Latest version: v5.2.2
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2022-2309 | 50748 |
Lxml 4.9.1 includes a fix for CVE-2022-2309: NULL Pointer Dereference… |
|
HIGH | 7.5 |
| CVE-2021-43818 | 43366 |
Lxml 4.6.5 includes a fix for CVE-2021-43818: Prior to version 4.6.5,… |
|
HIGH | 7.1 |
| CVE-2021-28957 | 40072 |
Lxml version 4.6.3 includes a fix for CVE-2021-28957: An XSS vulnerab… |
|
MEDIUM | 6.1 |
| CVE-2020-27783 | 39194 |
Lxml 4.6.2 includes a fix for CVE-2020-27783: A XSS vulnerability was… |
|
MEDIUM | 6.1 |
| PVE-2021-39195 | 39195 |
In lxml before 4.4.0, when writing to file paths that contain the URL… |
|
HIDDEN | X.Y |
| CVE-2018-19787 | 50747 |
Lxml 4.2.5 includes a fix for CVE-2018-19787: lxml/html/clean.py in t… |
|
MEDIUM | 6.1 |
| CVE-2014-3146 | 35549 |
Incomplete blacklist vulnerability in the lxml.html.clean module in l… |
|
MEDIUM | 4.3 |
| PVE-2023-63015 | 63015 |
Lxml 2.3.4 fixes a crash due to race condition when errors (or user m… |
|
- | - |