VulnerableCode Package Details - pkg:pypi/nltk@3.4.5

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/nltk@3.4.5

Essentials
History (3)

purl	pkg:pypi/nltk@3.4.5

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-esfz-42mm-x3ad	NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in an NLTK package (ZIP archive) that is mishandled during extraction.	CVE-2019-14751 GHSA-mr7p-25v2-35wr PYSEC-2019-106

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-04T17:42:20.782442+00:00	GithubOSV Importer	Fixing	VCID-esfz-42mm-x3ad	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/08/GHSA-mr7p-25v2-35wr/GHSA-mr7p-25v2-35wr.json	38.6.0
2026-06-04T16:19:33.386986+00:00	GitLab Importer	Fixing	VCID-esfz-42mm-x3ad	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/nltk/CVE-2019-14751.yml	38.6.0
2026-06-02T04:05:49.903530+00:00	Pypa Importer	Fixing	VCID-esfz-42mm-x3ad	https://github.com/pypa/advisory-database/blob/main/vulns/nltk/PYSEC-2019-106.yaml	38.6.0