Search for packages
| purl | pkg:pypi/uwsgi@2.0.11.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-yknv-cdfj-rbhj
Aliases: CVE-2018-7490 GHSA-h2vm-c85r-5vh5 PYSEC-2018-78 |
uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal. |
Affected by 1 other vulnerability. |
|
VCID-yu6g-bnxs-rfbt
Aliases: CVE-2023-27522 GHSA-vcph-37mh-fqrh |
HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-08-01T11:03:06.615543+00:00 | GitLab Importer | Affected by | VCID-yu6g-bnxs-rfbt | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/uWSGI/CVE-2023-27522.yml | 37.0.0 |
| 2025-08-01T10:26:49.340032+00:00 | GitLab Importer | Affected by | VCID-yknv-cdfj-rbhj | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/uWSGI/CVE-2018-7490.yml | 37.0.0 |
| 2025-08-01T08:33:41.254396+00:00 | PyPI Importer | Affected by | VCID-yknv-cdfj-rbhj | https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip | 37.0.0 |
| 2025-07-31T08:06:46.870422+00:00 | Pypa Importer | Affected by | VCID-yknv-cdfj-rbhj | https://github.com/pypa/advisory-database/blob/main/vulns/uwsgi/PYSEC-2018-78.yaml | 37.0.0 |