pypi

4,998 tracked vulnerabilities.

CVE-2024-8952 HIGH
Composio 0.4.2 WEBTOOL_SCRAPE_WEBSITE_CONTENT - Server-Side Request Forgery
Mar 20, 2025
CVSS 7.5
EPSS 0.01
CVE-2024-8859 HIGH NUCLEI
MLflow 2.15.1 - Path Traversal and Arbitrary File Read via DBFS Service URL Handling
Mar 20, 2025
CVSS 7.5
EPSS 0.02
CVE-2024-8769 CRITICAL
aimhubio/aim <bb76afe - Path Traversal
Mar 20, 2025
CVSS 9.1
EPSS 0.01
CVE-2024-8616 HIGH
h2o 3.46.0 - Arbitrary File Overwrite via mexport.dir Parameter
Mar 20, 2025
CVSS 8.2
EPSS 0.01
CVE-2024-8556 MEDIUM
modelscope/agentscope - Stored Cross-Site Scripting in Run Information View
Mar 20, 2025
CVSS 6.1
EPSS 0.00
CVE-2024-8551 CRITICAL
modelscope/agentscope < - Path Traversal
Mar 20, 2025
CVSS 9.1
EPSS 0.01
CVE-2024-8537 CRITICAL
modelscope/agentscope - Path Traversal
Mar 20, 2025
CVSS 9.1
EPSS 0.01
CVE-2024-8524 HIGH
modelscope/agentscope <0.0.4 - Path Traversal
Mar 20, 2025
CVSS 7.5
EPSS 0.01
CVE-2024-8502 CRITICAL
modelscope/agentscope <0.0.6a3 - RCE
Mar 20, 2025
CVSS 9.8
EPSS 0.02
CVE-2024-8501 HIGH
modelscope/agentscope <0.0.4 - Info Disclosure
Mar 20, 2025
CVSS 8.8
EPSS 0.01
CVE-2024-8487 CRITICAL
modelscope/agentscope <0.0.4 - CSRF
Mar 20, 2025
CVSS 9.8
EPSS 0.00
CVE-2024-8438 HIGH
modelscope/agentscope <0.0.4 - Path Traversal
Mar 20, 2025
CVSS 7.5
EPSS 0.01
CVE-2024-8238 HIGH
Aim < 3.22.0 AimQL str.format_map - RestrictedPython Code Execution
Mar 20, 2025
CVSS 8.1
EPSS 0.01
CVE-2024-8183 HIGH
Prefect < 3.0.3 - Origin Validation Error in CORS Configuration
Mar 20, 2025
CVSS 7.6
EPSS 0.00
CVE-2024-8062 HIGH
h2o 3.46.0 - Denial of Service via Typeahead Endpoint HEAD Request
Mar 20, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-8061 HIGH
aim 3.23.0 - Denial of Service via Timeout-Free External Resource Access
Mar 20, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-8060 HIGH
OpenWebUI < 0.5.17 - Authenticated Path Traversal and Arbitrary File Write via Audio API Endpoint
Mar 20, 2025
CVSS 8.1
EPSS 0.01
CVE-2024-8053 HIGH
open-webui/open-webui <0.3.10 - DoS
Mar 20, 2025
CVSS 8.2
EPSS 0.01
CVE-2024-8021 MEDIUM NUCLEI
gradio - Open Redirect via URL Encoding
Mar 20, 2025
CVSS 6.1
EPSS 0.01
CVE-2024-8020 HIGH
lightning-ai/pytorch-lightning <2.3.2 - DoS
Mar 20, 2025
CVSS 7.5
EPSS 0.01
CVE-2024-8019 CRITICAL
Lightning-ai/pytorch-lightning <2.3.2 - RCE
Mar 20, 2025
CVSS 9.1
EPSS 0.01
CVE-2024-7990 HIGH
open-webui 0.3.8 - Stored Cross-Site Scripting via Model Description Field
Mar 20, 2025
CVSS 8.4
EPSS 0.01
CVE-2024-7983 HIGH
open-webui 0.3.8 - Unauthenticated Denial of Service via Markdown to HTML Conversion
Mar 20, 2025
CVSS 7.5
EPSS 0.01
CVE-2024-7959 HIGH
open-webui 0.3.8 - Server-Side Request Forgery via OpenAI URL Parameter
Mar 20, 2025
CVSS 7.7
EPSS 0.24
CVE-2024-7806 HIGH
open-webui <= 0.3.8 - Remote Code Execution via CSRF
Mar 20, 2025
CVSS 8.8
EPSS 0.00