Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Arbitrary Command Injection		lollms[,11.0.0)pip9 Apr 2025
  • C
Deserialization of Untrusted Data		bentoml[1.0.0,1.4.8)pip9 Apr 2025
  • H
Denial of Service (DoS)		invokeai[0,]pip8 Apr 2025
  • H
Denial of Service (DoS)		invokeai[0,]pip8 Apr 2025
  • H
Directory Traversal		invokeai[,5.3.0rc1)pip8 Apr 2025
  • C
Cross-site Scripting (XSS)		open-webui[,0.3.24)pip8 Apr 2025
  • H
Class Pollution		mesop[,0.14.1)pip8 Apr 2025
  • M
Incomplete List of Disallowed Inputs		picklescan[,0.0.25)pip8 Apr 2025
  • M
Deserialization of Untrusted Data		picklescan[,0.0.25)pip8 Apr 2025
  • H
Incomplete List of Disallowed Inputs		picklescan[,0.0.25)pip8 Apr 2025
  • M
Improper Handling of Case Sensitivity		flask-cors[0,]pip7 Apr 2025
  • M
Improper Verification of Source of a Communication Channel		flask-cors[0,]pip7 Apr 2025
  • M
Origin Validation Error		flask-cors[0,]pip7 Apr 2025
  • H
Denial of Service (DoS)		hyperlpr3[0,]pip7 Apr 2025
  • C
Missing Authentication for Critical Function		langflow[,1.3.0)pip7 Apr 2025
  • H
SQL Injection		vanna[0,]pip7 Apr 2025
  • M
SQL Injection		apache-airflow-providers-common-sql[,1.24.1)pip7 Apr 2025
  • L
Improper Encoding or Escaping of Output		django-tomselect[,2025.3.3)pip6 Apr 2025
  • L
Command Injection		jupyterlab-git[,0.51.1)pip6 Apr 2025
  • H
Incorrect Permission Assignment for Critical Resource		litellm[,1.64.1)pip6 Apr 2025
  • C
Malicious Package		bitcoinlibdbfix[0,]pip6 Apr 2025
  • C
Malicious Package		bitcoinlib-dev[0,]pip6 Apr 2025
  • C
Malicious Package		disgrasya[0,]pip6 Apr 2025
  • C
Remote Code Execution (RCE)		pgadmin4[,9.2)pip6 Apr 2025
  • M
Cross-site Scripting (XSS)		pgadmin4[,9.2)pip6 Apr 2025
  • C
Deserialization of Untrusted Data		bentoml[1.3.8,1.4.3)pip6 Apr 2025
  • H
Dynamic Variable Evaluation		composio-core[,0.5.43)pip3 Apr 2025
  • M
Server-side Request Forgery (SSRF)		composio-core[0,]pip3 Apr 2025
  • M
Improper Neutralization of Data within XPath Expressions ('XPath Injection')		composio-core[0,]pip3 Apr 2025
  • M
Cross-site Request Forgery (CSRF)		aim[0,]pip3 Apr 2025