VulnerableCode Package Details - pkg:pypi/authlib@1.6.10

Search for packages

Vulnerability	Summary	Fixed by
VCID-9fxn-u16u-n3f3 Aliases: CVE-2026-44681 GHSA-r95x-qfjj-fjj2 PYSEC-2026-188		1.6.12 Affected by 0 other vulnerabilities. 1.7.1 Affected by 0 other vulnerabilities.
VCID-sjwj-7mk7-mych Aliases: CVE-2026-41425 GHSA-jj8c-mmj3-mmgv PYSEC-2026-25		1.6.11 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-9fxn-u16u-n3f3
Aliases:
CVE-2026-44681
GHSA-r95x-qfjj-fjj2
PYSEC-2026-188

1.6.12
Affected by 0 other vulnerabilities.

1.7.1
Affected by 0 other vulnerabilities.

VCID-sjwj-7mk7-mych
Aliases:
CVE-2026-41425
GHSA-jj8c-mmj3-mmgv
PYSEC-2026-25

1.6.11
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
VCID-hh3r-cmmf-ufdt	Authlib OAuth 2.0 has Open Redirect in Authorization API that allows attacker-controlled redirect_uri through unsupported response_type	CVE-2026-41479 GHSA-w8p2-r796-3vmq

Vulnerability

Summary

Aliases

VCID-hh3r-cmmf-ufdt

Authlib OAuth 2.0 has Open Redirect in Authorization API that allows attacker-controlled redirect_uri through unsupported response_type

CVE-2026-41479
GHSA-w8p2-r796-3vmq

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-12T22:29:31.233229+00:00	GitLab Importer	Affected by	VCID-9fxn-u16u-n3f3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/authlib/CVE-2026-44681.yml	38.6.0
2026-06-12T22:08:47.950231+00:00	GitLab Importer	Affected by	VCID-sjwj-7mk7-mych	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/authlib/CVE-2026-41425.yml	38.6.0
2026-06-12T07:50:42.057819+00:00	GithubOSV Importer	Fixing	VCID-hh3r-cmmf-ufdt	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/06/GHSA-w8p2-r796-3vmq/GHSA-w8p2-r796-3vmq.json	38.6.0
2026-06-12T04:22:16.003110+00:00	Pypa Importer	Affected by	VCID-9fxn-u16u-n3f3	https://github.com/pypa/advisory-database/blob/main/vulns/authlib/PYSEC-2026-188.yaml	38.6.0
2026-06-12T04:21:50.696559+00:00	Pypa Importer	Affected by	VCID-sjwj-7mk7-mych	https://github.com/pypa/advisory-database/blob/main/vulns/authlib/PYSEC-2026-25.yaml	38.6.0
2026-06-11T21:06:31.766904+00:00	PyPI Importer	Affected by	VCID-9fxn-u16u-n3f3	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T21:06:03.018372+00:00	PyPI Importer	Affected by	VCID-sjwj-7mk7-mych	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:39:00.641801+00:00	GHSA Importer	Fixing	VCID-hh3r-cmmf-ufdt	https://github.com/advisories/GHSA-w8p2-r796-3vmq	38.6.0