CVE-2006-0151
sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows li
sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows li
The administrative interface in django.contrib.admin in Django before 1.1.3, 1.2.x before 1.2.4, and
The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4,
mappy.py in Splunk Web in Splunk 4.2.x before 4.2.5 does not properly restrict use of the mappy comm
Multiple untrusted search path vulnerabilities in Red Hat Enterprise Virtualization Manager (RHEV-M)
The vds_installer in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, when adding a ho
Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows contex
LogonTracer 1.2.0 and earlier allows remote attackers to conduct Python code injection attacks via u
When Python was installed on Windows, a python file being served with the MIME type of text/plain co
There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range fu
In Django 1.11.x before 1.11.18, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, an Improper Neutraliza
CairoSVG is a Python (pypi) package. CairoSVG is an SVG converter based on Cairo. In CairoSVG before
The Python 'Flask-Security-Too' package is used for adding security features to your Flask applicati
Django CMS 3.7.3 does not validate the plugin_type parameter while generating error messages for an
An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAt
An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. Due to
Storage.save in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1 allows directory t
pipenv is a Python development workflow tool. Starting with version 2018.10.9 and prior to version 2
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones t
The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matche