Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Origin Validation Error		prefect[,2.20.17)[3.0.0,3.0.3)pip21 Mar 2025
  • M
Weak Password Requirements		mlflow[,2.19.0rc0)pip21 Mar 2025
  • M
Cross-site Request Forgery (CSRF)		mlflow[,2.20.2)pip21 Mar 2025
  • H
Files or Directories Accessible to External Parties		aleksis-core[3.0.dev0,3.1.7)[3.2.0,3.2.2)pip20 Mar 2025
  • H
Exposure of Sensitive System Information to an Unauthorized Control Sphere		langchain-core[,0.1.53)[0.2.0rc1,0.2.43)[0.3.0.dev0,0.3.15)pip20 Mar 2025
  • H
Uncaught Exception		grpcio[1.23.0,1.53.2)[1.54.0,1.54.3)[1.55.0,1.55.3)[1.56.0,1.56.2)pip20 Mar 2025
  • M
Expected Behavior Violation		grpcio[,1.58.3)[1.59.0,1.59.5)[1.60.0,1.60.2)[1.62.0,1.62.3)[1.63.0,1.63.2)[1.64.0,1.64.3)[1.65.0,1.65.4)pip20 Mar 2025
  • H
Relative Path Traversal		mlflow[,2.17.0rc0)pip20 Mar 2025
  • H
Allocation of Resources Without Limits or Throttling		vllm[,0.8.0)pip20 Mar 2025
  • C
Deserialization of Untrusted Data		vllm[,0.8.0)pip20 Mar 2025
  • M
SQL Injection		apache-airflow-providers-mysql[,6.2.0rc1)pip19 Mar 2025
  • M
Improper Isolation or Compartmentalization		promptflow-tools[,1.6.0)pip18 Mar 2025
  • M
Improper Isolation or Compartmentalization		promptflow-core[,1.17.2)pip18 Mar 2025
  • H
Incorrect Permission Assignment for Critical Resource		litellm[,1.60.4)pip18 Mar 2025
  • M
Arbitrary Command Injection		basicsr[0,]pip17 Mar 2025
  • M
Covert Timing Channel		postquantum-feldman-vss[0,]pip16 Mar 2025
  • M
Use of a Cryptographic Primitive with a Risky Implementation		postquantum-feldman-vss[,0.8.0b3)pip16 Mar 2025
  • C
Deserialization of Untrusted Data		qiskit-terra[0.18.0,]pip16 Mar 2025
  • C
Deserialization of Untrusted Data		qiskit[0.18.0,1.4.1)[2.0.0rc1,2.0.0rc2)pip16 Mar 2025
  • C
Arbitrary Command Injection		plotai[,0.0.7)pip12 Mar 2025
  • M
Insufficient Verification of Data Authenticity		picklescan[,0.0.23)pip12 Mar 2025
  • M
Insufficient Verification of Data Authenticity		picklescan[,0.0.23)pip12 Mar 2025
  • H
Deserialization of Untrusted Data		keras[,3.9.0)pip11 Mar 2025
  • H
Unsafe Dependency Resolution		python-json-logger[3.2.0,3.3.0)pip9 Mar 2025
  • C
Template Injection		spacy-llm[,0.7.3)pip7 Mar 2025
  • H
Allocation of Resources Without Limits or Throttling		django[,4.2.20)[5.0a1,5.0.13)[5.1a1,5.1.7)pip6 Mar 2025
  • M
Server-side Request Forgery (SSRF)		rembg[0,]pip6 Mar 2025
  • H
Origin Validation Error		rembg[0,]pip6 Mar 2025
  • M
Directory Traversal		mlrun[,1.8.0rc30)pip6 Mar 2025
  • M
Cross-site Request Forgery (CSRF)		zenml[,0.73.0)pip6 Mar 2025