Vulnerability DB | Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications

All Vulnerabilities

APPLICATION

Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++

OPERATING SYSTEM

All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi

Report a new vulnerability

H

Command InjectionCVE-2026-0765

Affects open-webui | Versions [0,]

Has fix

pipPublished 26 Jan 2026

H

Arbitrary Code InjectionCVE-2026-0766

Affects open-webui | Versions [0,]

Has fix

pipPublished 25 Jan 2026

C

Deserialization of Untrusted DataCVE-2026-24009

Affects docling-core | Versions [2.21.0, 2.48.4)

Has fix

pipPublished 25 Jan 2026

H

Heap-based Buffer OverflowCVE-2026-1260

Affects sentencepiece | Versions [,0.2.1)

Has fix

pipPublished 25 Jan 2026

C

Deserialization of Untrusted DataCVE-2026-0773

Affects upsonic | Versions [0,]

Has fix

pipPublished 25 Jan 2026

C

Arbitrary Code InjectionCVE-2026-0761

Affects metagpt | Versions [0,]

Has fix

pipPublished 25 Jan 2026

C

Deserialization of Untrusted DataCVE-2026-0760

Affects metagpt | Versions [0,]

Has fix

pipPublished 25 Jan 2026

C

Eval InjectionCVE-2026-0769

Affects lfx | Versions [0,]

Has fix

pipPublished 25 Jan 2026

C

Eval InjectionCVE-2026-0769

Affects langflow | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Arbitrary Code InjectionCVE-2026-0771

Affects lfx | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Arbitrary Code InjectionCVE-2026-0771

Affects langflow | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Unsafe Dependency ResolutionCVE-2026-0770

Affects lfx | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Unsafe Dependency ResolutionCVE-2026-0770

Affects langflow | Versions [0,]

Has fix

pipPublished 25 Jan 2026

C

Arbitrary Code InjectionCVE-2026-0768

Affects lfx | Versions [0,]

Has fix

pipPublished 25 Jan 2026

C

Arbitrary Code InjectionCVE-2026-0768

Affects langflow | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Deserialization of Untrusted DataCVE-2026-0772

Affects langflow-base | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Deserialization of Untrusted DataCVE-2026-0772

Affects langflow | Versions [0,]

Has fix

pipPublished 25 Jan 2026

M

LDAP InjectionCVE-2026-24130

Affects moonraker | Versions [,0.10.0)

Has fix

pipPublished 25 Jan 2026

H

Cross-site Scripting (XSS)CVE-2026-23499

Affects saleor | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Cross-site Scripting (XSS)CVE-2026-22849

Affects saleor | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Authorization Bypass Through User-Controlled KeyCVE-2026-24136

Affects saleor | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Uncontrolled RecursionCVE-2026-0994

Affects protobuf | Versions [0,]

Has fix

pipPublished 25 Jan 2026

H

Arbitrary Code InjectionCVE-2026-22807

Affects vllm | Versions [0.10.1,0.14.0)

Has fix

pipPublished 22 Jan 2026

M

UNIX Symbolic Link (Symlink) FollowingCVE-2026-23986

Affects copier | Versions [,9.11.2)

Has fix

pipPublished 22 Jan 2026

M

UNIX Symbolic Link (Symlink) FollowingCVE-2026-23968

Affects copier | Versions [,9.11.2)

Has fix

pipPublished 22 Jan 2026

H

Deserialization of Untrusted DataCVE-2026-23946

Affects tendenci | Versions [,15.3.12)

Has fix

pipPublished 22 Jan 2026

M

Timing AttackCVE-2026-23996

Affects fastapi-api-key | Versions [,1.1.0)

Has fix

pipPublished 22 Jan 2026

H

Directory TraversalCVE-2026-24049

Affects wheel | Versions [,0.46.2)

Has fix

pipPublished 22 Jan 2026

H

Improper Input ValidationCVE-2025-66902

Affects websocket-server | Versions [0,]

Has fix

pipPublished 21 Jan 2026

H

Arbitrary Code InjectionCVE-2025-33233

Affects transformers4rec | Versions [0,]

Has fix

pipPublished 21 Jan 2026

Product

Partners
Developers & Devops Features
Enterprise Features
Pricing
Test with GitHub
Test with CLI
API status

Resources

Vulnerability DB
Blog
Documentation
FAQs

Company

About
Jobs
Contact
Legal terms
Privacy
Press kit
Events

Contact us

Support
Report a new vuln

Find us online

Track our development

© 2026 Snyk Ltd.