Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo
cocoapods
Composer
Go
hex
Maven
npm
NuGet
pip
pub
RubyGems
Swift
Unmanaged (C/C++)
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
H
Deserialization of Untrusted Data
vllm
[0.5.2,]
pip
11 May 2025
L
Cross-site Scripting (XSS)
mezzanine
[0.12,]
pip
9 May 2025
M
Allocation of Resources Without Limits or Throttling
django
[,4.2.21)
[5.0a1,5.1.9)
[5.2a1,5.2.1)
pip
8 May 2025
C
Arbitrary Code Injection
pycel
[0,]
pip
8 May 2025
M
User Impersonation
octoprint
[,1.11.0)
pip
7 May 2025
H
Inefficient Algorithmic Complexity
vllm
[0.8.0,0.8.5)
pip
7 May 2025
C
Deserialization of Untrusted Data
vllm
[0.6.5,0.8.5)
pip
7 May 2025
M
Binding to an Unrestricted IP Address
vllm
[0.5.2,0.8.5)
pip
7 May 2025
L
Use of GET Request Method With Sensitive Query Strings
weblate
[0,5.11)
pip
5 May 2025
H
Directory Traversal
setuptools
[,78.1.1)
pip
2 May 2025
M
HTTP Request Smuggling
gevent
[,25.4.1)
pip
2 May 2025
M
Regular Expression Denial of Service (ReDoS)
transformers
[,4.50.0)
pip
30 Apr 2025
M
Allocation of Resources Without Limits or Throttling
markdownify
[,0.14.1)
pip
27 Apr 2025
H
Server-side Request Forgery (SSRF)
agpt
[0,]
pip
24 Apr 2025
C
Information Exposure
agpt
[0,]
pip
24 Apr 2025
M
Information Exposure
agpt
[0,]
pip
24 Apr 2025
C
Server-side Request Forgery (SSRF)
open-webui
[0,]
pip
23 Apr 2025
M
SQL Injection
web.py
[0,]
pip
20 Apr 2025
C
Deserialization of Untrusted Data
torch
[,2.6.0)
pip
20 Apr 2025
H
Exposure of Resource to Wrong Sphere
jupyter-remote-desktop-proxy
[3.0.0,3.0.1)
pip
18 Apr 2025
M
Missing Authentication for Critical Function
rasa-pro
[,3.9.20)
[3.10.3,3.10.18)
[3.11.0a1,3.11.7)
[3.12.0rc1,3.12.6)
pip
18 Apr 2025
M
Cross-site Scripting (XSS)
fprime-gds
[0,]
pip
18 Apr 2025
H
Insecure Defaults
fprime-gds
[0,]
pip
18 Apr 2025
M
Cross-site Scripting (XSS)
fprime-gds
[0,]
pip
18 Apr 2025
M
Command Injection
openmanus
[0,]
pip
17 Apr 2025
M
Improper Check for Unusual or Exceptional Conditions
torch
[0,]
pip
17 Apr 2025
C
Deserialization of Untrusted Data
whoogle-search
[0.8.0,0.9.1)
pip
17 Apr 2025
H
Allocation of Resources Without Limits or Throttling
xgrammar
[,0.1.18)
pip
16 Apr 2025
M
Arbitrary File Read
mysql-connector-python
[,9.3.0)
pip
16 Apr 2025
M
Improper Input Validation
lmdeploy
[0,]
pip
16 Apr 2025
