Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2026-2854
  • PyPI/stringhelp
 Malicious code in stringhelp (PyPI) 1 hour ago
  • No fix available
GHSA-cjcx-jfp2-f7m2
  • PyPI/pretalx
 pretalx vulnerable to stored cross-site scripting in organizer search typeahead 9 hours ago
  • Fix available
  • Severity - 8.7 (High)
GHSA-jm8c-9f3j-4378
  • PyPI/pretalx
 pretalx mail templates vulnerable to email injection via unescaped user-controlled placeholders 9 hours ago
  • Fix available
  • Severity - 6.1 (Medium)
GHSA-mjw2-v2hm-wj34
  • PyPI/dagster
  • PyPI/dagster-deltalake
  • PyPI/dagster-duckdb
  • PyPI/dagster-gcp
  • PyPI/dagster-snowflake
  • ... 1 more
 Dagster Vulnerable to SQL Injection via Dynamic Partition Keys in Database I/O Manager Integrations 9 hours ago
  • Fix available
  • Severity - 8.3 (High)
GHSA-rg3h-x3jw-7jm5
  • PyPI/praisonai
  • PyPI/praisonaiagents
 PraisonAI: SQL Injection via unvalidated `table_prefix` in 9 conversation store backends (incomplete fix for CVE-2026-40315) 12 hours ago
  • Fix available
  • Severity - 8.1 (High)
GHSA-9qhq-v63v-fv3j
  • PyPI/praisonai
 Incomplete fix for CVE-2026-34935: Command Injection in MervinPraison/PraisonAI 12 hours ago
  • Fix available
  • Severity - 9.8 (Critical)
GHSA-x3cv-r3g3-fpg9
  • PyPI/mcp-neo4j-cypher
 Neo4j Labs MCP Servers: SSRF and Data Modification via read_only Mode Bypass Through CALL Procedures 12 hours ago
  • Fix available
  • Severity - 2.3 (Low)
GHSA-ggmg-cqg6-j45g
  • PyPI/sentry
 Sentry: Improper authentication on SAML SSO process allows user identity linking 13 hours ago
  • No fix available
  • Severity - 9.1 (Critical)
MAL-2026-2852
  • PyPI/aet-test
 Malicious code in aet-test (PyPI) 15 hours ago
  • No fix available
MAL-2026-2847
  • PyPI/shan-lib
 Malicious code in shan-lib (PyPI) 20 hours ago
  • No fix available
MAL-2026-2843
  • PyPI/shan-lib-poc
 Malicious code in shan-lib-poc (PyPI) 23 hours ago
  • No fix available
MAL-2026-2841
  • PyPI/lixxyly
 Malicious code in lixxyly (PyPI) 23 hours ago
  • No fix available
MAL-2026-2844
  • PyPI/shelipp
 Malicious code in shelipp (PyPI) 23 hours ago
  • No fix available
MAL-2026-2842
  • PyPI/looopiw
 Malicious code in looopiw (PyPI) 23 hours ago
  • No fix available
MAL-2026-2840
  • PyPI/sher-server-tool
 Malicious code in sher-server-tool (PyPI) 23 hours ago
  • No fix available
MAL-2026-2839
  • PyPI/sher-net
 Malicious code in sher-net (PyPI) 23 hours ago
  • No fix available
Load more...