Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
H Incorrect Privilege Assignment	mage-ai[0,]	pip	25 Aug 2024
H Directory Traversal	mage-ai[0,]	pip	25 Aug 2024
H Directory Traversal	mage-ai[0,]	pip	25 Aug 2024
H Path Traversal	mage-ai[0,]	pip	25 Aug 2024
H Improper Control of Generation of Code ('Code Injection')	llama-index[,0.10.38)	pip	23 Aug 2024
M Information Exposure	mage-ai[0,]	pip	23 Aug 2024
M Information Exposure Through an Error Message	ckan[2.0,2.10.5)	pip	22 Aug 2024
H Cross-site Scripting (XSS)	ckan[2.7.0,2.10.5)	pip	22 Aug 2024
M Server-Side Request Forgery (SSRF)	ckan[,2.10.5)	pip	22 Aug 2024
M Cross-site Scripting (XSS)	apache-airflow[,2.10.0)	pip	22 Aug 2024
H Arbitrary File Write via Archive Extraction (Zip Slip)	mobsf[,4.1.3)	pip	20 Aug 2024
C Arbitrary Code Execution	mocodo[,4.2.9)	pip	19 Aug 2024
H Improper Access Control	flask-cors[4.0.0,5.0.0)	pip	19 Aug 2024
M URL Redirection to Untrusted Site ('Open Redirect')	webob[,1.8.8)	pip	15 Aug 2024
M HTTP Request Smuggling	mapproxy[,1.14.0)	pip	13 Aug 2024
H Directory Traversal	mapproxy[,1.13.1)	pip	13 Aug 2024
M Arbitrary Code Injection	weaviate-client[,3.26.5)[4.0.0b0,4.6.7)	pip	13 Aug 2024
H Directory Traversal	nemoguardrails[,0.9.1)	pip	13 Aug 2024
M Path Traversal	streamlit[,1.37.0)	pip	13 Aug 2024
L Cross-site Scripting (XSS)	khoj-assistant[,1.13.0)	pip	12 Aug 2024
C Malicious Package	proxyfullscraper[0,]	pip	12 Aug 2024
C Malicious Package	proxyalhttp[0,]	pip	12 Aug 2024
C Malicious Package	proxyfullscrapers[0,]	pip	12 Aug 2024
C Malicious Package	testbrojct2[0,]	pip	12 Aug 2024
C Malicious Package	solana-py[0,]	pip	12 Aug 2024
H Improper Check for Unusual or Exceptional Conditions	lnbits[,0.12.6)	pip	12 Aug 2024
M UNIX Symbolic Link (Symlink) Following	aiohttp[,3.10.2)	pip	11 Aug 2024
C Deserialization of Untrusted Data	inference[,0.14.0)	pip	9 Aug 2024
H Server-side Request Forgery (SSRF)	inference[,0.14.0)	pip	9 Aug 2024
M Cross-site Scripting (XSS)	ansibleguy-webui[,0.0.23.post3)	pip	9 Aug 2024

APPLICATION

OPERATING SYSTEM