Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Malicious Package
ssh-decorate [0.28,0.31] pip 15 May, 2018
  • M
Cross-site Scripting (XSS)
products-ploneformgen [,1.8.1) pip 08 May, 2018
  • M
Cross-site Scripting (XSS)
plone-app-event [,3.0) pip 08 May, 2018
  • M
Cross-site Scripting (XSS)
plone-app-contenttypes [,1.2.15) pip 08 May, 2018
  • M
Insufficient Password Verification
kinto [,8.2.3) pip 08 May, 2018
  • M
Man-in-the-Middle (MitM)
birdhousebuilder-recipe-nginx [,0.1.5) pip 08 May, 2018
  • M
Client Impersonation
salt [,2016.3.6) pip 26 Apr, 2018
  • M
Server-side Request Forgery (SSRF)
glastopf [0,] pip 26 Apr, 2018
  • M
Improper Validation of Integrity Check
tlslite-ng [,0.8.0-alpha3) pip 25 Apr, 2018
  • H
Deserialization of Untrusted Data
suricata-update [,1.0.0b1) pip 25 Apr, 2018
  • M
HTTP Response Splitting
gunicorn [,19.5.0) pip 25 Apr, 2018
  • M
Arbitrary Code Execution
rope [0,] pip 15 Apr, 2018
  • H
Cross-site Request Forgery (CSRF)
kotti [,1.3.2), [2.0.0.alpha1,2.0.0b2) pip 09 Apr, 2018
  • M
Information Exposure
ajenti-panel [0,] pip 08 Apr, 2018
  • M
Cross-site Scripting (XSS)
products.cmfcore [,2.1.0beta2) pip 03 Apr, 2018
  • M
Arbitrary Code Execution
astropy [,3.0.1) pip 03 Apr, 2018
  • M
Deprecated Cypher
pycryptodome [,3.4.4) pip 22 Mar, 2018
  • M
Open Redirect
web2py [,2.12.1) pip 21 Mar, 2018
  • H
Arbitrary Code Execution
web2py [,2.14.2) pip 21 Mar, 2018
  • H
Authentication Bypass
paramiko [,1.17.6), [1.18.0, 1.18.5), [2.0.0, 2.0.8), [2.1.0, 2.1.5), [2.2.0, 2.2.3), [2.3.0,2.3.2), [2.4.0, 2.4.1) pip 21 Mar, 2018
  • L
Information Exposure
paramiko [,1.7.2) pip 21 Mar, 2018
  • M
Directory Traversal
uwsgi [,2.0.17) pip 21 Mar, 2018
  • M
HTTP Permission Bypass
mercurial [,4.5.2) pip 21 Mar, 2018
  • M
Improper Input Validation
ajenti-panel [0,] pip 21 Mar, 2018
  • M
Improper Error Handling
ajenti-panel [0,] pip 21 Mar, 2018
  • M
Insecure Permissions
ajenti-panel [0,] pip 21 Mar, 2018
  • M
Cross ite Request Forgery (CSRF)
ajenti-panel [0,] pip 21 Mar, 2018
  • M
Authentication Bypass
asyncssh [,1.12.1) pip 18 Mar, 2018
  • H
Arbitrary Code Injection
eve [,0.7.5) pip 15 Mar, 2018
  • L
Information Exposure
django-anymail [,1.4) pip 15 Mar, 2018