Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
pypi rdiffweb Security Advisories
Loading...
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: 7 months ago
GSA_kwCzR0hTQS1jNHJ2LTJqNngtcHE3eM4AA2JC
Rdiffweb Allocation of Resources Without Limits or Throttling vulnerabilityEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: 7 months ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: 9 months ago
GSA_kwCzR0hTQS13d3JnLTJ3NWotZ3J2eM4AA1CR
RDiffWeb vulnerable to Allocation of Resources Without Limits or ThrottlingEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: 9 months ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: over 1 year ago
GSA_kwCzR0hTQS0yd3B3LWNtOXctdjR4bc4AAwnq
rdiffweb vulnerable to Business Logic ErrorsEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.4
Published: over 1 year ago
GSA_kwCzR0hTQS13ZjMzLTZ4MzMtd2NmOc4AAwnp
rdiffweb vulnerable to Authentication Bypass by Primary WeaknessEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.4
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 1 year ago
GSA_kwCzR0hTQS04M3BtLTd2NDgtNWpwNM4AAwnu
rdiffweb vulnerable to Special Element InjectionEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 1 year ago
GSA_kwCzR0hTQS1oNXdwLWpycWMtY3d3eM4AAwnl
rdiffweb vulnerable to Open RedirectEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS1tOHI5LXF4eDgtbXJ4cM4AAwnn
rdiffweb Improper Access Control vulnerabilityEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: over 1 year ago
GSA_kwCzR0hTQS03cTRyLXg1cWctbW1jcM4AAwns
rdiffweb has no rate limit on resend email featureEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
GSA_kwCzR0hTQS02MzlmLWh4Y3YtODRtY84AAwgc
rdiffweb Open Redirect vulnerabilityEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: over 1 year ago
GSA_kwCzR0hTQS04NWZwLTUyM3EtNXh3Y84AAwgY
rdiffweb vulnerable to Cross-Site Request ForgeryEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS1nNTk0LTU1bXAtZjZxOM4AAwRe
Improper Privilege Management in rdiffwebEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
GSA_kwCzR0hTQS00d3BoLTl2cm0tNnYzd84AAv6l
Rdiffweb vulnerable to Missing Authentication for Critical FunctionEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS05NHFtLTk5cWMtcXdxas4AAv4Y
rdiffweb vulnerable to Insufficient Session ExpirationEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS1qdzM2LW1ydmctajVmeM4AAvjj
Rdiffweb subject to Business Logic ErrorsEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS05OWo1LWZ2ZzMtNTRwbc4AAvef
Rdiffweb is missing authentication for critical functionEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS14OHgyLXdjMmgtd2M0OM4AAvV4
Missing rate limit on rdiffwebEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS04MjR4LWpjeGYtaHBmZ84AAvUI
Origin Validation Error in rdiffwebEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
GSA_kwCzR0hTQS05MmdmLXAzNzYtNnI5cs4AAvUF
Missing rate limit on rdiffwebEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
GSA_kwCzR0hTQS04ZzltLXZ2NjktN2o5Oc4AAvN5
rdiffweb vulnerable to Open RedirectEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.5
Published: over 1 year ago
GSA_kwCzR0hTQS05ZzN2LXYyNHEtamo1cM4AAvLV
rdiffweb does not have a rate limit on incorrect password attempts to prevent brute force attacksEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.5
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
GSA_kwCzR0hTQS1ocnJtLTg5NWgteGgzNM4AAvLR
rdiffweb Path Traversal vulnerabilityEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
GSA_kwCzR0hTQS03d3I2LWZqNHgtODkzds4AAvLP
rdiffweb allows a new password to be the same as the previous passwordEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
GSA_kwCzR0hTQS0zZmhxLTcyaHctanF3ds4AAvJb
rdiffweb's lack of token name length limit can result in DoS or memory corruptionEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 1 year ago
GSA_kwCzR0hTQS04d3hmLWM0NXctZzY2Z84AAvIb
rdiffweb vulnerable to password complexity bypass leading to weak passwordsEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
GSA_kwCzR0hTQS1mcWZnLWM1NzctMnZjM84AAvHR
rdiffweb's unlimited length Fullname field can lead to DoSEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
GSA_kwCzR0hTQS03ZnFtLWptNTItZjl2Y84AAvGZ
rdiffweb vulnerable to Use of Cache Containing Sensitive InformationEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Low
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 1.1
Published: over 1 year ago
GSA_kwCzR0hTQS1xcTI5LTV2amgtdnh3cs4AAvFY
rdiffweb vulnerable to Improper Cleanup on Thrown ExceptionEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 1.1
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
GSA_kwCzR0hTQS1ocmo3LWY2MmYtajd4N84AAvFK
rdiffweb allows unlimited length of root directory name, which could result in DoSEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
GSA_kwCzR0hTQS01djk1LWo0cnItNmYzY84AAvEt
rdiffweb's unlimited username field length can lead to DoSEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
GSA_kwCzR0hTQS1xcmozLWhyZ2otZm03cs4AAvD8
rdiffweb's unlimited length email field can lead to DoSEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
GSA_kwCzR0hTQS14aHc5LTR3cXEteDY3ds4AAvD_
rdiffweb vulnerable to potential DoS via memory consumptionEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS1qM3E0LWdtajQtbWo5Nc4AAvB7
rdiffweb vulnerable to account access via session fixationEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: over 1 year ago
GSA_kwCzR0hTQS1nbWo4LTg0cjQtaDQ2as4AAu_k
rdiffweb Cross-Site Request Forgery vulnerability can lead to user email ID being changedEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
GSA_kwCzR0hTQS03NGo2LTNoaDQtdzNmNc4AAu_i
rdiffweb Cross-Site Request Forgery vulnerabilityEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
GSA_kwCzR0hTQS1tNzQ4LWhqcWctcnBwOM4AAu-1
rdiffweb has insecure HTTP cookiesEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
GSA_kwCzR0hTQS05dnhmLW1jbTYtNW00Ms4AAu-C
rdiffweb CSRF could lead to disabling notifications in user profileEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
GSA_kwCzR0hTQS1jdzJ2LXd2NGctdzRwNs4AAu6H
rdiffweb CSRF vulnerability in admin area can lead to deletion of repositories and usersEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 1 year ago
GSA_kwCzR0hTQS12cTRoLXhyd2MtbTYzOc4AAu0X
rdiffweb CSRF vulnerability in profile's SSH keys can lead to unauthorized accessEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
GSA_kwCzR0hTQS1tanc0LXh2eDYtM2dyZ84AAuyq
rdiffweb 2.4.1 vulnerable to Sensitive Cookie in HTTPS Session Without 'Secure' AttributeEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
GSA_kwCzR0hTQS1jaDRjLTI3OHEtNTY1NM4AAuyc
rdiffweb 2.4.1 Missing Custom Error PageEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 1 year ago
GSA_kwCzR0hTQS1tcDVwLWcyanYtcjhxd84AAuwS
rdiffweb 2.4.1 contains Weak Password RequirementsEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 1 year ago
High
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 1 year ago
GSA_kwCzR0hTQS1tMzc5LXg0eGMtMzh4Oc4AAurl
rdiffweb vulnerable to Improper Restriction of Rendered UI Layers or FramesEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 1 year ago
Statistics
Advisories: 18,303
Packages: 8,274
Repositories: 1
Ecosystems: 12
Packages: 8,274
Repositories: 1
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
432
tensorflow-cpu
387
tensorflow-gpu
384
django
80
apache-airflow
78
ansible
63
apache-superset
48
salt
47
Plone
45
rdiffweb
42
plone
42
Pillow
41
vyper
38
matrix-synapse
35
mlflow
31
opencv-python
30
opencv-contrib-python
30
Django
27
moin
23
langchain
18
PaddlePaddle
17
cobbler
17
pillow
16
mercurial
16
nova
15
cryptography
15
notebook
15
paddlepaddle
15
pyload-ng
14
gradio
14
pyftpdlib
14
modoboa
14
keystone
13
neutron
12
vantage6
12
OctoPrint
12
onionshare-cli
11
urllib3
11
twisted
11
glance
11
calibreweb
11
aiohttp
10
Flask-AppBuilder
10
wagtail
10
trytond
10
ethyca-fides
9
opencv-contrib-python-headless
9
opencv-python-headless
9
waitress
9
Zope
9
zope
9
kiwitcms
9
roundup
8
nautobot
8
trac
8
aubio
8
numpy
8
label-studio
8
pip
7
pysaml2
7
matrix-sydent
7
ipython
7
python-keystoneclient
7
jupyter-server
7
swift
7
scrapy
7
lief
7
pgadmin4
6
mailman
6
tuf
6
web2py
6
Zope2
6
apache-airflow-providers-apache-hive
6
graphite-web
6
horizon
6
mindsdb
6
lxml
6
inventree
6
sentry
6
lmdb
5
paramiko
5
requests
5
saleor
5
python-gnupg
5
feedparser
5
whoogle-search
5
ckan
5
Products.CMFPlone
5
pyspark
5
bleach
5
grpcio
4
grpc
4
buildbot
4
keylime
4
GitPython
4
starlette
4
ansible-core
4
Radicale
4
datasette
4
oauthenticator
4
Pygments
4
Flask-Security-Too
4
cinder
4
yt-dlp
4
nltk
4
PyPDF2
4
markdown2
4
Jinja2
4
qutebrowser
4
jupyterhub
4
werkzeug
4
nvflare
4
tornado
4
omero-web
4
transformers
4
reportlab
4
FreeTAKServer-UI
4
httpie
4
bottle
4
pretix
4
tripleo-heat-templates
4
awsiotsdk
4
jwcrypto
4
aws-iot-device-sdk-v2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
esphome
4
mayan-edms
3
pandasai
3
sqlparse
3
gerapy
3
plone.app.event
3
plone.app.theming
3
protobuf
3
zenml
3
bitlyshortener
3
indico
3
pywasm3
3
django-helpdesk
3
keyring
3
wger
3
asyncua
3
plone.app.dexterity
3
plone.supermodel
3
apache-iotdb
3
Products.PluggableAuthService
3
flask
3
sanic
3
rsa
3
fava
3
barbican
3
ecdsa
3
ajenti
3
httplib2
3
torchserve
3
homeassistant
3
sosreport
3
sickrage
3
Mezzanine
3
Moin
3
apache-libcloud
3
onnx
3
SQLAlchemy
3
pyyaml
3
apache-airflow-providers-apache-spark
3
io.grpc:grpc-protobuf
3
Weblate
3
python-jose
3
pyarrow
3
asyncssh
3
ray
3
jupyterlab
3
ujson
3
poetry
3
localstack
3
mistune
3
Werkzeug
3
copyparty
3
openvpn-monitor
3
streamlit
3
ryu
3
indy-node
3
aim
3
dulwich
3
docassemble.webapp
3
slixmpp
3
Keystone
3
mitmproxy
3
clearml
3
ansible-runner
3
scipy
3
quokka
3
superset
2
plone.app.contenttypes
2
webargs
2
apache-airflow-providers-apache-sqoop
2
pytorch-lightning
2
untangle
2
logilab-common
2
langchain-core
2
certifi
2
Filter by Repository