Vulnerabilities | Fluid Attacks Database

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

3

Alpm, Debian, PyPI

Total vulnerabilities tracked

21

From global vulnerability databases

Exclude malware

NO

Package lxml

FLAT-32CVM (CVE-2026-41066)

XML injection (XXE) In lxml

7.7

High

Ecosystem: Debian

Package: lxml

FLAT-I06M7 (CVE-2020-27783)

Reflected cross-site scripting (XSS) In python-lxml

1.3

Low

Ecosystem: Alpm

Package: python-lxml

FLAT-CABPL (CVE-2021-28957)

Reflected cross-site scripting (XSS) In python-lxml

1.3

Low

Ecosystem: Alpm

Package: python-lxml

FLAT-A0X1U (CVE-2021-43818)

Reflected cross-site scripting (XSS) In python-lxml

1.3

Low

Ecosystem: Alpm

Package: python-lxml

FLAT-KHN89 (CVE-2026-28348)

OS Command Injection In lxml-html-clean

0.6

Low

Ecosystem: Debian

Package: lxml-html-clean

FLAT-88LXO (CVE-2026-28350)

OS Command Injection In lxml-html-clean

5.8

Medium

Ecosystem: Debian

Package: lxml-html-clean

FLAT-JRVEZ (CVE-2024-52595)

Reflected cross-site scripting (XSS) In lxml-html-clean

5.0

Medium

Ecosystem: Debian

Package: lxml-html-clean

FLAT-2UB1B (CVE-2022-2309)

Asymmetric denial of service In lxml

2.7

Low

Ecosystem: PyPI

Package: lxml

FLAT-07HOQ (CVE-2014-3146)

Reflected cross-site scripting (XSS) In lxml

1.3

Low

Ecosystem: PyPI

Package: lxml

FLAT-9PMI3 (CVE-2018-19787)

Reflected cross-site scripting (XSS) In lxml

1.3

Low

Ecosystem: PyPI

Package: lxml

FLAT-ZU6RZ (DSA-5043-1)

Lack of data validation - Path Traversal In lxml

1.3

Low

Ecosystem: Debian

Package: lxml

FLAT-ZNH9J (DLA-2871-1)

Lack of data validation - Path Traversal In lxml

2.7

Low

Ecosystem: Debian

Package: lxml

FLAT-VTUG6 (DSA-4880-1)

Lack of data validation - Path Traversal In lxml

2.7

Low

Ecosystem: Debian

Package: lxml

FLAT-Q94GW (DLA-2606-1)

Lack of data validation - Path Traversal In lxml

1.3

Low

Ecosystem: Debian

Package: lxml

FLAT-2OKY7 (DSA-4810-2)

Lack of data validation - Path Traversal In lxml

1.3

Low

Ecosystem: Debian

Package: lxml

FLAT-354GD (DLA-2467-2)

Lack of data validation In lxml

1.3

Low

Ecosystem: Debian

Package: lxml

FLAT-5F0MS (DSA-4810-1)

Lack of data validation - Path Traversal In lxml

1.3

Low

Ecosystem: Debian

Package: lxml

FLAT-29FQQ (DLA-2467-1)

Lack of data validation - Path Traversal In lxml

2.7

Low

Ecosystem: Debian

Package: lxml

FLAT-3CRRN (DLA-1604-1)

Lack of data validation - Path Traversal In lxml

1.3

Low

Ecosystem: Debian

Package: lxml

FLAT-WFEVL (DLA-0009-1)

Lack of data validation - Path Traversal In lxml

2.7

Low

Ecosystem: Debian

Package: lxml

FLAT-LPN04 (DSA-2941-1)

Lack of data validation - Path Traversal In lxml

1.3

Low

Ecosystem: Debian

Package: lxml