pypi
757,227 packages · pypi.org
Security Advisories in pypi
Moderate
over 3 years ago
OpenStack Image Service (Glance) allows remote authenticated users to bypass access restrictions
pypi
glance
High
over 3 years ago
OpenStack Identity (Keystone) DoS through V3 API authentication chaining
pypi
keystone
High
over 3 years ago
OpenStack TripleO Heat templates spoof metadata requests
pypi
tripleo-heat-templates
High
over 3 years ago
TripleO Heat templates might allow remote attackers to obtain sensitive information from private containers
pypi
tripleo-heat-templates
Moderate
over 3 years ago
Exposure of Sensitive Information to an Unauthorized Actor in Requests
pypi
requests
Critical
over 3 years ago
OpenStack Murano Code Execution
pypi
python-muranoclient, murano-dashboard, murano
High
over 3 years ago
SimpleGeo python-oauth2 does not check the nonce allowing replay attacks
pypi
oauth2
Moderate
over 3 years ago
SimpleGeo python-oauth2 vulnerable to the use of Insufficiently Random Values to generate nonces
pypi
oauth2
High
over 3 years ago
OpenStack keystonemiddleware does not verify certificate
pypi
keystonemiddleware
Moderate
over 3 years ago
OpenStack Image Service (Glance) allows remote authenticated users to bypass storage quota, cause denial of service
pypi
glance
High
over 3 years ago
OpenStack Image Service (Glance) allows remote authenticated users to read arbitrary file
pypi
glance
Moderate
over 3 years ago
OpenStack Image Service (Glance) vulnerable to Improper Access Control
pypi
glance
Critical
over 3 years ago
Radicale is vulnerable to directory traversal on Windows Filesystem Storage Backend component
pypi
Radicale
High
over 3 years ago
OpenStack Neutron Intended MAC-spoofing protection mechanism bypass
pypi
neutron
Low
over 3 years ago
ceph-deploy allows local users to obtain sensitive information by reading the file
pypi
ceph-deploy
High
over 3 years ago
OpenStack Object Storage (Swift) allows remote attackers to cause a denial of service
pypi
swift
Moderate
over 3 years ago
Django allows user sessions hijacking via an empty string in the session key
pypi
Django
High
over 3 years ago
OpenStack Object Storage (Swift) allows remote attackers to cause a denial of service
pypi
swift
Moderate
over 3 years ago
OpenStack Glance Bypass the storage quota and Denial of service
pypi
glance
Moderate
over 3 years ago
Ipsilon denial of service by deleting a SAML2 Service Provider (SP)
pypi
ipsilon
High
over 3 years ago
OpenStack keystonemiddleware and python-keystoneclient vulnerable to man-in-the-middle attacks
pypi
python-keystoneclient, keystonemiddleware
Moderate
over 3 years ago
OpenStack Dashboard (Horizon) Cross-site scripting (XSS) vulnerability
pypi
horizon
Moderate
over 3 years ago
Denial-of-service possibility in logout() view by filling session store
pypi
Django
High
over 3 years ago
OpenStack Glance Denial of service by creating a large number of images
pypi
glance
High
over 3 years ago
OpenStack Glance Denial of service by creating a large number of images
pypi
glance
Moderate
over 3 years ago
OpenStack Glance improper validation of the image_size_cap configuration option
pypi
glance
Moderate
over 3 years ago
Tryton allow authenticated users with certain permissions to read arbitrary files via the name parameter
pypi
trytond
Critical
over 3 years ago
python-jose failure to use a constant time comparison for HMAC keys
pypi
python-jose
Moderate
over 3 years ago
Salt Insecure configuration of PAM external authentication service
pypi
salt
Critical
over 3 years ago
Salt allows deleted minions to read or write to minions with the same id
pypi
salt
Moderate
over 3 years ago
Improper Restriction of XML External Entity Reference in Openpyxl
pypi
openpyxl
Moderate
over 3 years ago
Improper Neutralization of Input During Web Page Generation in html5lib
pypi
html5lib
Moderate
over 3 years ago
SaltStack has insecure /tmp file handling in salt/modules/chef.py
pypi
salt
High
over 3 years ago
Mercurial vulnerable to arbitrary code execution when converting Git repos
pypi
mercurial
High
over 3 years ago
txAWS AWSServiceEndpoint defaults to not verifying server certificates
pypi
txaws
High
over 3 years ago
MoinMoin Access Restrictions Bypassed due to improper ACL enforcement
pypi
moin
High
over 3 years ago
Cobbler Web Interface Kickstart Template Remote Privilege Escalation Vulnerability
pypi
cobbler
Moderate
over 3 years ago
ocrodjvu is vulnerable to Arbitrary File Modification via symlink attack
pypi
ocrodjvu
Filter by Severity
Filter by Package
tensorflow
433
tensorflow-cpu
413
tensorflow-gpu
396
apache-airflow
89
Django
89
salt
65
ansible
64
apache-superset
61
mlflow
55
Plone
54
nova
48
django
48
vyper
44
gradio
44
matrix-synapse
43
rdiffweb
42
plone
41
picklescan
39
moin
35
keystone
32
vllm
31
opencv-python
31
opencv-contrib-python
31
pillow
28
Pillow
28
open-webui
27
pyload-ng
24
glance
21
aim
20
ethyca-fides
20
langchain
19
transformers
19
neutron
19
mercurial
18
mindsdb
18
cobbler
18
calibreweb
17
cryptography
17
OctoPrint
17
notebook
17
lollms
16
paddlepaddle
16
PaddlePaddle
16
pgadmin4
16
h2o
15
aiohttp
15
urllib3
14
pyftpdlib
14
vantage6
14
modoboa
14
litellm
14
mobsf
14
zenml
14
roundup
13
wagtail
12
swift
12
sentry
12
twisted
12
nautobot
12
waitress
11
onionshare-cli
11
ckan
11
ai.h2o:h2o-core
11
label-studio
11
horizon
11
trytond
10
opencv-python-headless
10
Flask-AppBuilder
10
opencv-contrib-python-headless
9
ryu
9
agentscope
9
kiwitcms
9
changedetection.io
9
keras
9
lief
9
cinder
9
zope
9
llama-index
9
bentoml
8
Zope
8
ipython
8
trac
8
tornado
8
aubio
8
llama-index-core
8
numpy
8
pip
8
indico
8
python-keystoneclient
8
copyparty
8
dbgpt
8
Zope2
8
web2py
7
inventree
7
codechecker
7
scrapy
7
pysaml2
7
matrix-sydent
7
requests
7
executorch
7
jupyter-server
7
apache-airflow-providers-apache-hive
6
graphite-web
6
ansible-core
6
mage-ai
6
lxml
6
pypdf
6
torchserve
6
Jinja2
6
langflow
6
Mezzanine
6
keylime
6
tuf
6
OpenEXR
6
yt-dlp
6
mailman
6
whoogle-search
6
dtale
6
torch
6
omero-web
6
Moin
6
snowflake-connector-python
6
ray
6
ait-core
5
nltk
5
Werkzeug
5
Products.CMFPlone
5
composio-core
5
lmdb
5
fschat
5
python-gnupg
5
mayan-edms
5
pretix
5
grpcio
5
esphome
5
open-webui
5
homeassistant
5
bleach
5
werkzeug
5
onnx
5
feedparser
5
jupyterhub
5
langchain-experimental
5
saleor
5
weblate
5
Weblate
5
langchain-community
5
grpc
5
starlette
5
mitmproxy
5
oauthenticator
5
jupyterlab
5
pyspark
4
reportlab
4
django-helpdesk
4
Radicale
4
langchain-core
4
flask-appbuilder
4
Pygments
4
frappe
4
koji
4
PyPDF2
4
qutebrowser
4
datasette
4
flask-cors
4
litestar
4
clearml
4
httpie
4
RestrictedPython
4
InvokeAI
4
paramiko
4
authlib
4
Scrapy
4
pywasm3
4
jwcrypto
4
MaterialX
4
flask
4
octoprint
4
Flask-Security-Too
4
dbt-core
4
markdown2
4
Nova
4
GitPython
4
nvflare
4
buildbot
4
bottle
4
pandasai
4
skops
4
barbican
4
setuptools
4
indy-node
4
Keystone
4
jinja2
4
pytorch-lightning
4
tripleo-heat-templates
4
xml2rfc
4
llamafactory
4
FreeTAKServer-UI
4
motioneye
4
python-ldap
4
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/django/django
121
https://github.com/apache/airflow
105
https://github.com/ansible/ansible
59
https://github.com/python-pillow/Pillow
52
https://github.com/vyperlang/vyper
44
https://github.com/saltstack/salt
42
https://github.com/ikus060/rdiffweb
42
https://github.com/mmaitre314/picklescan
39
https://github.com/gradio-app/gradio
39
https://github.com/openstack/nova
38
https://github.com/plone/Products.CMFPlone
37
https://github.com/mlflow/mlflow
36
https://github.com/opencv/opencv
32
https://github.com/matrix-org/synapse
32
https://github.com/PaddlePaddle/Paddle
31
https://github.com/openstack/keystone
28
https://github.com/vllm-project/vllm
25
https://github.com/langchain-ai/langchain
25
https://github.com/run-llama/llama_index
24
https://github.com/pyload/pyload
24
https://github.com/ethyca/fides
20
https://github.com/huggingface/transformers
19
https://github.com/vantage6/vantage6
17
https://github.com/mindsdb/mindsdb
17
https://github.com/pyca/cryptography
16
https://github.com/MobSF/Mobile-Security-Framework-MobSF
15
https://github.com/aio-libs/aiohttp
15
https://github.com/cobbler/cobbler
15
https://github.com/apache/superset
14
https://github.com/urllib3/urllib3
14
https://github.com/pgadmin-org/pgadmin4
14
https://github.com/dpgaspar/Flask-AppBuilder
14
https://github.com/twisted/twisted
14
https://github.com/janeczku/calibre-web
14
https://github.com/zenml-io/zenml
13
https://github.com/modoboa/modoboa
13
https://github.com/h2oai/h2o-3
13
https://github.com/OctoPrint/OctoPrint
13
https://github.com/nautobot/nautobot
12
https://github.com/openstack/glance
12
https://github.com/getsentry/sentry
12
https://github.com/wagtail/wagtail
12
https://github.com/parisneo/lollms
11
https://github.com/open-webui/open-webui
11
https://github.com/Pylons/waitress
11
https://github.com/onionshare/onionshare
11
https://github.com/scrapy/scrapy
11
https://github.com/HumanSignal/label-studio
10
https://github.com/ckan/ckan
10
https://github.com/WeblateOrg/weblate
10
https://github.com/jupyter/notebook
10
https://github.com/lief-project/LIEF
9
https://github.com/element-hq/synapse
9
https://github.com/keras-team/keras
9
https://github.com/BerriAI/litellm
9
https://github.com/giampaolo/pyftpdlib
9
https://github.com/zopefoundation/Zope
9
https://github.com/openstack/horizon
9
https://github.com/faucetsdn/ryu
9
https://github.com/aimhubio/aim
9
https://github.com/ipython/ipython
8
https://github.com/tornadoweb/tornado
8
https://github.com/pallets/werkzeug
8
https://github.com/numpy/numpy
8
https://github.com/octoprint/octoprint
8
https://github.com/9001/copyparty
8
https://github.com/openstack/neutron
8
https://github.com/kiwitcms/Kiwi
8
https://github.com/dgtlmoon/changedetection.io
8
https://github.com/jupyter-server/jupyter_server
7
https://github.com/indico/indico
7
https://github.com/py-pdf/pypdf
7
https://github.com/pypa/pip
7
https://github.com/pytorch/executorch
7
https://github.com/aubio/aubio
7
https://github.com/Ericsson/codechecker
7
https://sourceforge.net/projects/sourceforge.net
7
https://github.com/openstack/cinder
7
https://github.com/openstack/swift
7
https://github.com/pytorch/pytorch
7
https://github.com/pallets/jinja
7
https://github.com/modelscope/agentscope
6
https://github.com/man-group/dtale
6
https://github.com/psf/requests
6
https://github.com/matrix-org/sydent
6
https://github.com/jupyterlab/jupyterlab
6
https://github.com/benbusby/whoogle-search
6
https://github.com/roundup-tracker/roundup
6
https://github.com/lxml/lxml
6
https://github.com/corydolphin/flask-cors
6
https://github.com/snowflakedb/snowflake-connector-python
6
https://github.com/graphite-project/graphite-web
6
https://github.com/keylime/keylime
6
https://github.com/yt-dlp/yt-dlp
6
https://github.com/inventree/InvenTree
5
https://github.com/tryton/trytond
5
https://github.com/onnx/onnx
5
https://github.com/jupyterhub/oauthenticator
5
https://github.com/mitmproxy/mitmproxy
5
https://github.com/esphome/esphome
5
https://github.com/bentoml/BentoML
5
https://github.com/pytorch/serve
5
https://github.com/TeamSeri0us/pocs
5
https://github.com/encode/starlette
5
https://github.com/home-assistant/core
5
https://github.com/ComposioHQ/composio
5
https://github.com/mozilla/bleach
5
https://github.com/gitpython-developers/GitPython
5
https://github.com/hwchase17/langchain
5
https://github.com/ome/omero-web
5
https://github.com/ray-project/ray
5
https://github.com/Exiv2/exiv2
5
https://github.com/django-helpdesk/django-helpdesk
4
https://github.com/python-ldap/python-ldap
4
https://github.com/Kozea/Radicale
4
https://github.com/NVIDIA/NVFlare
4
https://github.com/jupyterhub/jupyterhub
4
https://github.com/hiyouga/LLaMA-Factory
4
https://github.com/web2py/web2py
4
https://github.com/berriai/litellm
4
https://github.com/ietf-tools/xml2rfc
4
https://github.com/jhpyle/docassemble
4
https://github.com/FreeTAKTeam/UI
4
https://github.com/wasm3/wasm3
4
https://github.com/nltk/nltk
4
https://github.com/frappe/frappe
4
https://github.com/latchset/jwcrypto
4
https://github.com/mlc-ai/xgrammar
4
https://github.com/streamlit/streamlit
4
https://github.com/hyperledger/indy-node
4
https://github.com/AcademySoftwareFoundation/openexr
4
https://github.com/zopefoundation/RestrictedPython
4
https://github.com/pypa/setuptools
4
https://github.com/litestar-org/litestar
4
https://github.com/Cog-Creators/Red-DiscordBot
4
https://github.com/qutebrowser/qutebrowser
4
https://github.com/eosphoros-ai/DB-GPT
4
https://github.com/AcademySoftwareFoundation/MaterialX
4
https://github.com/rohe/pysaml2
4
https://github.com/blacklanternsecurity/bbot
4
https://github.com/simonw/datasette
4
https://github.com/pallets/flask
4
https://github.com/langflow-ai/langflow
4
https://github.com/pretix/pretix
4
https://github.com/dbt-labs/dbt-core
4
https://github.com/grpc/grpc
4
https://github.com/ronf/asyncssh
4
https://github.com/saleor/saleor
4
https://github.com/bottlepy/bottle
4
https://github.com/astral-sh/uv
3
https://github.com/ankitects/anki
3
https://github.com/openstack/python-keystoneclient
3
https://github.com/moinwiki/moin-1.9
3
https://github.com/eventlet/eventlet
3
https://github.com/Flask-Middleware/flask-security
3
https://github.com/jpadilla/pyjwt
3
https://github.com/aws/sagemaker-python-sdk
3
https://github.com/aws/aws-sam-cli
3
https://github.com/benoitc/gunicorn
3
https://github.com/langchain-ai/langgraph
3
https://github.com/Kludex/python-multipart
3
https://github.com/furlongm/openvpn-monitor
3
https://github.com/theupdateframework/python-tuf
3
https://github.com/IdentityPython/pysaml2
3
https://github.com/djblets/djblets
3
https://github.com/langroid/langroid
3
https://github.com/mpdavis/python-jose
3
https://github.com/khoj-ai/khoj
3
https://github.com/openstack/ironic
3
https://github.com/openstack/octavia
3
https://github.com/dlitz/pycrypto
3
https://github.com/chatchat-space/Langchain-Chatchat
3
https://github.com/Project-MONAI/MONAI
3
https://github.com/pyinstaller/pyinstaller
3
https://github.com/pyca/pyopenssl
3
https://github.com/adamghill/django-unicorn
3
https://github.com/poezio/slixmpp
3
https://github.com/ansible/ansible-runner
3
https://github.com/lepture/mistune
3
https://github.com/geyang/ml-logger
3
https://github.com/python/cpython
3
https://github.com/certifi/python-certifi
3
https://github.com/pygments/pygments
3
https://github.com/impredicative/bitlyshortener
3
https://github.com/gventuri/pandas-ai
3
https://github.com/andialbrecht/sqlparse
3
https://github.com/bytecodealliance/wasmtime
3
https://github.com/aws/aws-iot-device-sdk-java-v2
3
https://github.com/DavidOsipov/PostQuantum-Feldman-VSS
3
https://github.com/micropython/micropython
3
https://github.com/authlib/authlib
3
https://github.com/theupdateframework/tuf
3
https://github.com/sosreport/sos
3
https://github.com/zauberzeug/nicegui
3
https://github.com/trentm/python-markdown2
3
https://github.com/Gerapy/Gerapy
3
https://github.com/stephenmcd/mezzanine
3
https://github.com/yaml/pyyaml
3