Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi lollms Security Advisories

Browse all Security Advisories for pypi lollms

Loading...
Moderate
GSA_kwCzR0hTQS1jbTU5LThybXYtZjJjas4ABAyJ
Lollms vulnerable to Cross-site Scripting
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: 23 days ago
Moderate
GSA_kwCzR0hTQS02aDY0LWc3Y2otaGo1Ns4ABAOH
Lord of Large Language Models (LoLLMs) path traversal vulnerability in the api open_personality_folder endpoint
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: about 1 month ago
Low
GSA_kwCzR0hTQS03cGdyLTMyZngtYzZ4Oc4ABAM8
Lord of Large Language Models (LoLLMs) Server path traversal vulnerability in lollms_file_system.py
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: about 1 month ago
High
GSA_kwCzR0hTQS04bXJtLXI3aDMtYzNoas4AA-BA
LoLLMS vulnerable to Expected Behavior Violation
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: 4 months ago
High
GSA_kwCzR0hTQS13OXFmLTgzamctMng2Y84AA9Zx
lollms vulnerable to dot-dot-slash path traversal in XTTS server
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: 5 months ago
High
GSA_kwCzR0hTQS05Y2htLW02eDItNmZ2Y84AA9Zw
lollms vulnerable to path traversal due to unauthenticated root folder settings change
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: 5 months ago
High
GSA_kwCzR0hTQS1tNDVjLXY0NmgtYzc4OM4AA9Z4
lollms path traversal vulnerability allows overriding of config.yaml file, leading to RCE
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS03OWg4LWd4aHEtcTNqZ84AA9TI
Remote Code Execution in create_conda_env function in lollms
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.1
Published: 5 months ago
Critical
GSA_kwCzR0hTQS1tdnJtLWZoOHEtNndyMs4AA9S_
Remote Code Execution via path traversal bypass in lollms
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 5 months ago
Critical
GSA_kwCzR0hTQS12cXdyLXE2Y2MtYzI0Ms4AA89T
parisneo/lollms Local File Inclusion (LFI) attack
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.5
Published: 5 months ago
High
GSA_kwCzR0hTQS0zeDQ3LXc0cngtNnBtN84AA8xw
LoLLMS Path Traversal vulnerability
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 6 months ago
High
GSA_kwCzR0hTQS1wOGg3LWM4Z3ctNng4Y84AA8xF
LoLLMS Path Traversal vulnerability
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: 6 months ago
Moderate
GSA_kwCzR0hTQS05cDczLXg4NnYtanc1N84AA8mU
path traversal vulnerability was identified in the parisneo/lollms-webui
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: 6 months ago
High
GSA_kwCzR0hTQS1wd2M5LXE0aGotcGc4Z84AA8Ju
LoLLMS Command Injection vulnerability
Ecosystems: pypi
Packages: lollms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: 6 months ago
Statistics
Advisories: 20,668
Packages: 9,040
Repositories: 3
Ecosystems: 12
Filter by Package
tensorflow 433 tensorflow-gpu 427 tensorflow-cpu 423 Django 100 apache-airflow 85 Plone 72 ansible 63 salt 56 apache-superset 51 nova 47 mlflow 46 django 44 rdiffweb 42 plone 41 vyper 38 moin 35 matrix-synapse 35 gradio 34 Pillow 31 keystone 31 opencv-contrib-python 31 opencv-python 31 pillow 26 glance 20 langchain 20 mercurial 18 cobbler 18 mindsdb 18 notebook 17 PaddlePaddle 16 paddlepaddle 16 neutron 16 cryptography 16 pyload-ng 16 ethyca-fides 15 calibreweb 15 OctoPrint 15 lollms 14 pyftpdlib 14 aiohttp 14 modoboa 14 vantage6 13 zenml 12 wagtail 12 urllib3 12 roundup 12 swift 12 twisted 12 horizon 11 onionshare-cli 11 trytond 11 waitress 11 opencv-python-headless 10 opencv-contrib-python-headless 10 sentry 10 nautobot 10 Flask-AppBuilder 10 ryu 9 kiwitcms 9 python-keystoneclient 9 pyspark 9 cinder 9 zope 9 numpy 8 label-studio 8 trac 8 litellm 8 aubio 8 ckan 8 ipython 8 Zope 8 pgadmin4 8 pysaml2 7 pip 7 Products.CMFPlone 7 scrapy 7 jupyter-server 7 lief 7 matrix-sydent 7 inventree 7 mage-ai 6 web2py 6 changedetection.io 6 ansible-core 6 yt-dlp 6 aim 6 Zope2 6 apache-airflow-providers-apache-hive 6 tuf 6 Moin 6 lxml 6 graphite-web 6 requests 6 mailman 6 tornado 6 langchain-experimental 5 oauthenticator 5 torchserve 5 ait-core 5 bleach 5 jupyterhub 5 grpcio 5 grpc 5 Jinja2 5 paramiko 5 omero-web 5 dtale 5 Werkzeug 5 werkzeug 5 whoogle-search 5 pretix 5 feedparser 5 nltk 5 saleor 5 lmdb 5 python-gnupg 5 open-webui 4 indy-node 4 langflow 4 Scrapy 4 httpie 4 mobsf 4 jwcrypto 4 codechecker 4 onnx 4 GitPython 4 wasmtime 4 Flask-Security-Too 4 dbt-core 4 langchain-community 4 buildbot 4 Pygments 4 Weblate 4 apache-submarine 4 bottle 4 apache-iotdb 4 keylime 4 streamlit 4 transformers 4 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 FreeTAKServer-UI 4 aws-iot-device-sdk-v2 4 indico 4 markdown2 4 nvflare 4 Keystone 4 awsiotsdk 4 Nova 4 jupyterlab 4 reportlab 4 tripleo-heat-templates 4 qutebrowser 4 PyPDF2 4 barbican 4 pywasm3 4 esphome 4 Radicale 4 sosreport 3 Mezzanine 3 sickrage 3 flask 3 asyncua 3 wasm3 3 openc3 3 openc3 3 torch 3 mysql-connector-python 3 pycrypto 3 anki 3 fava 3 Red-DiscordBot 3 ydata-profiling 3 django-helpdesk 3 homeassistant 3 setuptools 3 vanna 3 mistune 3 plone.supermodel 3 plone.app.dexterity 3 django-cms 3 plone.app.theming 3 plone.app.event 3 clearml 3 llama-index-core 3 keyring 3 ansible-runner 3 SQLAlchemy 3 pandasai 3 jupyter-server-proxy 3 tinymce 3 tinymce/tinymce 3 TinyMCE 3 django-tinymce 3 httplib2 3 pyyaml 3 ajenti 3 protobuf 3 certifi 3 Kallithea 3 h2o 3