Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/rdiffweb@2.5.4
purl pkg:pypi/rdiffweb@2.5.4
Next non-vulnerable version 2.8.4
Latest non-vulnerable version 2.8.4
Risk
Vulnerabilities affecting this package (7)
Vulnerability Summary Fixed by
VCID-287j-23ju-9fhk
Aliases:
CVE-2022-4720
PYSEC-2022-43006
Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.
2.5.5
Affected by 1 other vulnerability.
VCID-52wf-fheq-cuer
Aliases:
CVE-2023-5289
GHSA-c4rv-2j6x-pq7x
PYSEC-2023-186
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.
2.8.4
Affected by 0 other vulnerabilities.
VCID-6zc1-xs64-1bc6
Aliases:
CVE-2022-4724
PYSEC-2022-43010
Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.
2.5.5
Affected by 1 other vulnerability.
VCID-ep38-eu98-fbas
Aliases:
CVE-2022-4721
PYSEC-2022-43007
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.
2.5.5
Affected by 1 other vulnerability.
VCID-h6v3-24fq-3udw
Aliases:
CVE-2022-4723
PYSEC-2022-43009
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.
2.5.5
Affected by 1 other vulnerability.
VCID-qcsd-5htt-h3ev
Aliases:
CVE-2022-4722
PYSEC-2022-43008
Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.
2.5.5
Affected by 1 other vulnerability.
VCID-wyn5-w4qh-nfht
Aliases:
CVE-2022-4719
PYSEC-2022-43005
Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.
2.5.5
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-57wc-s2nn-cyeu Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4. CVE-2022-4646
PYSEC-2022-43004
VCID-tv4c-g8r6-xbf6 Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4. CVE-2022-4644
PYSEC-2022-43003

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-02T04:19:39.146693+00:00 Pypa Importer Affected by VCID-52wf-fheq-cuer https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2023-186.yaml 38.6.0
2026-06-02T04:18:12.888487+00:00 Pypa Importer Affected by VCID-ep38-eu98-fbas https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43007.yaml 38.6.0
2026-06-02T04:18:12.487602+00:00 Pypa Importer Affected by VCID-h6v3-24fq-3udw https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43009.yaml 38.6.0
2026-06-02T04:18:12.075782+00:00 Pypa Importer Affected by VCID-287j-23ju-9fhk https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43006.yaml 38.6.0
2026-06-02T04:18:11.668036+00:00 Pypa Importer Affected by VCID-wyn5-w4qh-nfht https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43005.yaml 38.6.0
2026-06-02T04:18:11.240270+00:00 Pypa Importer Affected by VCID-6zc1-xs64-1bc6 https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43010.yaml 38.6.0
2026-06-02T04:18:10.814146+00:00 Pypa Importer Affected by VCID-qcsd-5htt-h3ev https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43008.yaml 38.6.0
2026-06-02T04:18:07.027204+00:00 Pypa Importer Fixing VCID-57wc-s2nn-cyeu https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43004.yaml 38.6.0
2026-06-02T04:18:06.621657+00:00 Pypa Importer Fixing VCID-tv4c-g8r6-xbf6 https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43003.yaml 38.6.0