Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/sentry@8.2.2
purl pkg:pypi/sentry@8.2.2
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-engf-1mq7-1qcv Sentry 8.2.0 contains a remote code execution vulnerability that allows authenticated superusers to execute arbitrary commands by injecting malicious pickle-serialized objects through the audit log entry data parameter. Attackers can submit crafted POST requests to the admin audit log endpoint with base64-encoded compressed pickle payloads in the data field to achieve code execution with application privileges. CVE-2021-47935
GHSA-444r-2whx-3685
PYSEC-2026-131

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-13T06:30:08.728319+00:00 GHSA Importer Fixing VCID-engf-1mq7-1qcv https://github.com/advisories/GHSA-444r-2whx-3685 38.6.0
2026-06-12T22:25:22.196973+00:00 GitLab Importer Fixing VCID-engf-1mq7-1qcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/sentry/CVE-2021-47935.yml 38.6.0
2026-06-12T07:51:55.180432+00:00 GithubOSV Importer Fixing VCID-engf-1mq7-1qcv https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/05/GHSA-444r-2whx-3685/GHSA-444r-2whx-3685.json 38.6.0