File tree Expand file tree Collapse file tree
advisories/github-reviewed Expand file tree Collapse file tree Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-f7qq-56ww-84cr" ,
4- "modified" : " 2025-09-18T12:51:26Z " ,
4+ "modified" : " 2026-06-06T14:43:04Z " ,
55 "published" : " 2025-09-10T17:15:33Z" ,
66 "aliases" : [
77 " CVE-2025-10157"
6767 "type" : " WEB" ,
6868 "url" : " https://github.com/mmaitre314/picklescan/blob/2a8383cfeb4158567f9770d86597300c9e508d0f/src/picklescan/scanner.py#L309"
6969 },
70+ {
71+ "type" : " WEB" ,
72+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/picklescan/PYSEC-2025-153.yaml"
73+ },
7074 {
7175 "type" : " WEB" ,
7276 "url" : " https://huggingface.co/iluem/linux_pkl/resolve/main/asyncio_asyncio_unix_events___UnixSubprocessTransport__start.pkl"
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-jgw4-cr84-mqxg" ,
4- "modified" : " 2025-09-18T12:51:22Z " ,
4+ "modified" : " 2026-06-06T14:44:23Z " ,
55 "published" : " 2025-09-10T19:51:37Z" ,
66 "aliases" : [
77 " CVE-2025-10155"
6262 {
6363 "type" : " WEB" ,
6464 "url" : " https://github.com/mmaitre314/picklescan/blob/58983e1c20973ac42f2df7ff15d7c8cd32f9b688/src/picklescan/scanner.py#L463"
65+ },
66+ {
67+ "type" : " WEB" ,
68+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/picklescan/PYSEC-2025-151.yaml"
6569 }
6670 ],
6771 "database_specific" : {
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-mjqp-26hc-grxg" ,
4- "modified" : " 2025-09-18T12:51:19Z " ,
4+ "modified" : " 2026-06-06T14:43:36Z " ,
55 "published" : " 2025-09-10T19:50:46Z" ,
66 "aliases" : [
77 " CVE-2025-10156"
6363 "type" : " WEB" ,
6464 "url" : " https://github.com/mmaitre314/picklescan/blob/v0.0.29/src/picklescan/relaxed_zipfile.py#L35"
6565 },
66+ {
67+ "type" : " WEB" ,
68+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/picklescan/PYSEC-2025-152.yaml"
69+ },
6670 {
6771 "type" : " WEB" ,
6872 "url" : " https://huggingface.co/jinaai/jina-embeddings-v2-base-en/resolve/main/pytorch_model.bin?download=true"
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-hx9q-6w63-j58v" ,
4- "modified" : " 2026-03-12T20:49:09Z " ,
4+ "modified" : " 2026-06-06T14:45:03Z " ,
55 "published" : " 2026-01-22T18:30:33Z" ,
66 "aliases" : [
77 " CVE-2025-67221"
5959 {
6060 "type" : " WEB" ,
6161 "url" : " https://github.com/kpatsakis/orjson_vulnerability"
62+ },
63+ {
64+ "type" : " WEB" ,
65+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/orjson/PYSEC-2026-107.yaml"
6266 }
6367 ],
6468 "database_specific" : {
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-7p94-766c-hgjp" ,
4- "modified" : " 2026-02-25T20:23:08Z " ,
4+ "modified" : " 2026-06-06T14:46:18Z " ,
55 "published" : " 2026-02-18T18:30:40Z" ,
66 "aliases" : [
77 " CVE-2025-14009"
5959 "type" : " WEB" ,
6060 "url" : " https://github.com/nltk/nltk/blob/4154eb85e832f266660a09286c7e37e308292284/ChangeLog#L1"
6161 },
62+ {
63+ "type" : " WEB" ,
64+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/nltk/PYSEC-2026-96.yaml"
65+ },
6266 {
6367 "type" : " WEB" ,
6468 "url" : " https://huntr.com/bounties/49ecbc02-054e-4470-b2e0-b267936cc4e4"
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-9ffm-fxg3-xrhh" ,
4- "modified" : " 2026-02-07T00:31:58Z " ,
4+ "modified" : " 2026-06-06T14:45:40Z " ,
55 "published" : " 2026-02-05T21:08:53Z" ,
66 "aliases" : [
77 " CVE-2026-25732"
4747 "type" : " ADVISORY" ,
4848 "url" : " https://nvd.nist.gov/vuln/detail/CVE-2026-25732"
4949 },
50+ {
51+ "type" : " WEB" ,
52+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/nicegui/PYSEC-2026-95.yaml"
53+ },
5054 {
5155 "type" : " PACKAGE" ,
5256 "url" : " https://github.com/zauberzeug/nicegui"
You can’t perform that action at this time.
0 commit comments