Pyramid

Latest version: v2.0.2

The latest version of pyramid with no known security vulnerabilities is 2.0.2. We recommend installing version 2.0.2.

The information on this page was curated by experts in our Cybersecurity Intelligence Team.

Latest release
v2.0.2 at Aug. 25, 2023
License
None

Description

The Pyramid Web Framework, a Pylons project

Resources

Vulnerabilities (9)

See all vulnerabilities
Affected versions:

>=2.0a0,<2.0.2

Pyramid 2.0.2 includes a fix for CVE-2023-40587: A path traver…
Affected versions:

<1.6a2

pyramid before 1.6a2 isn't sanitising JSONP callbacks correctl…
Affected versions:

<1.6a1

Pyramid 1.6a1 prevents timing attacks against CSRF tokens. ht…
Affected versions:

<1.6a1

Pyramid 1.6a1 prevents timing attacks in 'AuthTktCookieHelper'…
Affected versions:

<1.4a4

In pyramid 1.4a4 the ``pyramid.authentication.AuthTktAuthentic…
Affected versions:

<1.3a1

The AuthTktAuthenticationPolicy in pyramid before 1.3a1 did no…

Versions (151)

See all versions

Has known vulnerabilities

  • 2.0.2
  • 2.0.1
  • 2.0
  • 2.0b1
  • 2.0b0
  • 2.0a0
  • 1.10.8
  • 1.10.7
  • 1.10.6
  • 1.10.5
  • 1.10.4
  • 1.10.3
  • 1.10.2
  • 1.10.1
  • 1.10
  • 1.10b1
  • 1.10a1
  • 1.9.4
  • 1.9.3
  • 1.9.2