sentry-sdk@0.3.4 vulnerabilities
Python client for Sentry (https://sentry.io)
-
latest version
2.19.0
-
latest non vulnerable version
-
first published
6 years ago
-
latest version published
8 days ago
-
licenses detected
- [0.1.0rc1,1.16.0)
Direct Vulnerabilities
Known vulnerabilities in the sentry-sdk package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Information Exposure due to all environment variables being passed to the subprocesses when Note: The Stdlib integration is enabled by default. How to fix Information Exposure? Upgrade |
[,2.8.0)
|
Affected versions of this package are vulnerable to Race Condition such that in some cases the How to fix Race Condition? Upgrade |
[,1.4.1)
|
Affected versions of this package are vulnerable to Information Exposure in the Django integration, which leaks sensitive cookies values, including the session cookie to Sentry. An attacker with access to Sentry issues can use such cookies to escalate privileges within the application. Note: All of these conditions must be met for an application to be vulnerable:
How to fix Information Exposure? Upgrade |
[,1.14.0)
|