CVE-2026-33682
- EPSS 0.04%
- Veröffentlicht 26.03.2026 21:45:05
- Zuletzt bearbeitet 01.04.2026 13:28:47
Streamlit is a data oriented application development framework for python. Streamlit Open Source versions prior to 1.54.0 running on Windows hosts have an unauthenticated Server-Side Request Forgery (SSRF) vulnerability. The vulnerability arises from...
CVE-2024-42474
- EPSS 1.65%
- Veröffentlicht 12.08.2024 17:15:17
- Zuletzt bearbeitet 16.09.2024 14:30:13
Streamlit is a data oriented application development framework for python. Snowflake Streamlit open source addressed a security vulnerability via the static file sharing feature. Users of hosted Streamlit app(s) on Windows were vulnerable to a path t...
CVE-2023-27494
- EPSS 0.7%
- Veröffentlicht 16.03.2023 21:15:13
- Zuletzt bearbeitet 21.11.2024 07:53:01
Streamlit, software for turning data scripts into web applications, had a cross-site scripting (XSS) vulnerability in versions 0.63.0 through 0.80.0. Users of hosted Streamlit app(s) were vulnerable to a reflected XSS vulnerability. An attacker could...
CVE-2022-35918
- EPSS 1.4%
- Veröffentlicht 01.08.2022 22:15:10
- Zuletzt bearbeitet 21.11.2024 07:11:57
Streamlit is a data oriented application development framework for python. Users hosting Streamlit app(s) that use custom components are vulnerable to a directory traversal attack that could leak data from their web server file-system such as: server...