Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi lollms Security Advisories

Browse all Security Advisories for pypi lollms

Loading...
Moderate
GSA_kwCzR0hTQS1jbTU5LThybXYtZjJjas4ABAyJ
Lollms vulnerable to Cross-site Scripting
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS02aDY0LWc3Y2otaGo1Ns4ABAOH
Lord of Large Language Models (LoLLMs) path traversal vulnerability in the api open_personality_folder endpoint
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: 2 months ago
Low
GSA_kwCzR0hTQS03cGdyLTMyZngtYzZ4Oc4ABAM8
Lord of Large Language Models (LoLLMs) Server path traversal vulnerability in lollms_file_system.py
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: 2 months ago
High
GSA_kwCzR0hTQS04bXJtLXI3aDMtYzNoas4AA-BA
LoLLMS vulnerable to Expected Behavior Violation
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: 5 months ago
High
GSA_kwCzR0hTQS05Y2htLW02eDItNmZ2Y84AA9Zw
lollms vulnerable to path traversal due to unauthenticated root folder settings change
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: 6 months ago
High
GSA_kwCzR0hTQS1tNDVjLXY0NmgtYzc4OM4AA9Z4
lollms path traversal vulnerability allows overriding of config.yaml file, leading to RCE
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: 6 months ago
High
GSA_kwCzR0hTQS13OXFmLTgzamctMng2Y84AA9Zx
lollms vulnerable to dot-dot-slash path traversal in XTTS server
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: 6 months ago
Moderate
GSA_kwCzR0hTQS03OWg4LWd4aHEtcTNqZ84AA9TI
Remote Code Execution in create_conda_env function in lollms
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.1
Published: 6 months ago
Critical
GSA_kwCzR0hTQS1tdnJtLWZoOHEtNndyMs4AA9S_
Remote Code Execution via path traversal bypass in lollms
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 6 months ago
Critical
GSA_kwCzR0hTQS12cXdyLXE2Y2MtYzI0Ms4AA89T
parisneo/lollms Local File Inclusion (LFI) attack
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.5
Published: 6 months ago
High
GSA_kwCzR0hTQS0zeDQ3LXc0cngtNnBtN84AA8xw
LoLLMS Path Traversal vulnerability
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 6 months ago
High
GSA_kwCzR0hTQS1wOGg3LWM4Z3ctNng4Y84AA8xF
LoLLMS Path Traversal vulnerability
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: 6 months ago
Moderate
GSA_kwCzR0hTQS05cDczLXg4NnYtanc1N84AA8mU
path traversal vulnerability was identified in the parisneo/lollms-webui
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: 6 months ago
High
GSA_kwCzR0hTQS1wd2M5LXE0aGotcGc4Z84AA8Ju
LoLLMS Command Injection vulnerability
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 7 months ago
Statistics
Advisories: 20,851
Packages: 9,120
Repositories: 3
Ecosystems: 12
Filter by Package
tensorflow 433 tensorflow-gpu 427 tensorflow-cpu 423 Django 102 apache-airflow 85 Plone 72 ansible 63 salt 56 apache-superset 54 nova 47 mlflow 47 django 44 rdiffweb 42 plone 41 matrix-synapse 41 vyper 38 moin 35 gradio 34 keystone 32 Pillow 31 opencv-python 31 opencv-contrib-python 31 pillow 26 glance 21 langchain 20 cobbler 18 mindsdb 18 mercurial 18 notebook 17 neutron 17 ethyca-fides 16 cryptography 16 pyload-ng 16 PaddlePaddle 16 paddlepaddle 16 calibreweb 15 OctoPrint 15 pyftpdlib 14 modoboa 14 lollms 14 aiohttp 14 vantage6 13 twisted 12 swift 12 roundup 12 zenml 12 wagtail 12 urllib3 12 sentry 11 onionshare-cli 11 trytond 11 horizon 11 waitress 11 Flask-AppBuilder 10 opencv-contrib-python-headless 10 nautobot 10 pyspark 10 opencv-python-headless 10 zope 9 lief 9 kiwitcms 9 python-keystoneclient 9 ryu 9 cinder 9 pgadmin4 8 litellm 8 label-studio 8 ipython 8 ckan 8 numpy 8 trac 8 Zope2 8 aubio 8 Zope 8 Products.CMFPlone 7 pip 7 inventree 7 pysaml2 7 scrapy 7 tornado 7 jupyter-server 7 matrix-sydent 7 yt-dlp 6 web2py 6 apache-airflow-providers-apache-hive 6 lxml 6 changedetection.io 6 aim 6 tuf 6 ansible-core 6 mage-ai 6 Moin 6 requests 6 graphite-web 6 mailman 6 grpc 5 dtale 5 feedparser 5 nltk 5 whoogle-search 5 Werkzeug 5 grpcio 5 oauthenticator 5 mayan-edms 5 pretix 5 ait-core 5 bleach 5 lmdb 5 jupyterhub 5 mobsf 5 python-gnupg 5 torchserve 5 saleor 5 paramiko 5 langchain-experimental 5 werkzeug 5 omero-web 5 Jinja2 5 barbican 4 Pygments 4 jupyterlab 4 qutebrowser 4 indico 4 bottle 4 transformers 4 tripleo-heat-templates 4 FreeTAKServer-UI 4 buildbot 4 open-webui 4 Radicale 4 esphome 4 reportlab 4 apache-iotdb 4 apache-submarine 4 Flask-Security-Too 4 langflow 4 httpie 4 Weblate 4 pywasm3 4 codechecker 4 onnx 4 streamlit 4 markdown2 4 nvflare 4 indy-node 4 keylime 4 awsiotsdk 4 jwcrypto 4 dbt-core 4 aws-iot-device-sdk-v2 4 PyPDF2 4 langchain-community 4 Keystone 4 wasmtime 4 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 Nova 4 Scrapy 4 GitPython 4 httplib2 3 org.apache.spark:spark-core_2.11 3 mysql-connector-python 3 apache-airflow-providers-apache-spark 3 plone.app.event 3 Red-DiscordBot 3 quokka 3 fava 3 docassemble.webapp 3 snowflake-connector-python 3 koji 3 mitmproxy 3 torch 3 Kallithea 3 keystonemiddleware 3 flask 3 starlette 3 clearml 3 ujson 3 datasette 3 slixmpp 3 openvpn-monitor 3 octavia 3 sickrage 3 AccessControl 3 ecdsa 3 django-cms 3 RestrictedPython 3 llama-index 3 openc3 3 mistune 3 micropython-copy 3 Twisted 3 micropython-io 3 wasmtime 3 plone.supermodel 3 jupyter-server-proxy 3 gerapy 3 plone.app.dexterity 3 dulwich 3 plone.app.theming 3 wasm3 3