Vulnerability DB | Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications

All Vulnerabilities

APPLICATION

Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++

OPERATING SYSTEM

All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi

Report a new vulnerability

M

Authorization Bypass Through User-Controlled KeyCVE-2026-33511

Affects pyload-ng | Versions [,0.5.0b3.dev97)

Has fix

pipPublished 1 Apr 2026

H

Deserialization of Untrusted DataCVE-2026-24152

Affects megatron-core | Versions [,0.15.3)

Has fix

pipPublished 1 Apr 2026

H

Deserialization of Untrusted DataCVE-2026-24151

Affects megatron-core | Versions [,0.15.3)

Has fix

pipPublished 1 Apr 2026

H

Deserialization of Untrusted DataCVE-2026-24150

Affects megatron-core | Versions [,0.15.3)

Has fix

pipPublished 1 Apr 2026

H

Deserialization of Untrusted DataCVE-2025-33248

Affects megatron-core | Versions [,0.15.3)

Has fix

pipPublished 1 Apr 2026

H

Deserialization of Untrusted DataCVE-2025-33247

Affects megatron-core | Versions [,0.15.3)

Has fix

pipPublished 1 Apr 2026

H

Unintended Proxy or Intermediary ('Confused Deputy')CVE-2026-27124

Affects fastmcp | Versions [,3.2.0)

Has fix

pipPublished 1 Apr 2026

M

Command InjectionCVE-2025-64340

Affects fastmcp | Versions [,3.2.0)

Has fix

pipPublished 1 Apr 2026

H

Command InjectionCVE-2026-33046

Affects indico | Versions [,3.3.12)

Has fix

pipPublished 1 Apr 2026

C

Server-side Request Forgery (SSRF)CVE-2026-32871

Affects fastmcp | Versions [,3.2.0)

Has fix

pipPublished 1 Apr 2026

H

SQL InjectionCVE-2026-34400

Affects alerta-server | Versions [6.3.0,9.1.0)

Has fix

pipPublished 1 Apr 2026

M

Weak Password RequirementsCVE-2026-34203

Affects nautobot | Versions [,2.4.30)[3.0.0a2,3.0.10)

Has fix

pipPublished 1 Apr 2026

M

Missing Authentication for Critical Function

Affects litellm | Versions [,1.82.4)

Has fix

pipPublished 1 Apr 2026

H

Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-15381

Affects mlflow-skinny | Versions [,3.11.0rc0)

Has fix

pipPublished 1 Apr 2026

H

Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-15381

Affects mlflow | Versions [,3.11.0rc0)

Has fix

pipPublished 1 Apr 2026

H

Directory TraversalCVE-2026-35167

Affects kedro | Versions [,1.3.0)

Has fix

pipPublished 1 Apr 2026

H

UNIX Symbolic Link (Symlink) FollowingCVE-2026-27489

Affects onnx | Versions [,1.21.0)

Has fix

pipPublished 1 Apr 2026

H

Directory Traversal

Affects onnxruntime | Versions [,1.24.1)

Has fix

pipPublished 1 Apr 2026

H

Arbitrary Code Execution

Affects fonttools | Versions [,4.62.0)

Has fix

pipPublished 1 Apr 2026

C

Arbitrary Command InjectionCVE-2025-15379

Affects mlflow-skinny | Versions [2.11.0,3.8.1)

Has fix

pipPublished 31 Mar 2026

M

Cross-site Scripting (XSS)CVE-2026-34231

Affects slippers | Versions [,0.6.3)

Has fix

pipPublished 31 Mar 2026

H

Directory TraversalCVE-2026-32727

Affects scitokens | Versions [,1.9.7)

Has fix

pipPublished 31 Mar 2026

C

SQL InjectionCVE-2026-32714

Affects scitokens | Versions [,1.9.6)

Has fix

pipPublished 31 Mar 2026

H

Improper AuthorizationCVE-2026-32716

Affects scitokens | Versions [,1.9.6)

Has fix

pipPublished 31 Mar 2026

H

Information ExposureCVE-2026-33981

Affects changedetection.io | Versions [,0.54.7)

Has fix

pipPublished 31 Mar 2026

H

Improper Neutralization of Special Elements in Data Query LogicCVE-2026-33980

Affects adx-mcp-server | Versions [0,]

Has fix

pipPublished 31 Mar 2026

M

Arbitrary Code InjectionCVE-2026-4506

Affects mindsql | Versions [0,]

Has fix

pipPublished 31 Mar 2026

H

Missing AuthorizationCVE-2026-23537

Affects feast | Versions [,0.60.0)

Has fix

pipPublished 31 Mar 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2026-23538

Affects feast | Versions [,0.59.0)

Has fix

pipPublished 31 Mar 2026

H

Directory TraversalCVE-2026-23536

Affects feast | Versions [,0.60.0)

Has fix

pipPublished 31 Mar 2026

Product

Partners
Developers & Devops Features
Enterprise Features
Pricing
Test with GitHub
Test with CLI
API status

Resources

Vulnerability DB
Blog
Documentation
FAQs

Company

About
Jobs
Contact
Legal terms
Privacy
Press kit
Events

Contact us

Support
Report a new vuln

Find us online

Track our development

© 2026 Snyk Ltd.