Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-2q4j-m29v-hq73
  • PyPI/pypdf
 pypdf has possible Infinite Loop when processing outlines/bookmarks 2 hours ago
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-8hf7-h89p-3pqj
  • PyPI/mobsf
 MobSF has Stored XSS via Manifest Analysis - Dialer Code Host Field 2 hours ago
  • Fix available
  • Severity - 8.1 (High)
GHSA-gcgx-chcp-hxp9
  • PyPI/gakido
 Gakido vulnerable to HTTP Header Injection (CRLF Injection) 2 hours ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-wp53-j4wj-2cfg
  • PyPI/python-multipart
 Python-Multipart has Arbitrary File Write via Non-Default Configuration 2 hours ago
  • Fix available
  • Severity - 8.6 (High)
GHSA-hm8f-75xx-w2vr
  • PyPI/sigstore
 sigstore CSRF possibility in OIDC authentication during signing 4 hours ago
  • Fix available
MAL-2026-510
  • PyPI/radishwxm5
 Malicious code in radishwxm5 (PyPI) 6 hours ago
  • No fix available
GHSA-796p-j2gh-9m2q
  • PyPI/dcap-qvl
  • crates.io/dcap-qvl
  • npm/@phala/dcap-qvl
  • npm/@phala/dcap-qvl-node
  • npm/@phala/dcap-qvl-web
 dcap-qvl has Missing Verification for QE Identity 7 hours ago
  • Fix available
  • Severity - 9.3 (Critical)
MAL-2026-506
  • PyPI/selenium-integration
 Malicious code in selenium-integration (PyPI) yesterday
  • No fix available
MAL-2026-505
  • PyPI/flask-hookserver
 Malicious code in flask-hookserver (PyPI) yesterday
  • No fix available
MAL-2026-504
  • PyPI/researchpoc
 Malicious code in researchpoc (PyPI) yesterday
  • No fix available
MAL-2026-501
  • PyPI/system-integration-toxi
 Malicious code in system-integration-toxi (PyPI) yesterday
  • No fix available
MAL-2026-502
  • PyPI/test-poc-package-for-session
 Malicious code in test-poc-package-for-session (PyPI) yesterday
  • No fix available
MAL-2026-503
  • PyPI/test-poc-package-for-session-2
 Malicious code in test-poc-package-for-session-2 (PyPI) yesterday
  • No fix available
MAL-2026-499
  • PyPI/system-integration
 Malicious code in system-integration (PyPI) 2 days ago
  • No fix available
MAL-2026-498
  • PyPI/instascan-pro
 Malicious code in instascan-pro (PyPI) 2 days ago
  • No fix available
GHSA-7gcm-g887-7qv7
  • PyPI/protobuf
 protobuf affected by a JSON recursion depth bypass 3 days ago
  • No fix available
  • Severity - 8.2 (High)
Load more...