Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Directory Traversal		bugsink[,1.4.3)[1.5.0,1.5.5)[1.6.0,1.6.4)[1.7.0,1.7.4)pip4 Aug 2025
  • C
Malicious Package		loquru[0,]pip3 Aug 2025
  • H
Heap-based Buffer Overflow		openexr[3.3.0,3.3.3)pip1 Aug 2025
  • L
Allocation of Resources Without Limits or Throttling		openexr[3.3.2,3.3.3)pip1 Aug 2025
  • L
NULL Pointer Dereference		openexr[3.3.2,3.3.3)pip1 Aug 2025
  • M
Out-of-bounds Read		openexr[3.3.2,3.3.3)pip1 Aug 2025
  • M
Deserialization of Untrusted Data		langchain-community[,0.2.10)pip1 Aug 2025
  • M
Cross-site Scripting (XSS)		panel[,1.7.5rc0)pip1 Aug 2025
  • M
Regular Expression Denial of Service (ReDoS)		markdown2[,2.5.4)pip1 Aug 2025
  • M
Cross-site Scripting (XSS)		markdown2[,2.5.4)pip1 Aug 2025
  • M
Arbitrary Code Injection		pyload-ng[,0.5.0b3.dev90)pip31 Jul 2025
  • M
Missing Authentication for Critical Function		moneyprinterturbo[0,]pip30 Jul 2025
  • M
Directory Traversal		moneyprinterturbo[0,]pip30 Jul 2025
  • M
Arbitrary File Upload		moneyprinterturbo[0,]pip30 Jul 2025
  • C
Server-side Request Forgery (SSRF)		bentoml[1.4.0,1.4.19)pip30 Jul 2025
  • C
Embedded Malicious Code		num2words[0.5.15,0.5.16]pip29 Jul 2025
  • H
Directory Traversal		pyload-ng[,0.5.0b3.dev90)pip27 Jul 2025
  • C
Arbitrary Code Injection		letta[0,]pip27 Jul 2025
  • H
Arbitrary Code Injection		smolagents[,1.17.0)pip27 Jul 2025
  • H
Insufficient Type Distinction		skops[,0.12.0)pip27 Jul 2025
  • H
Insufficient Type Distinction		skops[,0.12.0)pip27 Jul 2025
  • C
Relative Path Traversal		assemblyline-service-client[,4.6.0.11)[4.6.1.dev0,4.6.1.dev138)pip27 Jul 2025
  • M
Command Injection		calibreweb[0,]pip25 Jul 2025
  • M
Regular Expression Denial of Service (ReDoS)		calibreweb[0,]pip25 Jul 2025
  • M
Regular Expression Denial of Service (ReDoS)		fastapi-guard[,3.0.2)pip24 Jul 2025
  • M
Cross-site Scripting (XSS)		mezzanine[,6.1.1)pip24 Jul 2025
  • M
SQL Injection		airda[0,]pip23 Jul 2025
  • H
Command Injection		yt-dlp[,2025.7.21)pip23 Jul 2025
  • H
Cross-site Scripting (XSS)		cadwyn[,5.4.3)pip23 Jul 2025
  • H
Directory Traversal		aim[0,]pip23 Jul 2025