Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Allocation of Resources Without Limits or Throttling		gradio[0,]pip15 Apr 2025
  • L
Server-side Request Forgery (SSRF)		mobsf[,4.3.2)pip14 Apr 2025
  • H
Denial of Service (DoS)		imaginairy[0,]pip14 Apr 2025
  • M
Cross-site Request Forgery (CSRF)		open-webui[,0.3.16)pip10 Apr 2025
  • M
Server-side Request Forgery (SSRF)		open-webui[0,]pip10 Apr 2025
  • H
Cross-site Request Forgery (CSRF)		open-webui[,0.3.33)pip10 Apr 2025
  • H
Arbitrary File Upload		open-webui[,0.5.17)pip10 Apr 2025
  • H
Denial of Service (DoS)		open-webui[,0.5.13)pip10 Apr 2025
  • M
Cross-site Scripting (XSS)		open-webui[0,]pip10 Apr 2025
  • H
Missing Authentication for Critical Function		open-webui[,0.5.13)pip10 Apr 2025
  • M
Insufficient Isolation of System-Dependent Functions		open-webui[,0.4.0)pip10 Apr 2025
  • M
Cross-site Scripting (XSS)		open-webui[0,]pip10 Apr 2025
  • H
Directory Traversal		open-webui[0,]pip10 Apr 2025
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)		open-webui[0,]pip10 Apr 2025
  • M
Cross-site Scripting (XSS)		open-webui[0,]pip10 Apr 2025
  • H
Allocation of Resources Without Limits or Throttling		open-webui[0,]pip10 Apr 2025
  • M
Improper Privilege Management		open-webui[0,]pip10 Apr 2025
  • M
Undefined Behavior for Input to API		open-webui[0,]pip10 Apr 2025
  • C
SQL Injection		llama-index-retrievers-duckdb-retriever[,0.4.0)pip10 Apr 2025
  • H
Incorrect Synchronization		open-webui[0,]pip10 Apr 2025
  • H
Missing Critical Step in Authentication		lollms[0,]pip9 Apr 2025
  • M
Arbitrary File Write via Archive Extraction (Zip Slip)		gluoncv[0,]pip9 Apr 2025
  • M
Cross-site Request Forgery (CSRF)		vanna[0,]pip9 Apr 2025
  • C
Arbitrary Command Injection		lollms[,11.0.0)pip9 Apr 2025
  • C
Deserialization of Untrusted Data		bentoml[1.0.0,1.4.8)pip9 Apr 2025
  • H
Denial of Service (DoS)		invokeai[0,]pip8 Apr 2025
  • H
Denial of Service (DoS)		invokeai[0,]pip8 Apr 2025
  • H
Directory Traversal		invokeai[,5.3.0rc1)pip8 Apr 2025
  • C
Cross-site Scripting (XSS)		open-webui[,0.3.24)pip8 Apr 2025
  • H
Class Pollution		mesop[,0.14.1)pip8 Apr 2025