VulnerableCode Package Details - pkg:pypi/trytond@7.6.11

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-bt9e-28y7-efh3	trytond allows remote attackers to obtain sensitive trace-back (server setup) information Tryton trytond before 7.6.11 allows remote attackers to obtain sensitive trace-back (server setup) information. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.	CVE-2025-66422 GHSA-jqfc-9q34-prhg
VCID-gcmg-p94p-ebes	trytond does not enforce access rights for the route of the HTML editor. Tryton trytond 6.0 before 7.6.11 does not enforce access rights for the route of the HTML editor. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.	CVE-2025-66423 GHSA-p3p5-xrmv-4j6x
VCID-zpha-95r9-ybca	trytond does not enforce access rights for data export Tryton trytond 6.0 before 7.6.11 does not enforce access rights for data export. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.	CVE-2025-66424 GHSA-2w93-qwpp-vgvj

Vulnerability

Summary

Aliases

VCID-bt9e-28y7-efh3

trytond allows remote attackers to obtain sensitive trace-back (server setup) information Tryton trytond before 7.6.11 allows remote attackers to obtain sensitive trace-back (server setup) information. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.

CVE-2025-66422
GHSA-jqfc-9q34-prhg

VCID-gcmg-p94p-ebes

trytond does not enforce access rights for the route of the HTML editor. Tryton trytond 6.0 before 7.6.11 does not enforce access rights for the route of the HTML editor. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.

CVE-2025-66423
GHSA-p3p5-xrmv-4j6x

VCID-zpha-95r9-ybca

trytond does not enforce access rights for data export Tryton trytond 6.0 before 7.6.11 does not enforce access rights for data export. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.

CVE-2025-66424
GHSA-2w93-qwpp-vgvj

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-31T11:02:37.194735+00:00	GithubOSV Importer	Fixing	VCID-bt9e-28y7-efh3	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/11/GHSA-jqfc-9q34-prhg/GHSA-jqfc-9q34-prhg.json	38.6.0
2026-05-31T11:02:33.517234+00:00	GithubOSV Importer	Fixing	VCID-gcmg-p94p-ebes	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/11/GHSA-p3p5-xrmv-4j6x/GHSA-p3p5-xrmv-4j6x.json	38.6.0
2026-05-31T11:02:30.433615+00:00	GithubOSV Importer	Fixing	VCID-zpha-95r9-ybca	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/11/GHSA-2w93-qwpp-vgvj/GHSA-2w93-qwpp-vgvj.json	38.6.0
2026-05-31T01:06:02.958344+00:00	GHSA Importer	Fixing	VCID-zpha-95r9-ybca	https://github.com/advisories/GHSA-2w93-qwpp-vgvj	38.6.0
2026-05-31T01:06:02.758617+00:00	GHSA Importer	Fixing	VCID-bt9e-28y7-efh3	https://github.com/advisories/GHSA-jqfc-9q34-prhg	38.6.0
2026-05-31T01:06:02.556321+00:00	GHSA Importer	Fixing	VCID-gcmg-p94p-ebes	https://github.com/advisories/GHSA-p3p5-xrmv-4j6x	38.6.0
2026-05-30T21:05:19.897909+00:00	GitLab Importer	Fixing	VCID-gcmg-p94p-ebes	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/trytond/CVE-2025-66423.yml	38.6.0
2026-05-30T21:05:19.614020+00:00	GitLab Importer	Fixing	VCID-bt9e-28y7-efh3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/trytond/CVE-2025-66422.yml	38.6.0
2026-05-30T21:05:19.387060+00:00	GitLab Importer	Fixing	VCID-zpha-95r9-ybca	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/trytond/CVE-2025-66424.yml	38.6.0