Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
L Arbitrary Code Injection	flair[0,]	pip	18 Oct 2024
H Use of Cache Containing Sensitive Information	querycommander[,0.9.1)	pip	17 Oct 2024
M Command Injection	pyninja[,0.0.4)	pip	17 Oct 2024
H Improper Authentication	pyninja[,0.0.4)	pip	17 Oct 2024
H Access Control Bypass	mysql-connector-python[,9.1.0)	pip	17 Oct 2024
H Allocation of Resources Without Limits or Throttling	starlette[,0.40.0)	pip	15 Oct 2024
M Incorrect Authorization	opencanary[,0.9.4)	pip	15 Oct 2024
C Malicious Package	browser-cookies3[0,]	pip	13 Oct 2024
M Directory Traversal	lollms[,9.5.1)	pip	13 Oct 2024
M Relative Path Traversal	lollms[,9.5.1)	pip	13 Oct 2024
H Directory Traversal	gradio[,4.44.0)	pip	11 Oct 2024
H Origin Validation Error	gradio[,4.44.0)	pip	11 Oct 2024
M Timing Attack	gradio[,4.44.0)	pip	11 Oct 2024
L Always-Incorrect Control Flow Implementation	gradio[,4.44.0)	pip	11 Oct 2024
M Origin Validation Error	gradio[,5.0.0)	pip	11 Oct 2024
M Directory Traversal	gradio[,5.0.0)	pip	11 Oct 2024
H Race Condition	gradio[,5.0.0)	pip	11 Oct 2024
M Directory Traversal	gradio[,5.0.0)	pip	11 Oct 2024
M Cross-site Scripting (XSS)	gradio[,5.0.0)	pip	11 Oct 2024
M Server-side Request Forgery (SSRF)	gradio[,5.0.0)	pip	11 Oct 2024
H Resources Downloaded over Insecure Protocol	gradio[,5.0.0)	pip	11 Oct 2024
M Improper Input Validation	gradio[,5.0.0)	pip	11 Oct 2024
H Missing Encryption of Sensitive Data	gradio[,5.0.0)	pip	11 Oct 2024
M Exposure of Data Element to Wrong Session	open-webui[,0.3.9)	pip	10 Oct 2024
M Improper Privilege Management	open-webui[,0.3.9)	pip	10 Oct 2024
H Execution with Unnecessary Privileges	open-webui[,0.3.17)	pip	10 Oct 2024
M Information Exposure	open-webui[,0.3.17)	pip	10 Oct 2024
H Path Traversal	open-webui[,0.5.0)	pip	10 Oct 2024
H Denial of Service (DoS)	xhtml2pdf[0,]	pip	9 Oct 2024
H Improper Validation of Integrity Check Value	ironic[,21.4.4)[22.0.0,23.0.3)[23.1.0,24.1.3)[25.0.0,26.1.1)	pip	6 Oct 2024

APPLICATION

OPERATING SYSTEM