Latest version: v1.0.3
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| PVE-2021-26046 | 26046 |
Pylons 1.0.2 removes "Post Traceback" which was a possible XSS vector… |
|
HIDDEN | X.Y |
| PVE-2021-26045 | 26045 |
Pylons 1.0.1rc1 fixes signed cookies by using standard base64 alphabe… |
|
HIDDEN | X.Y |
| PVE-2021-26043 | 26043 |
Pylons before 0.9.7 is vulnerable to a XSS attack on the default erro… |
|
HIDDEN | X.Y |
| PVE-2021-26042 | 26042 |
pylons before 0.9.6.1 allows to access private controller methods to … |
|
- | - |