Vulnerabilities > Pypi

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2022-33004 Unspecified vulnerability in Pypi Beginner
The Beginner package in PyPI v0.0.2 to v0.0.4 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
critical
9.8
2022-06-24 CVE-2022-34053 Unspecified vulnerability in Pypi Dr-Web-Engine 0.2.0
The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
critical
9.8
2022-06-24 CVE-2022-34054 Unspecified vulnerability in Pypi Perdido
The Perdido package in PyPI v0.0.1 to v0.0.2 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
critical
9.8
2022-06-24 CVE-2022-34055 Unspecified vulnerability in Pypi Drxhello 0.0.1
The drxhello package in PyPI v0.0.1 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
critical
9.8
2022-06-24 CVE-2022-34056 Unspecified vulnerability in Pypi Watertools 0.0.0
The Watertools package in PyPI v0.0.0 was discovered to contain a code execution backdoor via the request package.
network
low complexity
pypi
critical
9.8
2020-07-22 CVE-2020-15904 Out-of-bounds Write vulnerability in Pypi Bsdiff4
A buffer overflow in the patching routine of bsdiff4 before 1.2.0 allows an attacker to write to heap memory (beyond allocated bounds) via a crafted patch file.
local
low complexity
pypi CWE-787
7.8