CVE-2026-10804
- EPSS 0.08%
- Veröffentlicht 04.06.2026 12:00:14
- Zuletzt bearbeitet 10.06.2026 17:47:27
A vulnerability has been found in Streamlit up to 1.53.0. Impacted is an unknown function in the library lib/streamlit/runtime/caching/hashing.py of the component Palette Handler. Such manipulation leads to use of weak hash. Local access is required ...
CVE-2026-33682
- EPSS 0.28%
- Veröffentlicht 26.03.2026 21:45:05
- Zuletzt bearbeitet 01.04.2026 13:28:47
Streamlit is a data oriented application development framework for python. Streamlit Open Source versions prior to 1.54.0 running on Windows hosts have an unauthenticated Server-Side Request Forgery (SSRF) vulnerability. The vulnerability arises from...
CVE-2024-42474
- EPSS 0.57%
- Veröffentlicht 12.08.2024 17:15:17
- Zuletzt bearbeitet 16.09.2024 14:30:13
Streamlit is a data oriented application development framework for python. Snowflake Streamlit open source addressed a security vulnerability via the static file sharing feature. Users of hosted Streamlit app(s) on Windows were vulnerable to a path t...
CVE-2023-27494
- EPSS 0.41%
- Veröffentlicht 16.03.2023 21:15:13
- Zuletzt bearbeitet 21.11.2024 07:53:01
Streamlit, software for turning data scripts into web applications, had a cross-site scripting (XSS) vulnerability in versions 0.63.0 through 0.80.0. Users of hosted Streamlit app(s) were vulnerable to a reflected XSS vulnerability. An attacker could...
CVE-2022-35918
- EPSS 1.32%
- Veröffentlicht 01.08.2022 22:15:10
- Zuletzt bearbeitet 21.11.2024 07:11:57
Streamlit is a data oriented application development framework for python. Users hosting Streamlit app(s) that use custom components are vulnerable to a directory traversal attack that could leak data from their web server file-system such as: server...