov 2025
  • H
Arbitrary Code Injection		megatron-core[,0.14.0)pip14 Nov 2025
  • H
Server-side Request Forgery (SSRF)		kdcproxy[0,]pip13 Nov 2025
  • H
Allocation of Resources Without Limits or Throttling		kdcproxy[0,]pip13 Nov 2025
  • C
Arbitrary Command Injection		pgadmin4[,9.10)pip13 Nov 2025
  • C
Arbitrary Code Injection		pgadmin4[,9.10)pip13 Nov 2025
  • H
Improper Certificate Validation		pgadmin4[,9.10)pip13 Nov 2025
  • H
Denial of Service (DoS)		pgadmin4[,9.10)pip13 Nov 2025
  • H
Stack-based Buffer Overflow		nvidia-pytriton[0,]pip12 Nov 2025
  • H
Allocation of Resources Without Limits or Throttling		bugsink[,2.0.6)pip12 Nov 2025