Workflow

Pyramid

Latest version: v2.0.2

The latest version of pyramid with no known security vulnerabilities is 2.0.2. We recommend installing version 2.0.2.

The information on this page was curated by experts in our Cybersecurity Intelligence Team.

Latest release
v2.0.2 at Aug. 25, 2023
License
None

Description

The Pyramid Web Framework, a Pylons project

Resources

Vulnerabilities (9)

See all vulnerabilities
CVE-2023-40587
Affected versions:

>=2.0a0,<2.0.2

Pyramid 2.0.2 includes a fix for CVE-2023-40587: A path traver…
CVE-2014-4671
Affected versions:

<1.6a2

pyramid before 1.6a2 isn't sanitising JSONP callbacks correctl…
PVE-2021-32203
Affected versions:

<1.6a1

Pyramid 1.6a1 prevents timing attacks in 'AuthTktCookieHelper'…
PVE-2022-48337
Affected versions:

<1.6a1

Pyramid 1.6a1 prevents timing attacks against CSRF tokens. ht…
PVE-2021-32201
Affected versions:

<1.4a4

In pyramid 1.4a4 the ``pyramid.authentication.AuthTktAuthentic…
PVE-2021-32688
Affected versions:

<1.3a1

The AuthTktAuthenticationPolicy in pyramid before 1.3a1 did no…

Versions (151)

See all versions

Has known vulnerabilities

  • 2.0.2
  • 2.0.1
  • 2.0
  • 2.0b1
  • 2.0b0
  • 2.0a0
  • 1.10.8
  • 1.10.7
  • 1.10.6
  • 1.10.5
  • 1.10.4
  • 1.10.3
  • 1.10.2
  • 1.10.1
  • 1.10
  • 1.10b1
  • 1.10a1
  • 1.9.4
  • 1.9.3
  • 1.9.2