Vulnerabilities > Palletsprojects > Werkzeug > 0.15.6

DATE CVE VULNERABILITY TITLE RISK
2024-10-25 CVE-2024-49767 Unspecified vulnerability in Palletsprojects Werkzeug
Werkzeug is a Web Server Gateway Interface web application library.
network
low complexity
palletsprojects
7.5
2023-10-25 CVE-2023-46136 Out-of-bounds Write vulnerability in Palletsprojects Werkzeug
Werkzeug is a comprehensive WSGI web application library.
network
low complexity
palletsprojects CWE-787
7.5
2023-02-14 CVE-2023-23934 Unspecified vulnerability in Palletsprojects Werkzeug
Werkzeug is a comprehensive WSGI web application library.
low complexity
palletsprojects
3.5
2023-02-14 CVE-2023-25577 Unspecified vulnerability in Palletsprojects Werkzeug
Werkzeug is a comprehensive WSGI web application library.
network
low complexity
palletsprojects
7.5
2022-05-25 CVE-2022-29361 HTTP Request Smuggling vulnerability in Palletsprojects Werkzeug
Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below allows attackers to perform HTTP Request Smuggling using a crafted HTTP request with multiple requests included inside the body.
network
low complexity
palletsprojects CWE-444
critical
9.8