pypi

5,010 tracked vulnerabilities.

CVE-2022-43717 MEDIUM
Apache Superset < 1.5.2 and 2.0.0 - Authenticated Stored Cross-Site Scripting in Dashboard Markdown Components
Jan 16, 2023
CVSS 5.4
EPSS 0.01
CVE-2022-41703 MEDIUM
Apache Superset <2.0.0 - SQL Injection
Jan 16, 2023
CVSS 5.4
EPSS 0.01
CVE-2022-4885 MEDIUM
sviehb jefferson <0.4 - Path Traversal
Jan 11, 2023
CVSS 5.0
EPSS 0.01
CVE-2022-4730 LOW
Graphite Web - Cross-Site Scripting in Absolute Time Range Handler
Dec 27, 2022
CVSS 3.5
EPSS 0.01
CVE-2022-4729 LOW
Graphite Web - Cross-Site Scripting in Template Name Handler
Dec 27, 2022
CVSS 3.5
EPSS 0.01
CVE-2022-4728 LOW
Graphite Web - Cross-Site Scripting in Cookie Handler
Dec 27, 2022
CVSS 3.5
EPSS 0.01
CVE-2022-4724 CRITICAL
rdiffweb < 2.5.5 - Improper Access Control
Dec 27, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-4723 MEDIUM
rdiffweb < 2.5.5 - Denial of Service via Resource Exhaustion
Dec 27, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-4722 HIGH
rdiffweb < 2.5.5 - Authentication Bypass
Dec 27, 2022
CVSS 7.2
EPSS 0.01
CVE-2022-4721 MEDIUM
ikus060/rdiffweb <2.5.5 - Special Element Injection
Dec 27, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-4720 MEDIUM
rdiffweb < 2.5.5 - Open Redirect
Dec 27, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-4719 CRITICAL
ikus060/rdiffweb <2.5.5 - Info Disclosure
Dec 27, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-45197 HIGH
slixmpp < 1.8.3 - Improper Certificate Validation in XMLStream
Dec 25, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-40899 HIGH
Python Charmers Future <0.18.2 - DoS
Dec 23, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-40898 HIGH
Python Packaging Authority Wheel <0.37.1 - DoS
Dec 23, 2022
CVSS 7.5
EPSS 0.03
CVE-2022-40897 MEDIUM
Python Packaging Authority (PyPA) setuptools <65.5.1 - DoS
Dec 23, 2022
CVSS 5.9
EPSS 0.03
CVE-2022-4646 MEDIUM
rdiffweb < 2.5.4 - Cross-Site Request Forgery
Dec 22, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-4644 MEDIUM
ikus060/rdiffweb <2.5.4 - Open Redirect
Dec 22, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-4638 LOW
collective.contact.widget <1.12 - XSS
Dec 21, 2022
CVSS 3.5
EPSS 0.00
CVE-2022-38060 HIGH
OpenStack Kolla - Privilege Escalation
Dec 21, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-46421 CRITICAL
Apache Airflow Hive Provider <5.0.0 - Command Injection
Dec 20, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-44940 CRITICAL
patchelf < 0.16.1.0 - Out-of-bounds Read in modifyRPath
Dec 19, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-4589 MEDIUM
cyface Terms and Conditions Module <2.0.9 - Open Redirect
Dec 17, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-4572 MEDIUM
UBI Reader < 0.8.0 - Path Traversal in UBIFS File Handler
Dec 17, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-23531 MEDIUM
GuardDog < 0.1.5 - Arbitrary File Write via Tarfile Extraction Path Traversal
Dec 17, 2022
CVSS 5.8
EPSS 0.01