VulnerableCode Package Details - pkg:pypi/rdiffweb@2.5.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/rdiffweb@2.5.0

Essentials
History (16)

purl	pkg:pypi/rdiffweb@2.5.0

Next non-vulnerable version	2.8.4
Latest non-vulnerable version	2.8.4
Risk

Vulnerabilities affecting this package (10)

Vulnerability	Summary	Fixed by
VCID-25yw-5nru-aygm Aliases: CVE-2022-4314 PYSEC-2022-43002	Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.	2.5.2 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-287j-23ju-9fhk Aliases: CVE-2022-4720 PYSEC-2022-43006	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-52wf-fheq-cuer Aliases: CVE-2023-5289 GHSA-c4rv-2j6x-pq7x PYSEC-2023-186	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.	2.8.4 Affected by 0 other vulnerabilities.
VCID-57wc-s2nn-cyeu Aliases: CVE-2022-4646 PYSEC-2022-43004	Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.	2.5.4 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-6zc1-xs64-1bc6 Aliases: CVE-2022-4724 PYSEC-2022-43010	Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-ep38-eu98-fbas Aliases: CVE-2022-4721 PYSEC-2022-43007	Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-h6v3-24fq-3udw Aliases: CVE-2022-4723 PYSEC-2022-43009	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-qcsd-5htt-h3ev Aliases: CVE-2022-4722 PYSEC-2022-43008	Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-tv4c-g8r6-xbf6 Aliases: CVE-2022-4644 PYSEC-2022-43003	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.	2.5.4 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wyn5-w4qh-nfht Aliases: CVE-2022-4719 PYSEC-2022-43005	Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.	2.5.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (6)

Vulnerability	Summary	Aliases
VCID-5xg7-u3nr-nkfg	Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.	CVE-2022-3362 PYSEC-2022-43000
VCID-fcym-y8c1-xqdq	Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.	CVE-2022-3457 PYSEC-2022-43161
VCID-n88y-9qre-n3bz	Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.	CVE-2022-3438 PYSEC-2022-43158
VCID-ps4e-cg34-wyah	Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.	CVE-2022-3363 PYSEC-2022-42978
VCID-rynh-v7q5-6kdg	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.	CVE-2022-3439 PYSEC-2022-43159
VCID-yssm-eyx3-efhs	Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.	CVE-2022-3456 PYSEC-2022-43160

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:19:39.126648+00:00	Pypa Importer	Affected by	VCID-52wf-fheq-cuer	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2023-186.yaml	38.6.0
2026-06-02T04:18:12.869966+00:00	Pypa Importer	Affected by	VCID-ep38-eu98-fbas	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43007.yaml	38.6.0
2026-06-02T04:18:12.468092+00:00	Pypa Importer	Affected by	VCID-h6v3-24fq-3udw	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43009.yaml	38.6.0
2026-06-02T04:18:12.057155+00:00	Pypa Importer	Affected by	VCID-287j-23ju-9fhk	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43006.yaml	38.6.0
2026-06-02T04:18:11.648640+00:00	Pypa Importer	Affected by	VCID-wyn5-w4qh-nfht	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43005.yaml	38.6.0
2026-06-02T04:18:11.220900+00:00	Pypa Importer	Affected by	VCID-6zc1-xs64-1bc6	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43010.yaml	38.6.0
2026-06-02T04:18:10.794413+00:00	Pypa Importer	Affected by	VCID-qcsd-5htt-h3ev	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43008.yaml	38.6.0
2026-06-02T04:18:07.007738+00:00	Pypa Importer	Affected by	VCID-57wc-s2nn-cyeu	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43004.yaml	38.6.0
2026-06-02T04:18:06.600185+00:00	Pypa Importer	Affected by	VCID-tv4c-g8r6-xbf6	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43003.yaml	38.6.0
2026-06-02T04:18:05.176479+00:00	Pypa Importer	Affected by	VCID-25yw-5nru-aygm	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43002.yaml	38.6.0
2026-06-02T04:18:01.029424+00:00	Pypa Importer	Fixing	VCID-5xg7-u3nr-nkfg	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43000.yaml	38.6.0
2026-06-02T04:17:56.993106+00:00	Pypa Importer	Fixing	VCID-ps4e-cg34-wyah	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-42978.yaml	38.6.0
2026-06-02T04:17:54.861810+00:00	Pypa Importer	Fixing	VCID-rynh-v7q5-6kdg	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43159.yaml	38.6.0
2026-06-02T04:17:54.477198+00:00	Pypa Importer	Fixing	VCID-fcym-y8c1-xqdq	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43161.yaml	38.6.0
2026-06-02T04:17:54.083435+00:00	Pypa Importer	Fixing	VCID-yssm-eyx3-efhs	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43160.yaml	38.6.0
2026-06-02T04:17:53.090902+00:00	Pypa Importer	Fixing	VCID-n88y-9qre-n3bz	https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43158.yaml	38.6.0