Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

Security Advisories

Browse security advisories and track which Dependabot PRs address them.

RSS Feed

24,768

Total Advisories

1,787

With Dependabot PRs

3,504

Critical Severity

8,609

High Severity

Clear All Filters
pypdf's LZWDecode streams be manipulated to exhaust RAM
GHSA-m449-cwjh-6pw7 MODERATE 1 day ago
### Impact An attacker who uses this vulnerability can craft a PDF which leads to a memory usage of up to 1 GB per stream. This requires parsing t...
pypi
No PRs yet
MLX has Wild Pointer Dereference in load_gguf()
GHSA-j842-xgm4-wf88 CVE-2025-62609 MODERATE 5 days ago
## Summary Segmentation fault in `mlx::core::load_gguf()` when loading malicious GGUF files. Untrusted pointer from external gguflib library is de...
pypi
No PRs yet
MLX has heap-buffer-overflow in load()
GHSA-w6vg-jg77-2qg6 CVE-2025-62608 MODERATE 5 days ago
## Summary Heap buffer overflow in `mlx::core::load()` when parsing malicious NumPy `.npy` files. Attacker-controlled file causes 13-byte out-of-b...
pypi
No PRs yet
vLLM vulnerable to DoS via large Chat Completion or Tokenization requests with specially crafted `chat_template_kwargs`
GHSA-69j4-grxj-j64p CVE-2025-62426 MODERATE 6 days ago
### Summary The /v1/chat/completions and /tokenize endpoints allow a `chat_template_kwargs` request parameter that is used in the code before it is...
pypi
No PRs yet
pgAdmin 4 has command injection vulnerability on Windows systems
GHSA-rm79-x4g6-hvg5 CVE-2025-12763 MODERATE 13 days ago
pgAdmin 4 versions up to 9.9 are affected by a command injection vulnerability on Windows systems. This issue is caused by the use of shell=True du...
pypi
No PRs yet
AstrBot has an arbitrary file read vulnerability in function _encode_image_bs64
GHSA-vm2f-46xc-5jc3 CVE-2025-57697 MODERATE 19 days ago
AstrBot Project v3.5.22 has an arbitrary file read vulnerability in function _encode_image_bs64. Since the _encode_image_bs64 function defined in e...
pypi
No PRs yet
Apache Doris-MCP-Server: Improper Access Control results in bypassing a "read-only" mode
GHSA-m35w-xx8c-6xc7 CVE-2025-58337 MODERATE 21 days ago
An attacker with a valid read-only account can bypass Doris MCP Server’s read-only mode due to improper access control, allowing modifications that...
pypi
No PRs yet
OctoPrint vulnerable to XSS in Action Commands Notification and Prompt
GHSA-crvm-xjhm-9h29 CVE-2025-64187 MODERATE 22 days ago
### Impact OctoPrint versions up to and including 1.11.3 are affected by a vulnerability that allows injection of arbitrary HTML and JavaScript in...
pypi
No PRs yet
DSPy does not properly restrict file reads
GHSA-vvw2-h478-xwr3 CVE-2025-12695 MODERATE 22 days ago
The overly permissive sandbox configuration in DSPy allows attackers to steal sensitive files in cases when users build an AI agent which consumes ...
pypi
No PRs yet
Ansible does not collect garbage after playbook run
GHSA-f556-49jc-4rvc CVE-2020-25635 MODERATE 26 days ago
A flaw was found in Ansible Base when using the aws_ssm connection plugin as its garbage collector is not happening after the playbook run is compl...
pypi
No PRs yet
cryptidy allows code execution via untrusted data due to pickle.loads
GHSA-97w9-v595-3h5q CVE-2025-63675 MODERATE 26 days ago
cryptidy through 1.2.4 allows code execution via untrusted data because pickle.loads is used. This occurs in aes_decrypt_message in symmetric_encry...
pypi
No PRs yet
Apache Airflow has a command injection vulnerability in "example_dag_decorator"
GHSA-v3c9-j6h9-66v4 CVE-2025-54941 MODERATE 27 days ago
An example dag `example_dag_decorator` had non-validated parameter that allowed the UI user to redirect the example to a malicious server and execu...
pypi
No PRs yet
Apache Airflow's create action can upsert existing Pools/Connections/Variables
GHSA-gp5f-cx7h-8q6f CVE-2025-62503 MODERATE 27 days ago
User with CREATE and no UPDATE privilege for Pools, Connections, Variables could update existing records via bulk create API with overwrite action.
pypi
No PRs yet
Apache Airflow `/api/v2/dagReports` executes DAG Python in API
GHSA-273c-4g26-4jpm CVE-2025-62402 MODERATE 27 days ago
API users via `/api/v2/dagReports` could perform Dag code execution in the context of the api-server if the api-server was deployed in the environm...
pypi
No PRs yet
OpenUSD File Parsing Use-After-Free Remote Code Execution Vulnerability
GHSA-grjp-54v3-c442 MODERATE 28 days ago
# Patch This is fixed with [commit b953092](https://github.com/PixarAnimationStudios/OpenUSD/commit/b9530922b6a8ea72cd43661226b693fff8abbe4c), with...
pypi
No PRs yet
uv allows ZIP payload obfuscation through parsing differentials
GHSA-pqhf-p39g-3x64 MODERATE 28 days ago
### Impact In versions 0.9.5 and earlier of uv, ZIP archives were handled in a manner that enabled two parsing differentials against other compone...
pypi
3
Dependabot PRs
CKAN vulnerable to fixed session IDs
GHSA-2hvh-cw5c-8q8q CVE-2025-64100 MODERATE 28 days ago
### Impact Session ids could be fixed by an attacker if the site is configured with server-side session storage (CKAN uses cookie-based session st...
pypi
No PRs yet
FastMCP vulnerable to windows command injection in FastMCP Cursor installer via server_name
GHSA-rj5c-58rq-j5g5 CVE-2025-62801 MODERATE 28 days ago
### Summary A command-injection vulnerability lets any attacker who can influence the server_name field of an MCP execute arbitrary OS commands on ...
pypi
No PRs yet
FastMCP vulnerable to reflected XSS in client's callback page
GHSA-mxxr-jv3v-6pgc CVE-2025-62800 MODERATE 28 days ago
### Summary While setting up an oauth client, it was noticed that the callback page hosted by the client during the flow embeds user-controlled con...
pypi
No PRs yet
CKAN vulnerable to stored XSS in resource description
GHSA-2r4h-8jxv-w2j8 CVE-2025-54384 MODERATE 28 days ago
### Impact The `helpers.markdown_extract()` function did not perform sufficient sanitization of input data before wrapping in an HTML literal elem...
pypi
No PRs yet
Keras is vulnerable to arbitrary local file loading and Server-Side Request Forgery
GHSA-mq84-hjqx-cwf2 CVE-2025-12058 MODERATE 28 days ago
The Keras.Model.load_model method, including when executed with the intended security mitigation safe_mode=True, is vulnerable to arbitrary local f...
pypi
No PRs yet
BBOT's gitlab.py exposes globally configured "gitlab" API key
GHSA-p3v4-c93g-cmhw CVE-2025-10282 MODERATE 30 days ago
### Summary bbot's `gitlab.py` sends the user's "gitlab" API key to on-premise GitLab instances. If a user has configured a gitlab.com API key us...
pypi
No PRs yet
pypdf can exhaust RAM via manipulated LZWDecode streams
GHSA-jfx9-29x2-rv3j CVE-2025-62708 MODERATE about 1 month ago
### Impact An attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the content stream of ...
pypi
No PRs yet
pypdf possibly loops infinitely when reading DCT inline images without EOF marker
GHSA-vr63-x8vc-m265 CVE-2025-62707 MODERATE about 1 month ago
### Impact An attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires parsing the content stream of a ...
pypi
2
Dependabot PRs
Scapy Session Loading Vulnerable to Arbitrary Code Execution via Untrusted Pickle Deserialization
GHSA-cq46-m9x9-j8w2 MODERATE about 1 month ago
### Summary An unsafe deserialization vulnerability in Scapy <v2.7.0 allows attackers to execute arbitrary code **when a malicious session file is...
pypi
No PRs yet
Hugging Face Smolagents XPath injection vulnerability in the search_item_ctrl_f function
GHSA-8mf9-rmgw-33qc CVE-2025-11844 MODERATE about 1 month ago
Hugging Face Smolagents version 1.20.0 contains an XPath injection vulnerability in the search_item_ctrl_f function located in src/smolagents/visio...
pypi
No PRs yet
Nautobot Single Source of Truth (SSoT) has an unauthenticated ServiceNow configuration URL
GHSA-535g-62r7-cx6v CVE-2025-62607 MODERATE about 1 month ago
The servicenow config URL is using a generic django View with no authentication. URL: `/plugins/ssot/servicenow/config/` ### Impact _What kind of...
pypi
No PRs yet
Taguette vulnerable to cross-site scripting via tag name, tag description, document name and document description
GHSA-g9qw-g6rv-3889 CVE-2025-62528 MODERATE about 1 month ago
### Impact An issue has been discovered in Taguette versions prior to 1.5.0. It was possible for a project member to put JavaScript in name or desc...
pypi
No PRs yet
Mammoth is vulnerable to Directory Traversal
GHSA-rmjr-87wv-gf87 CVE-2025-11849 MODERATE about 1 month ago
Versions of the package mammoth from 0.3.25 and before 1.11.0; versions of the package mammoth from 0.3.25 and before 1.11.0; versions of the packa...
maven npm nuget +1 more
No PRs yet
Authlib : JWE zip=DEF decompression bomb enables DoS
GHSA-g7f3-828f-7h7m CVE-2025-62706 MODERATE about 2 months ago
### Summary _Authlib’s JWE `zip=DEF` path performs unbounded DEFLATE decompression. A very small ciphertext can expand into tens or hundreds of meg...
pypi
4
Dependabot PRs
python-ldap is Vulnerable to Improper Encoding or Escaping of Output and Improper Null Termination
GHSA-p34h-wq7j-h5v6 CVE-2025-61912 MODERATE about 2 months ago
### Summary `ldap.dn.escape_dn_chars()` escapes `\x00` incorrectly by emitting a backslash followed by a literal NUL byte instead of the RFC-4514...
pypi
No PRs yet
python-ldap has sanitization bypass in ldap.filter.escape_filter_chars
GHSA-r7r6-cc7p-4v5m CVE-2025-61911 MODERATE about 2 months ago
### Summary The sanitization method `ldap.filter.escape_filter_chars` can be tricked to skip escaping of special characters when a crafted `list` o...
pypi
No PRs yet
BBOT's git_clone.py can expose users' GitHub API keys to an attacker-controlled webserver
GHSA-63wh-p5fx-h4vc CVE-2025-10281 MODERATE about 2 months ago
### Summary Due to unsafe URL handling, bbot's `git_clone.py` can be made to leak a user's github.com API key to an attacker-controlled webserver....
pypi
No PRs yet
Python Social Auth - Django has unsafe account association
GHSA-wv4w-6qv2-qqfg CVE-2025-61783 MODERATE about 2 months ago
### Impact Upon authentication, the user could be associated by e-mail even if the `associate_by_email` pipeline was not included. This could lead...
pypi
4
Dependabot PRs
25%
Merged
Synapse's invalid device keys degrade federation functionality
GHSA-fh66-fcv5-jjfr CVE-2025-61672 MODERATE about 2 months ago
### Impact Lack of validation for device keys in Synapse before 1.138.3 and in Synapse 1.139.0 allow an attacker registered on the victim homeserv...
pypi
No PRs yet
vLLM: Resource-Exhaustion (DoS) through Malicious Jinja Template in OpenAI-Compatible Server
GHSA-6fvq-23cw-5628 CVE-2025-61620 MODERATE about 2 months ago
### Summary A resource-exhaustion (denial-of-service) vulnerability exists in multiple endpoints of the OpenAI-Compatible Server due to the abilit...
pypi
No PRs yet
python-socketio vulnerable to arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments
GHSA-g8c6-8fjj-2r4m CVE-2025-61765 MODERATE about 2 months ago
### Summary A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code thr...
pypi
No PRs yet
clearml is vulnerable to Path Traversal through its `safe_extract` function
GHSA-579p-qf78-fqm2 CVE-2025-8917 MODERATE about 2 months ago
A vulnerability in clearml versions before 2.0.2 allows for path traversal due to improper handling of symbolic and hard links in the `safe_extract...
pypi
No PRs yet
ZenML is vulnerable to Path Traversal through its `PathMaterializer` class
GHSA-q92x-2x5g-h365 CVE-2025-8406 MODERATE about 2 months ago
ZenML version 0.83.1 is affected by a path traversal vulnerability in the `PathMaterializer` class. The `load` function uses `is_path_within_direct...
pypi
No PRs yet
NiceGUI has a Reflected XSS
GHSA-8c95-hpq2-w46f CVE-2025-53354 MODERATE about 2 months ago
### Summary A Cross-Site Scripting (XSS) risk exists in NiceGUI when developers render unescaped user input into the DOM using `ui.html()`. Before...
pypi
No PRs yet
marimo vulnerable to proxy abuse of /mpl/{port}/
GHSA-xjv7-6w92-42r7 MODERATE about 2 months ago
### Summary The `/mpl/<port>/<route>` endpoint, which is accessible without authentication on default Marimo installations allows for external att...
pypi
No PRs yet
SPDK is vulnerable to buffer overflow in the NVMe-oF target component
GHSA-5m5w-w2h2-fqgq CVE-2025-57275 MODERATE about 2 months ago
Storage Performance Development Kit (SPDK) 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK - lib/nvmf.
pypi
No PRs yet
mkdocs-include-markdown-plugin susceptible to unvalidated input colliding with substitution placeholders
GHSA-v39m-5m9j-m9w9 CVE-2025-59940 MODERATE about 2 months ago
### Impact CWE-20: Improper Input Validation Low impact ### Patches Patched in v7.1.8 (commit https://github.com/mondeja/mkdocs-include-markdown-p...
pypi
No PRs yet
Apache Airflow: Connection sensitive details exposed to users with READ permissions
GHSA-q475-2pgm-7hvp CVE-2025-54831 MODERATE 2 months ago
Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to sensitive connec...
pypi
No PRs yet
ml-logger file handler allows reading arbitrary files
GHSA-9x36-c74v-fgr6 CVE-2025-10952 MODERATE 2 months ago
A security flaw has been discovered in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. Affected by this issue is the function stre...
pypi
No PRs yet
ml-logger has path traversal in the file argument
GHSA-8x9j-2p8r-7xc6 CVE-2025-10951 MODERATE 2 months ago
A vulnerability was identified in geyang ml-logger 0.10.36 and prior. Affected by this vulnerability is the function log_handler of the file ml_log...
pypi
No PRs yet
Llama Stack could potentially allow for remote code execution
GHSA-x75h-m6jj-6cj2 CVE-2025-55178 MODERATE 2 months ago
Llama Stack prior to version v0.2.20 accepted unverified parameters in the resolve_ast_by_type function which could potentially allow for remote co...
pypi
No PRs yet
pip's fallback tar extraction doesn't check symbolic links point to extraction directory
GHSA-4xh5-x5gv-qwph CVE-2025-8869 MODERATE 2 months ago
### Summary In the fallback extraction path for source distributions, `pip` used Python’s `tarfile` module without verifying that symbolic/hard li...
pypi
3
Dependabot PRs
Hugging Face Transformers vulnerable to Regular Expression Denial of Service (ReDoS) in the AdamWeightDecay optimizer
GHSA-4w7r-h757-3r74 CVE-2025-6921 MODERATE 2 months ago
The huggingface/transformers library, versions prior to 4.53.0, is vulnerable to Regular Expression Denial of Service (ReDoS) in the AdamWeightDeca...
pypi
No PRs yet
CodeChecker has a buffer overflow in the log command
GHSA-5xf2-f6ch-6p8r CVE-2025-40843 MODERATE 2 months ago
### Summary CodeChecker versions up to 6.26.1 contain a buffer overflow vulnerability in the internal `ldlogger` library, which is executed by the ...
pypi
No PRs yet