VulnerableCode Package Details - pkg:pypi/rdiffweb@2.4.8

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/rdiffweb@2.4.8

Essentials
History (26)

purl	pkg:pypi/rdiffweb@2.4.8

Next non-vulnerable version	2.8.4
Latest non-vulnerable version	2.8.4
Risk

Vulnerabilities affecting this package (20)

Vulnerability	Summary	Fixed by
VCID-25yw-5nru-aygm Aliases: CVE-2022-4314 PYSEC-2022-43002	Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.	2.5.2 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-287j-23ju-9fhk Aliases: CVE-2022-4720 PYSEC-2022-43006	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-52wf-fheq-cuer Aliases: CVE-2023-5289 GHSA-c4rv-2j6x-pq7x PYSEC-2023-186	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.	2.8.4 Affected by 0 other vulnerabilities.
VCID-57wc-s2nn-cyeu Aliases: CVE-2022-4646 PYSEC-2022-43004	Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.	2.5.4 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-5xg7-u3nr-nkfg Aliases: CVE-2022-3362 PYSEC-2022-43000	Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-6zc1-xs64-1bc6 Aliases: CVE-2022-4724 PYSEC-2022-43010	Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-9f5c-ne9b-27fd Aliases: CVE-2022-4018 PYSEC-2022-43001	Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.	2.4.11a1 Affected by 16 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ep38-eu98-fbas Aliases: CVE-2022-4721 PYSEC-2022-43007	Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-fcym-y8c1-xqdq Aliases: CVE-2022-3457 PYSEC-2022-43161	Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-h6v3-24fq-3udw Aliases: CVE-2022-4723 PYSEC-2022-43009	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-n88y-9qre-n3bz Aliases: CVE-2022-3438 PYSEC-2022-43158	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ps4e-cg34-wyah Aliases: CVE-2022-3363 PYSEC-2022-42978	Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-qcsd-5htt-h3ev Aliases: CVE-2022-4722 PYSEC-2022-43008	Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-rynh-v7q5-6kdg Aliases: CVE-2022-3439 PYSEC-2022-43159	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-sn4z-f439-6qe7 Aliases: CVE-2022-3376 PYSEC-2022-43157	Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.	2.4.11a1 Affected by 16 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tv4c-g8r6-xbf6 Aliases: CVE-2022-4644 PYSEC-2022-43003	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.	2.5.4 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wyn5-w4qh-nfht Aliases: CVE-2022-4719 PYSEC-2022-43005	Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-yssm-eyx3-efhs Aliases: CVE-2022-3456 PYSEC-2022-43160	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.	2.5.0 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yz9x-nz9u-wybe Aliases: CVE-2022-3327 PYSEC-2022-42977	Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.	2.4.10 Affected by 19 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zzjz-9wv2-vfcc Aliases: CVE-2022-3273 PYSEC-2022-43156	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.	2.4.11a1 Affected by 16 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (6)

Vulnerability	Summary	Aliases
VCID-29xz-5wxu-ybed	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.4.8.	CVE-2022-3298 PYSEC-2022-294
VCID-dpbu-gy6u-abd3	Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8.	CVE-2022-3272 PYSEC-2022-291
VCID-jy4h-rrhr-83ah	Use of Cache Containing Sensitive Information in GitHub repository ikus060/rdiffweb prior to 2.4.8.	CVE-2022-3292 PYSEC-2022-296
VCID-mr71-9e9c-zbda	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.4.8.	CVE-2022-3295 PYSEC-2022-293
VCID-nc4e-1muy-1kd7	Improper Cleanup on Thrown Exception in GitHub repository ikus060/rdiffweb prior to 2.4.8.	CVE-2022-3301 PYSEC-2022-295
VCID-vmrb-sm2h-hqf1	Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8.	CVE-2022-3290 PYSEC-2022-292 PYSEC-2022-43184

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:19:39.094275+00:00	Pypa Importer	Affected by	VCID-52wf-fheq-cuer	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2023-186.yaml	38.6.0
2026-06-02T04:18:12.838845+00:00	Pypa Importer	Affected by	VCID-ep38-eu98-fbas	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43007.yaml	38.6.0
2026-06-02T04:18:12.436968+00:00	Pypa Importer	Affected by	VCID-h6v3-24fq-3udw	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43009.yaml	38.6.0
2026-06-02T04:18:12.027177+00:00	Pypa Importer	Affected by	VCID-287j-23ju-9fhk	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43006.yaml	38.6.0
2026-06-02T04:18:11.616770+00:00	Pypa Importer	Affected by	VCID-wyn5-w4qh-nfht	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43005.yaml	38.6.0
2026-06-02T04:18:11.188636+00:00	Pypa Importer	Affected by	VCID-6zc1-xs64-1bc6	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43010.yaml	38.6.0
2026-06-02T04:18:10.763187+00:00	Pypa Importer	Affected by	VCID-qcsd-5htt-h3ev	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43008.yaml	38.6.0
2026-06-02T04:18:06.976699+00:00	Pypa Importer	Affected by	VCID-57wc-s2nn-cyeu	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43004.yaml	38.6.0
2026-06-02T04:18:06.569310+00:00	Pypa Importer	Affected by	VCID-tv4c-g8r6-xbf6	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43003.yaml	38.6.0
2026-06-02T04:18:05.145429+00:00	Pypa Importer	Affected by	VCID-25yw-5nru-aygm	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43002.yaml	38.6.0
2026-06-02T04:18:01.941262+00:00	Pypa Importer	Affected by	VCID-9f5c-ne9b-27fd	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43001.yaml	38.6.0
2026-06-02T04:18:00.999010+00:00	Pypa Importer	Affected by	VCID-5xg7-u3nr-nkfg	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43000.yaml	38.6.0
2026-06-02T04:17:56.961763+00:00	Pypa Importer	Affected by	VCID-ps4e-cg34-wyah	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-42978.yaml	38.6.0
2026-06-02T04:17:55.559006+00:00	Pypa Importer	Affected by	VCID-yz9x-nz9u-wybe	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-42977.yaml	38.6.0
2026-06-02T04:17:54.831417+00:00	Pypa Importer	Affected by	VCID-rynh-v7q5-6kdg	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43159.yaml	38.6.0
2026-06-02T04:17:54.446473+00:00	Pypa Importer	Affected by	VCID-fcym-y8c1-xqdq	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43161.yaml	38.6.0
2026-06-02T04:17:54.052368+00:00	Pypa Importer	Affected by	VCID-yssm-eyx3-efhs	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43160.yaml	38.6.0
2026-06-02T04:17:53.057787+00:00	Pypa Importer	Affected by	VCID-n88y-9qre-n3bz	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43158.yaml	38.6.0
2026-06-02T04:17:52.170858+00:00	Pypa Importer	Affected by	VCID-sn4z-f439-6qe7	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43157.yaml	38.6.0
2026-06-02T04:17:51.796570+00:00	Pypa Importer	Affected by	VCID-zzjz-9wv2-vfcc	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43156.yaml	38.6.0
2026-06-02T04:17:50.398507+00:00	Pypa Importer	Fixing	VCID-jy4h-rrhr-83ah	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-296.yaml	38.6.0
2026-06-02T04:17:50.372120+00:00	Pypa Importer	Fixing	VCID-29xz-5wxu-ybed	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-294.yaml	38.6.0
2026-06-02T04:17:50.004953+00:00	Pypa Importer	Fixing	VCID-vmrb-sm2h-hqf1	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-292.yaml	38.6.0
2026-06-02T04:17:49.659616+00:00	Pypa Importer	Fixing	VCID-dpbu-gy6u-abd3	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-291.yaml	38.6.0
2026-06-02T04:17:49.310303+00:00	Pypa Importer	Fixing	VCID-mr71-9e9c-zbda	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-293.yaml	38.6.0
2026-06-02T04:17:48.956023+00:00	Pypa Importer	Fixing	VCID-nc4e-1muy-1kd7	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-295.yaml	38.6.0