GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
6 advisories
try/except* clauses could allow bypass RestrictedPython via type confusion bug in the CPython interpreter
High
CVE-2025-22153
was published
for
RestrictedPython
(pip)
Jan 23, 2025
RestrictedPython information leakage via `AttributeError.obj` and the `string` module
High
CVE-2024-47532
was published
for
RestrictedPython
(pip)
Sep 30, 2024
Access control vulnerable to user data deletion by anonynmous users
Moderate
CVE-2024-51734
was published
for
AccessControl
(pip)
Nov 4, 2024
SQLAlchemyDA unauthenticated arbitrary SQL query execution
Critical
CVE-2024-24811
was published
for
Products.SQLAlchemyDA
(pip)
Feb 7, 2024
Zope management interface vulnerable to stored cross site scripting via the title property
Low
CVE-2023-44389
was published
for
Zope
(pip)
Oct 4, 2023
RestrictedPython vulnerable to arbitrary code execution via stack frame sandbox escape
High
CVE-2023-37271
was published
for
RestrictedPython
(pip)
Jul 10, 2023
ProTip!
Advisories are also available from the
GraphQL API