Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
M Information Exposure	apache-airflow [2.7.0,2.9.0)	pip	19 Apr 2024
H Path Traversal	mlflow [,2.12.1)	pip	18 Apr 2024
H Heap-based Buffer Overflow	torch [,2.2.0)	pip	18 Apr 2024
M Cross-site Scripting (XSS)	aiohttp [,3.9.4)	pip	18 Apr 2024
H Use After Free	torch [,2.2.0)	pip	18 Apr 2024
H Path Traversal	mlflow [0,]	pip	17 Apr 2024
C Code Injection	keras [,2.13.1rc0)	pip	17 Apr 2024
C Command Injection	llama-index [,0.10.24)	pip	16 Apr 2024
H Path Traversal	mlflow [,2.11.3)	pip	16 Apr 2024
C Path Traversal	zenml [,0.55.5)	pip	16 Apr 2024
M Server-side Request Forgery (SSRF)	gradio [,4.10.0)	pip	16 Apr 2024
H Improper Access Control	gradio [,4.13.0)	pip	16 Apr 2024
M Cross-site Scripting	mindsdb [0,]	pip	16 Apr 2024
C Insecure Deserialization	bentoml [,1.2.5)	pip	16 Apr 2024
M Session Fixation	zenml [,0.56.2)	pip	16 Apr 2024
H Path Traversal	mlflow [,2.11.3)	pip	16 Apr 2024
H Path Traversal	mlflow [,2.12.1)	pip	16 Apr 2024
C Path Traversal	mlflow [,2.10.0)	pip	16 Apr 2024
M Path Traversal	langchain [,0.0.353)	pip	16 Apr 2024
H Information Exposure Through Sent Data	scrapy [,2.11.1)	pip	16 Apr 2024
H Uncontrolled Recursion	sqlparse [,0.5.0)	pip	16 Apr 2024
H HTTP Request Smuggling	gunicorn [,22.0.0)	pip	16 Apr 2024
M Time-of-check Time-of-use (TOCTOU) Race Condition	magnum [,14.1.2) [15.0.0.0rc1,15.0.2) [16.0.0.0rc1,16.0.2) [17.0.0.0rc1,17.0.2)	pip	14 Apr 2024
H Relative Path Traversal	nicegui [1.4.6,1.4.21)	pip	14 Apr 2024
M Resource Exhaustion	idna [,3.7)	pip	12 Apr 2024
C Improper Control of Generation of Code ('Code Injection')	llama-index-core [,0.10.24)	pip	11 Apr 2024
C Improper Neutralization of Special Elements used in a Template Engine ('Template Injection')	litellm [,1.34.42)	pip	11 Apr 2024
M Improper Access Control	roundup [1.4.0,1.4.6) [1.2.0,1.2.1)	pip	11 Apr 2024
C Improper Control of Generation of Code ('Code Injection')	aim [3.0.0,]	pip	11 Apr 2024
H Cross-Site Request Forgery (CSRF)	aim [0,]	pip	11 Apr 2024

APPLICATION

OPERATING SYSTEM