Known Vulnerabilities for Werkzeug by Pallets
Listed below are 4 of the newest known vulnerabilities associated with "Werkzeug" by "Pallets".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-48544 json | Taipy 4.1.1, fixed in commit 129fd40, contains a path traversal vulnerability in the ElementLibrary.get_resource() method in ... | Not Provided | 2026-05-27 | 2026-05-28 |
| CVE-2026-40035 json | Unfurl through 2025.08 contains an improper input validation vulnerability in config parsing that enables Flask debug mode by... | Not Provided | 2026-04-08 | 2026-04-09 |
| CVE-2026-7041 json | A vulnerability was detected in 666ghj MiroFish up to 0.1.2. The impacted element is an unknown function of the file /console... | Not Provided | 2026-04-26 | 2026-04-27 |
| CVE-2023-46136 json | Werkzeug is a comprehensive WSGI web application library. In versions on the 3.x branch prior to 3.0.1 and on the 2.x branch ... | Not Provided | 2023-10-25 | 2026-05-20 |