Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • L
Use of GET Request Method With Sensitive Query Strings
weblate[0,5.11)pip5 May 2025
  • H
Directory Traversal
setuptools[,78.1.1)pip2 May 2025
  • M
HTTP Request Smuggling
gevent[,25.4.1)pip2 May 2025
  • M
Regular Expression Denial of Service (ReDoS)
transformers[,4.50.0)pip30 Apr 2025
  • M
Allocation of Resources Without Limits or Throttling
markdownify[,0.14.1)pip27 Apr 2025
  • H
Server-side Request Forgery (SSRF)
agpt[0,]pip24 Apr 2025
  • C
Information Exposure
agpt[0,]pip24 Apr 2025
  • M
Information Exposure
agpt[0,]pip24 Apr 2025
  • C
Server-side Request Forgery (SSRF)
open-webui[0,]pip23 Apr 2025
  • M
SQL Injection
web.py[0,]pip20 Apr 2025
  • C
Deserialization of Untrusted Data
torch[,2.6.0)pip20 Apr 2025
  • H
Exposure of Resource to Wrong Sphere
jupyter-remote-desktop-proxy[3.0.0,3.0.1)pip18 Apr 2025
  • M
Missing Authentication for Critical Function
rasa-pro[,3.9.20)[3.10.3,3.10.18)[3.11.0a1,3.11.7)[3.12.0rc1,3.12.6)pip18 Apr 2025
  • M
Cross-site Scripting (XSS)
fprime-gds[0,]pip18 Apr 2025
  • H
Insecure Defaults
fprime-gds[0,]pip18 Apr 2025
  • M
Cross-site Scripting (XSS)
fprime-gds[0,]pip18 Apr 2025
  • M
Command Injection
openmanus[0,]pip17 Apr 2025
  • M
Improper Check for Unusual or Exceptional Conditions
torch[0,]pip17 Apr 2025
  • C
Deserialization of Untrusted Data
whoogle-search[0.8.0,0.9.1)pip17 Apr 2025
  • H
Allocation of Resources Without Limits or Throttling
xgrammar[,0.1.18)pip16 Apr 2025
  • M
Arbitrary File Read
mysql-connector-python[,9.3.0)pip16 Apr 2025
  • M
Improper Input Validation
lmdeploy[0,]pip16 Apr 2025
  • H
Server-side Request Forgery (SSRF)
lnbits[,1.0.0rc8)pip16 Apr 2025
  • H
Allocation of Resources Without Limits or Throttling
gradio[0,]pip15 Apr 2025
  • L
Server-side Request Forgery (SSRF)
mobsf[,4.3.2)pip14 Apr 2025
  • H
Denial of Service (DoS)
imaginairy[0,]pip14 Apr 2025
  • M
Cross-site Request Forgery (CSRF)
open-webui[,0.3.16)pip10 Apr 2025
  • M
Server-side Request Forgery (SSRF)
open-webui[0,]pip10 Apr 2025
  • H
Cross-site Request Forgery (CSRF)
open-webui[,0.3.33)pip10 Apr 2025
  • H
Arbitrary File Upload
open-webui[,0.5.17)pip10 Apr 2025