FLAT-JQUDZ (CVE-2026-7774)
Lack of data validation - Path Traversal In pypy3
4.6
Medium
Ecosystem: Debian
Package: pypy3
FLAT-5VNJS (CVE-2026-44393)
Use of insecure channel - Source code In python-oslo.messaging
8.2
High
Ecosystem: Debian
Package: python-oslo.messaging
FLAT-7XBQP (CVE-2026-44182)
OS Command Injection In jupyter_enterprise_gateway
9.1
Critical
Ecosystem: PyPI
Package: jupyter_enterprise_gateway
FLAT-ZQPVR (CVE-2026-44181)
Server side template injection In jupyter-enterprise-gateway
9.1
Critical
Ecosystem: PyPI
Package: jupyter-enterprise-gateway
FLAT-MD3C5 (CVE-2026-44180)
Lack of data validation In jupyter_enterprise_gateway
8.4
High
Ecosystem: PyPI
Package: jupyter_enterprise_gateway
FLAT-VPD8B (MAL-2026-5181)
Use of software with malware In tronlabpy3
5.2
Medium
Ecosystem: PyPI
Package: tronlabpy3
FLAT-DGQ94 (CVE-2026-6657)
Lack of data validation In jupyter-server
4.0
Medium
Ecosystem: Debian
Package: jupyter-server
FLAT-AKFPE (CVE-2026-3276)
Asymmetric denial of service - ReDoS In python3.9
1.7
Low
Ecosystem: Debian
Package: python3.9
FLAT-7GMF4 (CVE-2026-8404)
Cached form fields In python-django
0.6
Low
Ecosystem: Debian
Package: python-django
FLAT-F2Y2E (CVE-2026-7666)
Sensitive information sent insecurely In python-django
0.6
Low
Ecosystem: Debian
Package: python-django
FLAT-NFY6H (CVE-2026-6873)
Lack of data validation In python-django
0.6
Low
Ecosystem: Debian
Package: python-django
FLAT-OSIY1 (CVE-2026-48587)
Lack of data validation In python-django
0.6
Low
Ecosystem: Debian
Package: python-django
FLAT-0UI4C (CVE-2026-44546)
HTTP request smuggling In python-daphne
2.7
Low
Ecosystem: Debian
Package: python-daphne
FLAT-L3TSY (CVE-2026-44545)
Asymmetric denial of service In python-daphne
7.7
High
Ecosystem: Debian
Package: python-daphne
FLAT-ZA8WX (CVE-2026-35193)
Cached form fields In python-django
0.6
Low
Ecosystem: Debian
Package: python-django
FLAT-K99KH (CVE-2026-5422)
Lack of data validation - Path Traversal In jupyter-server
8.1
High
Ecosystem: Debian
Package: jupyter-server
FLAT-S75V2 (CVE-2026-8643)
Lack of data validation - Path Traversal In python-pip
0.6
Low
Ecosystem: Debian
Package: python-pip
FLAT-91B5A (CVE-2026-48523)
Lack of data validation In pyjwt
4.0
Medium
Ecosystem: Debian
Package: pyjwt
FLAT-9IXGV (CVE-2026-48526)
Insecure encryption algorithm In pyjwt
8.1
High
Ecosystem: Debian
Package: pyjwt
FLAT-CD41V (CVE-2026-48156)
Improper resource allocation In pypdf
1.2
Low
Ecosystem: Debian
Package: pypdf
FLAT-EN6XC (CVE-2026-48522)
Server-side request forgery (SSRF) In pyjwt
1.7
Low
Ecosystem: PyPI
Package: pyjwt
FLAT-J6OZT (CVE-2026-48524)
Asymmetric denial of service In pyjwt
1.7
Low
Ecosystem: Debian
Package: pyjwt
FLAT-NC79E (CVE-2026-48525)
Asymmetric denial of service In pyjwt
6.3
Medium
Ecosystem: PyPI
Package: pyjwt
FLAT-ZQAYZ (CVE-2026-48735)
Improper resource allocation In pypdf2
4.6
Medium
Ecosystem: Debian
Package: pypdf2
FLAT-M3JYU (CVE-2026-48155)
Improper resource allocation In pypdf2
1.1
Low
Ecosystem: Debian
Package: pypdf2
FLAT-O6GES (MAL-2026-5017)
Use of software with malware In @mlspace/env-jupyter-server
5.2
Medium
Ecosystem: Npm
Package: @mlspace/env-jupyter-server
FLAT-GATRM (CVE-2026-44681)
Server-side request forgery (SSRF) In python-authlib
0.5
Low
Ecosystem: Debian
Package: python-authlib
FLAT-NFN5F (CVE-2026-44724)
Remote command execution In jupyterlab
5.8
Medium
Ecosystem: Debian
Package: jupyterlab
FLAT-PXB45 (CVE-2026-44730)
Improper authorization control for web services In pycti
7.4
High
Ecosystem: PyPI
Package: pycti
FLAT-674VC (MAL-2026-4821)
Use of software with malware In pywingui
5.2
Medium
Ecosystem: PyPI
Package: pywingui
FLAT-GISAN (MAL-2026-4789)
Use of software with malware In ggk-happy
5.2
Medium
Ecosystem: Npm
Package: ggk-happy
FLAT-D02W8 (MAL-2026-4575)
Use of software with malware In happy-dlscord.js
5.2
Medium
Ecosystem: Npm
Package: happy-dlscord.js
FLAT-7RK8V (MAL-2026-4291)
Use of software with malware In pylogkt
5.2
Medium
Ecosystem: PyPI
Package: pylogkt
FLAT-A7G9V (MAL-2026-4270)
Use of software with malware In clickpy
5.2
Medium
Ecosystem: Npm
Package: clickpy
FLAT-1OCHT (CVE-2026-40864)
Cross-site request forgery In jupyterhub
1.3
Low
Ecosystem: Debian
Package: jupyterhub
FLAT-PXD6Q (MAL-2026-4658)
Use of software with malware In rapyd-client
5.2
Medium
Ecosystem: Npm
Package: rapyd-client
FLAT-1JUM3 (MAL-2026-4253)
Use of software with malware In pylogft
5.2
Medium
Ecosystem: PyPI
Package: pylogft
FLAT-M7UDL (MAL-2026-4246)
Use of software with malware In python-env-auditor
5.2
Medium
Ecosystem: Npm
Package: python-env-auditor
FLAT-U90VM (MAL-2026-4245)
Use of software with malware In pypi-build-verifier
5.2
Medium
Ecosystem: Npm
Package: pypi-build-verifier
FLAT-OG4MG (MAL-2026-4231)
Use of software with malware In pylogfmt
5.2
Medium
Ecosystem: PyPI
Package: pylogfmt
FLAT-KUKTX (MAL-2026-4755)
Use of software with malware In mathepy
5.2
Medium
Ecosystem: PyPI
Package: mathepy
FLAT-WBL96 (CVE-2026-46678)
Server-side request forgery (SSRF) In pydantic-ai
6.3
Medium
Ecosystem: PyPI
Package: pydantic-ai
FLAT-I51M1 (CVE-2026-46643)
Remote command execution In knplabs/knp-snappy
4.8
Medium
Ecosystem: Packagist
Package: knplabs/knp-snappy
FLAT-Z0BFL (CVE-2026-46683)
Server-side request forgery (SSRF) In knplabs/knp-snappy
2.7
Low
Ecosystem: Packagist
Package: knplabs/knp-snappy
FLAT-S6DL3 (CVE-2026-46561)
Server-side request forgery (SSRF) In pyload-ng
3.9
Low
Ecosystem: PyPI
Package: pyload-ng
FLAT-KRB9G (MAL-2026-4213)
Use of software with malware In polymarket-copy-trading
5.2
Medium
Ecosystem: Npm
Package: polymarket-copy-trading
FLAT-03KQN (MAL-2026-4772)
Use of software with malware In txdpy
5.2
Medium
Ecosystem: PyPI
Package: txdpy
FLAT-IPRBG (MAL-2026-4652)
Use of software with malware In python-utils
5.2
Medium
Ecosystem: Npm
Package: python-utils
FLAT-MZDH5 (MAL-2026-4764)
Use of software with malware In pycalendar-api
5.2
Medium
Ecosystem: PyPI
Package: pycalendar-api
FLAT-5V2TX (CVE-2026-46338)
Lack of data validation - Path Traversal In pymdown-extensions
2.4
Low
Ecosystem: PyPI
Package: pymdown-extensions
FLAT-P8HP9 (MAL-2026-3829)
Use of software with malware In pyenvprep
5.2
Medium
Ecosystem: PyPI
Package: pyenvprep
FLAT-654SV (GHSA-wf8q-wvv8-p8jf)
Spoofing In @samanhappy/mcphub
8.1
High
Ecosystem: Npm
Package: @samanhappy/mcphub
FLAT-E22QL (CVE-2026-45348)
Server side cross-site scripting In pyload-ng
5.9
Medium
Ecosystem: PyPI
Package: pyload-ng
FLAT-HQVFB (CVE-2026-45306)
Insecure object reference In pyload-ng
5.7
Medium
Ecosystem: PyPI
Package: pyload-ng
FLAT-S7VG7 (MAL-2026-3741)
Use of software with malware In pyexecutorsme
5.2
Medium
Ecosystem: PyPI
Package: pyexecutorsme
FLAT-SF3BT (CVE-2026-44722)
Inappropriate coding practices In pyzipper
0.5
Low
Ecosystem: PyPI
Package: pyzipper
FLAT-KYKF4 (CVE-2026-8328)
Use of insecure channel - Source code In python3.13
2.1
Low
Ecosystem: Debian
Package: python3.13
FLAT-ZBHW2 (CVE-2026-42561)
Inadequate file size control In python-multipart
7.7
High
Ecosystem: Debian
Package: python-multipart
FLAT-3A2MK (CVE-2026-44432)
Excessive privileges In python-urllib3
6.3
Medium
Ecosystem: Debian
Package: python-urllib3
FLAT-EUMUN (CVE-2026-44431)
Sensitive information sent insecurely In python-urllib3
4.6
Medium
Ecosystem: Debian
Package: python-urllib3
FLAT-DX0WM (CVE-2026-42557)
Reflected cross-site scripting (XSS) In jupyterlab
6.1
Medium
Ecosystem: Debian
Package: jupyterlab
FLAT-T311I (CVE-2026-42266)
Lack of data validation In jupyterlab
6.1
Medium
Ecosystem: Debian
Package: jupyterlab
FLAT-FN9CS (MAL-2026-3660)
Use of software with malware In numpy-lib
5.2
Medium
Ecosystem: PyPI
Package: numpy-lib
FLAT-GW7YS (MAL-2026-3662)
Use of software with malware In py-requests
5.2
Medium
Ecosystem: PyPI
Package: py-requests
FLAT-CYCZJ (CVE-2026-31221)
Insecure deserialization In pytorch-lightning
5.9
Medium
Ecosystem: PyPI
Package: pytorch-lightning
FLAT-FH432 (MAL-2026-3696)
Use of software with malware In projz-py
5.2
Medium
Ecosystem: PyPI
Package: projz-py
FLAT-6EKNW (MAL-2026-3584)
Use of software with malware In @uipath/uipath-python-bridge
5.2
Medium
Ecosystem: Npm
Package: @uipath/uipath-python-bridge
FLAT-4CCM2 (CVE-2026-7210)
Insecure encryption algorithm In python3.9
1.7
Low
Ecosystem: Debian
Package: python3.9
FLAT-PCHWM (CVE-2026-45017)
Lack of data validation - Path Traversal In python-liquid
4.6
Medium
Ecosystem: PyPI
Package: python-liquid
FLAT-CYXLR (MAL-2026-3411)
Use of software with malware In web3-py-checksum
5.2
Medium
Ecosystem: PyPI
Package: web3-py-checksum
FLAT-9ECSG (MAL-2026-3402)
Use of software with malware In python-bittensor-config-v2
5.2
Medium
Ecosystem: PyPI
Package: python-bittensor-config-v2
FLAT-WYVIU (GHSA-mv93-w799-cj2w)
Lack of data validation In gitpython
5.8
Medium
Ecosystem: PyPI
Package: gitpython
FLAT-770EC (MAL-2026-3387)
Use of software with malware In @gaia-codesearch/gaia-api-python
5.2
Medium
Ecosystem: Npm
Package: @gaia-codesearch/gaia-api-python
FLAT-C5DAR (MAL-2026-3390)
Use of software with malware In solana-py-sdk
5.2
Medium
Ecosystem: PyPI
Package: solana-py-sdk
FLAT-LQFWS (MAL-2026-3371)
Use of software with malware In pycacheopt
5.2
Medium
Ecosystem: PyPI
Package: pycacheopt
FLAT-01QM6 (CVE-2026-44243)
Lack of data validation - Path Traversal In python-git
6.8
Medium
Ecosystem: Debian
Package: python-git
FLAT-98ZVX (CVE-2026-44244)
Server side template injection In python-git
4.1
Medium
Ecosystem: Debian
Package: python-git
FLAT-FDBWI (CVE-2026-42284)
Insecure functionality In python-git
8.4
High
Ecosystem: Debian
Package: python-git
FLAT-QGUYO (CVE-2026-42215)
Remote command execution In python-git
8.4
High
Ecosystem: Debian
Package: python-git
FLAT-KEMPE (CVE-2026-44484)
Use of software with malware In pytorch-lightning
8.1
High
Ecosystem: PyPI
Package: pytorch-lightning
FLAT-VB0SW (CVE-2026-44368)
Lack of data validation - Path Traversal In pyquorum
2.7
Low
Ecosystem: PyPI
Package: pyquorum
FLAT-45AQA (MAL-2026-3356)
Use of software with malware In test-py-conn
5.2
Medium
Ecosystem: PyPI
Package: test-py-conn
FLAT-WCN2N (CVE-2026-40171)
Server side cross-site scripting In jupyter-notebook
5.7
Medium
Ecosystem: Debian
Package: jupyter-notebook
FLAT-3KHRA (CVE-2026-44226)
Technical information leak In pyload-ng
2.7
Low
Ecosystem: PyPI
Package: pyload-ng
FLAT-3WPK2 (CVE-2026-40934)
Session Fixation In jupyter-server
4.9
Medium
Ecosystem: Debian
Package: jupyter-server
FLAT-4UOG2 (CVE-2026-40110)
Server-side request forgery (SSRF) In jupyter-server
5.0
Medium
Ecosystem: Debian
Package: jupyter-server
FLAT-X1FG0 (CVE-2026-42997)
Weak credential policy In ironic-python-agent
5.6
Medium
Ecosystem: PyPI
Package: ironic-python-agent
FLAT-4VMLI (CVE-2026-42315)
Lack of data validation - Path Traversal In pyload-ng
4.3
Medium
Ecosystem: PyPI
Package: pyload-ng
FLAT-FYY0C (CVE-2026-42314)
Lack of data validation - Path Traversal In pyload-ng
4.3
Medium
Ecosystem: PyPI
Package: pyload-ng
FLAT-6V0GQ (CVE-2026-35397)
Lack of data validation - Path Traversal In jupyter-server
5.0
Medium
Ecosystem: Debian
Package: jupyter-server
FLAT-PBNJA (CVE-2026-27960)
Excessive privileges In pycti
8.9
High
Ecosystem: PyPI
Package: pycti
FLAT-8S9W0 (CVE-2025-61669)
Uncontrolled external site redirect In jupyter-server
2.0
Low
Ecosystem: PyPI
Package: jupyter-server
FLAT-1T25M (CVE-2026-42313)
Server-side request forgery (SSRF) In pyload-ng
6.1
Medium
Ecosystem: PyPI
Package: pyload-ng
FLAT-0DNPO (CVE-2026-42312)
Authentication mechanism absence or evasion In pyload-ng
5.9
Medium
Ecosystem: PyPI
Package: pyload-ng
FLAT-QO17A (CVE-2026-42301)
Lack of data validation In pyp2spec
5.8
Medium
Ecosystem: PyPI
Package: pyp2spec
FLAT-6AY7H (MAL-2026-3230)
Use of software with malware In currenttimerpy
5.2
Medium
Ecosystem: PyPI
Package: currenttimerpy
FLAT-Z5W6J (MAL-2026-3220)
Use of software with malware In py-clob-clients
5.2
Medium
Ecosystem: PyPI
Package: py-clob-clients
FLAT-N7A3P (MAL-2026-3219)
Use of software with malware In tns-py
5.2
Medium
Ecosystem: PyPI
Package: tns-py
FLAT-H8CFP (MAL-2026-3211)
Use of software with malware In pycryptcore
5.2
Medium
Ecosystem: PyPI
Package: pycryptcore
FLAT-RDDOK (CVE-2026-43003)
Lack of data validation In ironic-python-agent
5.8
Medium
Ecosystem: PyPI
Package: ironic-python-agent