Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2026-41 |
8.8 (3.1)
|
Diffusers is the a library for pretrained diffusion models. Prior to 0.38.0, diffusers 0… | diffusers | 2026-05-14T17:16:23.500Z | 2026-05-19T03:20:55.990Z |
| pysec-2026-40 |
8.8 (3.1)
|
Diffusers is the a library for pretrained diffusion models. Prior to 0.38.0, a trust_rem… | diffusers | 2026-05-14T17:16:22.903Z | 2026-05-19T03:18:23.197Z |
| pysec-2026-145 |
6.5 (3.1)
|
vLLM is an inference and serving engine for large language models (LLMs). From to before… | vllm | 2026-05-12T20:16:43.293Z | 2026-05-15T15:16:52.560Z |
| pysec-2026-129 |
6.5 (3.1)
|
pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev… | pyload-ng | 2026-05-11T18:16:35.260Z | 2026-05-15T14:29:53.680Z |
| pysec-2026-30 |
7.5 (3.1)
|
changedetection.io is a free open source web page change detection tool. Prior to 0.55.1,… | changedetection-io | 2026-05-12T18:17:28.493Z | 2026-05-15T14:20:12.590Z |
| pysec-2026-126 |
6.8 (3.1)
|
pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev… | pyload-ng | 2026-05-11T18:16:34.833Z | 2026-05-15T14:09:19.303Z |
| pysec-2026-127 |
8.3 (3.1)
|
pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev… | pyload-ng | 2026-05-11T18:16:34.980Z | 2026-05-15T14:04:39.930Z |
| pysec-2026-128 |
6.5 (3.1)
|
pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev… | pyload-ng | 2026-05-11T18:16:35.123Z | 2026-05-15T13:43:30.950Z |
| pysec-2026-131 |
8.8 (3.1)
|
Sentry 8.2.0 contains a remote code execution vulnerability that allows authenticated sup… | sentry | 2026-05-10T13:16:29.693Z | 2026-05-14T17:16:03.740Z |
| pysec-2026-141 |
5.3 (3.1)
|
urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin red… | urllib3 | 2026-05-13T16:16:57.150Z | 2026-05-14T13:56:27.263Z |
| pysec-2026-142 |
7.5 (3.1)
|
urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could d… | urllib3 | 2026-05-13T16:16:57.303Z | 2026-05-14T13:49:25.483Z |
| pysec-2026-29 |
7.5 (3.1)
|
changedetection.io is a free open source web page change detection tool. In 0.54.9 and ea… | changedetection-io | 2026-05-12T18:17:23.493Z | 2026-05-13T22:39:00.723Z |
| pysec-2026-4 |
5.3 (3.1)
|
A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is … | gdal | 2026-05-09T23:16:33.113Z | 2026-05-13T15:31:52.070Z |
| pysec-2026-58 |
8.5 (3.1)
|
The Open edx Enterprise Service app provides enterprise features to the Open edX platform… | edx-enterprise | 2026-05-11T18:16:36.547Z | 2026-05-13T14:50:59.870Z |
| pysec-2026-22 |
6.5 (3.1)
|
The Elasticsearch logging provider, when configured with a `host` URL that embeds credent… | apache-airflow-providers-elasticsearch | 2026-05-11T09:16:25.990Z | 2026-05-13T14:22:04.903Z |
| pysec-2026-23 |
6.5 (3.1)
|
The OpenSearch logging provider, when configured with a `host` URL that embeds credential… | apache-airflow-providers-opensearch | 2026-05-11T09:16:26.143Z | 2026-05-13T14:05:21.357Z |
| pysec-2017-152 |
6.4 (3.1)
|
A flaw was found in instack-undercloud 7.2.0 as packaged in Red Hat OpenStack Platform Pi… | instack | 2017-09-21T21:29:00.447Z | 2026-05-13T00:24:29.033Z |
| pysec-2017-151 |
9.8 (3.1)
|
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.1… | salt | 2017-08-23T14:29:00.283Z | 2026-05-13T00:24:29.033Z |
| pysec-2017-150 |
8.8 (3.1)
|
protobuf allows remote authenticated attackers to cause a heap-based buffer overflow. | protobuf | 2017-09-25T17:29:00.397Z | 2026-05-13T00:24:29.033Z |
| pysec-2017-149 |
8.8 (3.1)
|
Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arb… | bzr | 2017-11-27T10:29:00.207Z | 2026-05-13T00:24:29.033Z |
| pysec-2026-37 |
7.5 (3.1)
|
An issue in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a remote attacker to … | dash-uploader | 2026-05-08T15:16:37.120Z | 2026-05-12T20:55:00.800Z |
| pysec-2026-150 |
5.3 (3.1)
|
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.… | wagtail | 2026-05-11T16:17:35.850Z | 2026-05-12T15:59:06.407Z |
| pysec-2026-146 |
6.5 (3.1)
|
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.… | wagtail | 2026-05-11T16:17:34.823Z | 2026-05-12T15:58:58.510Z |
| pysec-2026-147 |
4.3 (3.1)
|
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.… | wagtail | 2026-05-11T16:17:35.057Z | 2026-05-12T15:58:41.620Z |
| pysec-2026-148 |
6.5 (3.1)
|
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.… | wagtail | 2026-05-11T16:17:35.430Z | 2026-05-12T15:58:28.273Z |
| pysec-2026-149 |
6.5 (3.1)
|
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.… | wagtail | 2026-05-11T16:17:35.713Z | 2026-05-12T15:57:27.673Z |
| pysec-2026-119 |
9.8 (3.1)
|
OpenCTI is an open source platform for managing cyber threat intelligence knowledge and o… | pycti | 2026-05-05T19:16:21.380Z | 2026-05-12T13:45:07.770Z |
| pysec-2025-52 |
|
gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation. | mlflow | 2025-06-23T15:15:29Z | 2026-05-12T09:14:03.704411Z |
| pysec-2026-67 |
6.1 (3.1)
|
Jupyter Server is the backend for Jupyter web applications. In jupyter_server versions th… | jupyter-server | 2026-05-05T16:16:10.133Z | 2026-05-11T13:01:45.537Z |
| pysec-2026-69 |
6.8 (3.1)
|
Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlie… | jupyter-server | 2026-05-05T22:16:00.820Z | 2026-05-11T13:00:39.473Z |