pypi
5,010 tracked vulnerabilities.
CVE-2022-43717
MEDIUM
Apache Superset < 1.5.2 and 2.0.0 - Authenticated Stored Cross-Site Scripting in Dashboard Markdown Components
Jan 16, 2023
CVSS 5.4
EPSS 0.01
CVE-2022-41703
MEDIUM
Apache Superset <2.0.0 - SQL Injection
Jan 16, 2023
CVSS 5.4
EPSS 0.01
CVE-2022-4885
MEDIUM
sviehb jefferson <0.4 - Path Traversal
Jan 11, 2023
CVSS 5.0
EPSS 0.01
CVE-2022-4730
LOW
Graphite Web - Cross-Site Scripting in Absolute Time Range Handler
Dec 27, 2022
CVSS 3.5
EPSS 0.01
CVE-2022-4729
LOW
Graphite Web - Cross-Site Scripting in Template Name Handler
Dec 27, 2022
CVSS 3.5
EPSS 0.01
CVE-2022-4728
LOW
Graphite Web - Cross-Site Scripting in Cookie Handler
Dec 27, 2022
CVSS 3.5
EPSS 0.01
CVE-2022-4724
CRITICAL
rdiffweb < 2.5.5 - Improper Access Control
Dec 27, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-4723
MEDIUM
rdiffweb < 2.5.5 - Denial of Service via Resource Exhaustion
Dec 27, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-4722
HIGH
rdiffweb < 2.5.5 - Authentication Bypass
Dec 27, 2022
CVSS 7.2
EPSS 0.01
CVE-2022-4721
MEDIUM
ikus060/rdiffweb <2.5.5 - Special Element Injection
Dec 27, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-4720
MEDIUM
rdiffweb < 2.5.5 - Open Redirect
Dec 27, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-4719
CRITICAL
ikus060/rdiffweb <2.5.5 - Info Disclosure
Dec 27, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-45197
HIGH
slixmpp < 1.8.3 - Improper Certificate Validation in XMLStream
Dec 25, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-40899
HIGH
Python Charmers Future <0.18.2 - DoS
Dec 23, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-40898
HIGH
Python Packaging Authority Wheel <0.37.1 - DoS
Dec 23, 2022
CVSS 7.5
EPSS 0.03
CVE-2022-40897
MEDIUM
Python Packaging Authority (PyPA) setuptools <65.5.1 - DoS
Dec 23, 2022
CVSS 5.9
EPSS 0.03
CVE-2022-4646
MEDIUM
rdiffweb < 2.5.4 - Cross-Site Request Forgery
Dec 22, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-4644
MEDIUM
ikus060/rdiffweb <2.5.4 - Open Redirect
Dec 22, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-4638
LOW
collective.contact.widget <1.12 - XSS
Dec 21, 2022
CVSS 3.5
EPSS 0.00
CVE-2022-38060
HIGH
OpenStack Kolla - Privilege Escalation
Dec 21, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-46421
CRITICAL
Apache Airflow Hive Provider <5.0.0 - Command Injection
Dec 20, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-44940
CRITICAL
patchelf < 0.16.1.0 - Out-of-bounds Read in modifyRPath
Dec 19, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-4589
MEDIUM
cyface Terms and Conditions Module <2.0.9 - Open Redirect
Dec 17, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-4572
MEDIUM
UBI Reader < 0.8.0 - Path Traversal in UBIFS File Handler
Dec 17, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-23531
MEDIUM
GuardDog < 0.1.5 - Arbitrary File Write via Tarfile Extraction Path Traversal
Dec 17, 2022
CVSS 5.8
EPSS 0.01
Products
tensorflow 427
tensorflow-gpu 421
tensorflow-cpu 417
Django 147
apache-airflow 128
Plone 96
open-webui 87
mlflow 77
apache-superset 67
salt 67
ansible 66
pillow 52
vllm 50
nova 49
gradio 48
matrix-synapse 44
pyload-ng 44
rdiffweb 43
keystone 40
vyper 39
moin 35
aiohttp 34
opencv-contrib-python 30
opencv-python 30
pypdf 28
PraisonAI 27
pgadmin4 26
langflow 24
openbabel 24
picklescan 23
Quick Filters