pypi
4,979 tracked vulnerabilities.
CVE-2026-48207
CRITICAL
Apache Fory: PyFory ReduceSerializer Incomplete Policy Enforcement
May 21, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-2734
MEDIUM
Authorization Bypass in SearchModelVersions in mlflow/mlflow
May 21, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-42526
MEDIUM
Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends
May 19, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-27173
HIGH
Apache Airflow CNCF Kubernetes provider: JWT Token Exposure in KubernetesExecutor Command-Line Arguments
May 19, 2026
CVSS 8.7
EPSS 0.00
CVE-2026-31072
CRITICAL
APScheduler - Remote Code Execution via Insecure Deserialization in JSONSerializer and CBORSerializer
May 19, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-2611
CRITICAL
Improper Origin Validation in mlflow/mlflow
May 19, 2026
CVSS 9.6
EPSS 0.00
CVE-2026-8838
CRITICAL
Remote Code Execution via eval() Injection in amazon-redshift-python-driver
May 18, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-4137
HIGH
Incomplete Fix for CVE-2025-10279: Insecure Temporary Directory Permissions in mlflow/mlflow
May 18, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-45829
CRITICAL
ChromaDB >=1.0.0 - Unauthenticated Remote Code Execution via Malicious Model Repository
May 18, 2026
CVSS 10.0
EPSS 0.12
CVE-2026-7304
CRITICAL
SGLang - Unauthenticated Remote Code Execution via Pickle Deserialization
May 18, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7302
CRITICAL
SGLang - Unauthenticated Path Traversal and Arbitrary File Write via Upload Filename
May 18, 2026
CVSS 9.1
EPSS 0.00
CVE-2026-7301
CRITICAL
SGLang - Remote Code Execution
May 18, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-8754
MEDIUM
AstrBotDevs AstrBot File Upload chat.py post_file path traversal
May 17, 2026
CVSS 6.3
EPSS 0.00
CVE-2026-45667
MEDIUM
Open WebUI Memories Endpoint - Unauthenticated Embedding Generation DoS
May 15, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-45666
MEDIUM
Open WebUI: Indirect Object Reference (IDOR) in user notes
May 15, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-45365
MEDIUM
Open WebUI: Authenticated users can bypass model access control via exposed query parameter
May 15, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-45351
MEDIUM
Open WebUI: Exposure of System Prompt to Regular User [Non-Admin]
May 15, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-45350
HIGH
Open WebUI: Chat completion API allows tool restrictions to be bypassed
May 15, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-45347
MEDIUM
Open WebUI: Blind server side request forgery (SSRF) via the PDF generate function
May 15, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-45345
MEDIUM
Open WebUI: Missing authorization check at the model update function - models from other users can be updated
May 15, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-45338
HIGH
Open WebUI: SSRF via OAuth Profile Picture URL in _process_picture_url (oauth.py)
May 15, 2026
CVSS 7.7
EPSS 0.00
CVE-2026-45318
MEDIUM
Open WebUI: Stored XSS via unsanitized Office/Excel/DOCX file preview rendering ({@html} without DOMPurify)
May 15, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-45317
MEDIUM
Open WebUI: Cross-Site Request Forgery (CSRF) via Image URL Manipulation
May 15, 2026
CVSS 4.6
EPSS 0.00
CVE-2026-45316
LOW
Open WebUI: Read-Only Users Can Toggle Note Pin Status via Incorrect Permission Check (Write via Read-Only Access)
May 15, 2026
CVSS 3.5
EPSS 0.00
CVE-2026-45315
HIGH
Open WebUI: Stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions
May 15, 2026
CVSS 8.7
EPSS 0.00
Products
tensorflow 427
tensorflow-gpu 421
tensorflow-cpu 417
Django 147
apache-airflow 128
Plone 96
open-webui 91
mlflow 76
apache-superset 67
salt 67
ansible 66
pillow 52
nova 49
gradio 47
matrix-synapse 44
pyload-ng 44
rdiffweb 43
keystone 40
vllm 40
vyper 39
moin 35
aiohttp 34
opencv-contrib-python 30
opencv-python 30
pypdf 28
PraisonAI 27
pgadmin4 26
langflow 24
openbabel 24
picklescan 23
Quick Filters