Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
pypi nautobot Security Advisories
Loading...
High
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: 8 days ago
GSA_kwCzR0hTQS1qeGdyLWdjajUtY3FxZ84AA7cp
nautobot has reflected Cross-site Scripting potential in all object list viewsEcosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: 8 days ago
Low
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: about 1 month ago
GSA_kwCzR0hTQS1tNzMyLXd2aDItN2NxNM4AA6R7
Unauthenticated views may expose information to anonymous usersEcosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: about 1 month ago
High
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: 4 months ago
GSA_kwCzR0hTQS12NHh2LTc5NWgtcnY0aM4AA4oT
XSS potential in rendered Markdown fields (comments, description, notes, etc.)Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: 4 months ago
Low
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 5 months ago
GSA_kwCzR0hTQS12ZjVtLXhyaG0tdjk5Oc4AA4AF
Nautobot missing object-level permissions enforcement when running Job ButtonsEcosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 5 months ago
Low
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: 5 months ago
GSA_kwCzR0hTQS03NW1jLTNwamMtNzI3cc4AA3uo
Unauthenticated db-file-storage viewsEcosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: 5 months ago
High
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: 6 months ago
GSA_kwCzR0hTQS1jZjlmLXdtaHAtdjRwcs4AA3U3
Cross-site Scripting potential in custom links, job buttons, and computed fieldsEcosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: 6 months ago
High
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: 7 months ago
GSA_kwCzR0hTQS1yMmh3LTc0eHYtNGdxcM4AA2oV
Nautobot vulnerable to exposure of hashed user passwords via REST APIEcosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: 7 months ago
High
Ecosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: about 1 year ago
GSA_kwCzR0hTQS04bWZxLWY1d2otdnc1bc4AAxw5
Nautobot vulnerable to remote code execution via Jinja2 template renderingEcosystems: pypi
Packages: nautobot
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: about 1 year ago
Statistics
Advisories: 18,414
Packages: 8,307
Repositories: 1
Ecosystems: 12
Packages: 8,307
Repositories: 1
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
432
tensorflow-cpu
387
tensorflow-gpu
384
django
80
apache-airflow
78
ansible
63
salt
51
apache-superset
49
Plone
46
plone
43
rdiffweb
42
Pillow
41
vyper
38
matrix-synapse
35
mlflow
31
opencv-contrib-python
30
opencv-python
30
Django
28
moin
23
langchain
18
cobbler
17
PaddlePaddle
17
mercurial
17
keystone
16
nova
16
pillow
16
notebook
15
cryptography
15
gradio
15
paddlepaddle
15
pyftpdlib
14
modoboa
14
pyload-ng
14
neutron
13
OctoPrint
12
vantage6
12
twisted
11
calibreweb
11
aiohttp
11
onionshare-cli
11
urllib3
11
glance
11
Flask-AppBuilder
10
wagtail
10
trytond
10
opencv-contrib-python-headless
9
opencv-python-headless
9
zope
9
waitress
9
ethyca-fides
9
Zope
9
kiwitcms
9
ryu
9
numpy
8
trac
8
aubio
8
label-studio
8
nautobot
8
roundup
8
python-keystoneclient
8
lief
7
scrapy
7
pip
7
pysaml2
7
jupyter-server
7
matrix-sydent
7
swift
7
pgadmin4
7
ipython
7
graphite-web
6
mailman
6
horizon
6
sentry
6
web2py
6
inventree
6
lxml
6
mindsdb
6
Zope2
6
apache-airflow-providers-apache-hive
6
tuf
6
feedparser
5
saleor
5
bleach
5
pyspark
5
requests
5
python-gnupg
5
lmdb
5
cinder
5
paramiko
5
Jinja2
5
Products.CMFPlone
5
whoogle-search
5
ckan
5
markdown2
4
qutebrowser
4
yt-dlp
4
keylime
4
werkzeug
4
Werkzeug
4
GitPython
4
tornado
4
tripleo-heat-templates
4
omero-web
4
Flask-Security-Too
4
pretix
4
grpcio
4
grpc
4
jupyterhub
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
aws-iot-device-sdk-v2
4
starlette
4
awsiotsdk
4
datasette
4
ansible-core
4
buildbot
4
PyPDF2
4
oauthenticator
4
jwcrypto
4
Radicale
4
httpie
4
bottle
4
FreeTAKServer-UI
4
esphome
4
Pygments
4
nvflare
4
transformers
4
reportlab
4
nltk
4
asyncssh
3
ajenti
3
httplib2
3
openvpn-monitor
3
django-helpdesk
3
mistune
3
streamlit
3
pyarrow
3
sosreport
3
sickrage
3
changedetection.io
3
sanic
3
Mezzanine
3
copyparty
3
sqlparse
3
flask
3
io.grpc:grpc-protobuf
3
onnx
3
zenml
3
protobuf
3
localstack
3
ujson
3
gerapy
3
bitlyshortener
3
indico
3
poetry
3
pywasm3
3
jupyterlab
3
Weblate
3
keyring
3
wger
3
asyncua
3
apache-iotdb
3
Products.PluggableAuthService
3
rsa
3
fava
3
python-jose
3
pandasai
3
barbican
3
mayan-edms
3
keystonemiddleware
3
ecdsa
3
ray
3
aim
3
indy-node
3
ansible-runner
3
apache-libcloud
3
mitmproxy
3
pycrypto
3
Moin
3
Keystone
3
dulwich
3
quokka
3
SQLAlchemy
3
homeassistant
3
pyyaml
3
docassemble.webapp
3
clearml
3
torchserve
3
octavia
3
apache-airflow-providers-apache-spark
3
slixmpp
3
plone.app.dexterity
3
plone.supermodel
3
Kallithea
3
plone.app.theming
3
plone.app.event
3
openapi-python-client
2
scalyr-agent-2
2
sap-xssec
2
html5lib
2
qiskit-ibm-runtime
2
Filter by Repository