Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
CRLF Injection		aioftp[,0.26.3)pip6 Oct 2025
  • L
Deserialization of Untrusted Data		datachain[,0.34.2)pip6 Oct 2025
  • M
Unintended Proxy or Intermediary ('Confused Deputy')		marimo[0.9.20,0.16.4)pip6 Oct 2025
  • M
Cross-site Scripting (XSS)		nicegui[,3.0.0)pip6 Oct 2025
  • M
SQL Injection		django[4.2,4.2.25)[5.1,5.1.13)[5.2,5.2.7)pip2 Oct 2025
  • L
Relative Path Traversal		django[4.2,4.2.25)[5.1,5.1.13)[5.2,5.2.7)pip2 Oct 2025
  • M
Deserialization of Untrusted Data		pyfury[0.2.0a1,]pip1 Oct 2025
  • M
Deserialization of Untrusted Data		pyfory[,0.12.3)pip1 Oct 2025
  • M
Improper Neutralization of Escape Characters		mkdocs-include-markdown-plugin[,7.1.8)pip30 Sept 2025
  • H
Creation of Temporary File With Insecure Permissions		llama-index-core[0, 0.12.50)pip29 Sept 2025
  • M
Deserialization of Untrusted Data		lazyllm[0,]pip29 Sept 2025
  • H
Arbitrary Code Injection		megatron-core[,0.12.3)[0.13.0rc1, 0.13.1)pip29 Sept 2025
  • M
Directory Traversal		ml-logger[0,]pip28 Sept 2025
  • M
Directory Traversal		ml-logger[0,]pip28 Sept 2025
  • M
Deserialization of Untrusted Data		ml-logger[0,]pip28 Sept 2025
  • C
Arbitrary Code Injection		megatron-core[,0.12.3)[0.13.0rc1, 0.13.1)pip28 Sept 2025
  • C
Arbitrary Code Injection		megatron-core[,0.12.3)[0.13.0rc1, 0.13.1)pip28 Sept 2025
  • H
Arbitrary Code Injection		megatron-core[,0.12.3)[0.13.0rc1, 0.13.1)pip28 Sept 2025
  • M
Cross-site Scripting (XSS)		llama-stack[,0.2.20)pip28 Sept 2025
  • H
NULL Pointer Dereference		pymupdf[1.24.0,]pip26 Sept 2025
  • M
Mismatched Memory Management Routines		ogre-python[0,]pip26 Sept 2025
  • M
Heap-based Buffer Overflow		ogre-python[0,]pip26 Sept 2025
  • M
NULL Pointer Dereference		ogre-python[0,]pip26 Sept 2025
  • H
Information Exposure		apache-airflow-core[3.0.3,3.0.4)pip26 Sept 2025
  • L
Use of Web Link to Untrusted Target with window.opener Access		jupyterlab[,4.4.8)pip26 Sept 2025
  • M
Improper Validation of Syntactic Correctness of Input		torch[,2.8.0)pip26 Sept 2025
  • M
Improper Handling of Undefined Values		torch[,2.8.0)pip26 Sept 2025
  • M
Reachable Assertion		torch[2.6.0,2.7.0)pip26 Sept 2025
  • L
Always-Incorrect Control Flow Implementation		torch[0,]pip26 Sept 2025
  • M
Integer Overflow or Wraparound		torch[0,]pip26 Sept 2025