Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/radicale@0.4
purl pkg:pypi/radicale@0.4
Next non-vulnerable version 1.1.2
Latest non-vulnerable version 2.0.0rc2
Risk 4.5
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-dc6t-hc8j-sffz
Aliases:
CVE-2015-8747
GHSA-fgqv-96v9-w23m
PYSEC-2016-36
security update
1.1
Affected by 1 other vulnerability.
VCID-ehup-vwea-cba8
Aliases:
CVE-2017-8342
GHSA-rpv4-63g3-9x23
PYSEC-2017-102
Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method.
1.1.2
Affected by 0 other vulnerabilities.
2.0.0rc2
Affected by 0 other vulnerabilities.
VCID-mcq8-r31a-2fe6
Aliases:
CVE-2015-8748
GHSA-6w8c-6jrg-qwj2
PYSEC-2016-37
security update
1.1
Affected by 1 other vulnerability.
VCID-sp4h-kxqh-dqdd
Aliases:
CVE-2016-1505
GHSA-84cw-mxhv-qvv4
The filesystem storage backend in Radicale before 1.1 on Windows allows remote attackers to read or write to arbitrary files via a crafted path, as demonstrated by /c:/file/ignore.
1.1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-13T08:55:37.384001+00:00 GHSA Importer Affected by VCID-mcq8-r31a-2fe6 https://github.com/advisories/GHSA-6w8c-6jrg-qwj2 38.6.0
2026-06-13T08:55:37.123553+00:00 GHSA Importer Affected by VCID-dc6t-hc8j-sffz https://github.com/advisories/GHSA-fgqv-96v9-w23m 38.6.0
2026-06-12T18:14:07.782083+00:00 GitLab Importer Affected by VCID-dc6t-hc8j-sffz https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Radicale/CVE-2015-8747.yml 38.6.0
2026-06-12T18:13:25.237566+00:00 GitLab Importer Affected by VCID-mcq8-r31a-2fe6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Radicale/CVE-2015-8748.yml 38.6.0
2026-06-12T18:10:41.265063+00:00 GitLab Importer Affected by VCID-ehup-vwea-cba8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Radicale/CVE-2017-8342.yml 38.6.0
2026-06-12T16:49:29.883517+00:00 GitLab Importer Affected by VCID-sp4h-kxqh-dqdd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Radicale/CVE-2016-1505.yml 38.6.0
2026-06-12T04:01:51.525529+00:00 Pypa Importer Affected by VCID-ehup-vwea-cba8 https://github.com/pypa/advisory-database/blob/main/vulns/radicale/PYSEC-2017-102.yaml 38.6.0
2026-06-12T04:01:23.501659+00:00 Pypa Importer Affected by VCID-mcq8-r31a-2fe6 https://github.com/pypa/advisory-database/blob/main/vulns/radicale/PYSEC-2016-37.yaml 38.6.0
2026-06-12T04:01:23.407335+00:00 Pypa Importer Affected by VCID-dc6t-hc8j-sffz https://github.com/pypa/advisory-database/blob/main/vulns/radicale/PYSEC-2016-36.yaml 38.6.0
2026-06-11T20:42:48.458723+00:00 PyPI Importer Affected by VCID-mcq8-r31a-2fe6 https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.6.0
2026-06-11T20:42:48.332457+00:00 PyPI Importer Affected by VCID-dc6t-hc8j-sffz https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.6.0