VulnerableCode Package Details - pkg:pypi/rdiffweb@2.4.10

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/rdiffweb@2.4.10

Essentials
History (23)

purl	pkg:pypi/rdiffweb@2.4.10

Next non-vulnerable version	2.8.4
Latest non-vulnerable version	2.8.4
Risk

Vulnerabilities affecting this package (19)

Vulnerability	Summary	Fixed by
VCID-25yw-5nru-aygm Aliases: CVE-2022-4314 PYSEC-2022-43002	Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.	2.5.2 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-287j-23ju-9fhk Aliases: CVE-2022-4720 PYSEC-2022-43006	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-52wf-fheq-cuer Aliases: CVE-2023-5289 GHSA-c4rv-2j6x-pq7x PYSEC-2023-186	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.	2.8.4 Affected by 0 other vulnerabilities.
VCID-57wc-s2nn-cyeu Aliases: CVE-2022-4646 PYSEC-2022-43004	Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.	2.5.4 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-5xg7-u3nr-nkfg Aliases: CVE-2022-3362 PYSEC-2022-43000	Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-6zc1-xs64-1bc6 Aliases: CVE-2022-4724 PYSEC-2022-43010	Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-9f5c-ne9b-27fd Aliases: CVE-2022-4018 PYSEC-2022-43001	Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.	2.4.11a1 Affected by 16 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ep38-eu98-fbas Aliases: CVE-2022-4721 PYSEC-2022-43007	Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-fcym-y8c1-xqdq Aliases: CVE-2022-3457 PYSEC-2022-43161	Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-h6v3-24fq-3udw Aliases: CVE-2022-4723 PYSEC-2022-43009	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-n88y-9qre-n3bz Aliases: CVE-2022-3438 PYSEC-2022-43158	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ps4e-cg34-wyah Aliases: CVE-2022-3363 PYSEC-2022-42978	Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-qcsd-5htt-h3ev Aliases: CVE-2022-4722 PYSEC-2022-43008	Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-rynh-v7q5-6kdg Aliases: CVE-2022-3439 PYSEC-2022-43159	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-sn4z-f439-6qe7 Aliases: CVE-2022-3376 PYSEC-2022-43157	Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.	2.4.11a1 Affected by 16 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tv4c-g8r6-xbf6 Aliases: CVE-2022-4644 PYSEC-2022-43003	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.	2.5.4 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wyn5-w4qh-nfht Aliases: CVE-2022-4719 PYSEC-2022-43005	Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-yssm-eyx3-efhs Aliases: CVE-2022-3456 PYSEC-2022-43160	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zzjz-9wv2-vfcc Aliases: CVE-2022-3273 PYSEC-2022-43156	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.	2.4.11a1 Affected by 16 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (4)

Vulnerability	Summary	Aliases
VCID-fdqn-8pt3-2bfz	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.	CVE-2022-3371 PYSEC-2022-299
VCID-ffd3-kujb-f7fq	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.	CVE-2022-3364 PYSEC-2022-298
VCID-nbqy-kang-vfau	Path Traversal in GitHub repository ikus060/rdiffweb prior to 2.4.10.	CVE-2022-3389 PYSEC-2022-302
VCID-yz9x-nz9u-wybe	Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.	CVE-2022-3327 PYSEC-2022-42977

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:19:39.102725+00:00	Pypa Importer	Affected by	VCID-52wf-fheq-cuer	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2023-186.yaml	38.6.0
2026-06-02T04:18:12.846795+00:00	Pypa Importer	Affected by	VCID-ep38-eu98-fbas	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43007.yaml	38.6.0
2026-06-02T04:18:12.444619+00:00	Pypa Importer	Affected by	VCID-h6v3-24fq-3udw	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43009.yaml	38.6.0
2026-06-02T04:18:12.034534+00:00	Pypa Importer	Affected by	VCID-287j-23ju-9fhk	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43006.yaml	38.6.0
2026-06-02T04:18:11.624703+00:00	Pypa Importer	Affected by	VCID-wyn5-w4qh-nfht	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43005.yaml	38.6.0
2026-06-02T04:18:11.196922+00:00	Pypa Importer	Affected by	VCID-6zc1-xs64-1bc6	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43010.yaml	38.6.0
2026-06-02T04:18:10.771252+00:00	Pypa Importer	Affected by	VCID-qcsd-5htt-h3ev	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43008.yaml	38.6.0
2026-06-02T04:18:06.984524+00:00	Pypa Importer	Affected by	VCID-57wc-s2nn-cyeu	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43004.yaml	38.6.0
2026-06-02T04:18:06.577243+00:00	Pypa Importer	Affected by	VCID-tv4c-g8r6-xbf6	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43003.yaml	38.6.0
2026-06-02T04:18:05.153133+00:00	Pypa Importer	Affected by	VCID-25yw-5nru-aygm	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43002.yaml	38.6.0
2026-06-02T04:18:01.949790+00:00	Pypa Importer	Affected by	VCID-9f5c-ne9b-27fd	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43001.yaml	38.6.0
2026-06-02T04:18:01.006671+00:00	Pypa Importer	Affected by	VCID-5xg7-u3nr-nkfg	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43000.yaml	38.6.0
2026-06-02T04:17:56.969705+00:00	Pypa Importer	Affected by	VCID-ps4e-cg34-wyah	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-42978.yaml	38.6.0
2026-06-02T04:17:55.566593+00:00	Pypa Importer	Fixing	VCID-yz9x-nz9u-wybe	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-42977.yaml	38.6.0
2026-06-02T04:17:54.839083+00:00	Pypa Importer	Affected by	VCID-rynh-v7q5-6kdg	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43159.yaml	38.6.0
2026-06-02T04:17:54.454256+00:00	Pypa Importer	Affected by	VCID-fcym-y8c1-xqdq	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43161.yaml	38.6.0
2026-06-02T04:17:54.060186+00:00	Pypa Importer	Affected by	VCID-yssm-eyx3-efhs	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43160.yaml	38.6.0
2026-06-02T04:17:53.065100+00:00	Pypa Importer	Affected by	VCID-n88y-9qre-n3bz	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43158.yaml	38.6.0
2026-06-02T04:17:52.178397+00:00	Pypa Importer	Affected by	VCID-sn4z-f439-6qe7	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43157.yaml	38.6.0
2026-06-02T04:17:51.804433+00:00	Pypa Importer	Affected by	VCID-zzjz-9wv2-vfcc	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43156.yaml	38.6.0
2026-06-02T04:17:51.374927+00:00	Pypa Importer	Fixing	VCID-nbqy-kang-vfau	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-302.yaml	38.6.0
2026-06-02T04:17:50.471606+00:00	Pypa Importer	Fixing	VCID-fdqn-8pt3-2bfz	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-299.yaml	38.6.0
2026-06-02T04:17:50.448366+00:00	Pypa Importer	Fixing	VCID-ffd3-kujb-f7fq	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-298.yaml	38.6.0