Known Vulnerabilities for Requests by Python-requests
Listed below are 1 of the newest known vulnerabilities associated with "Requests" by "Python-requests".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-49754 json | Allocation of Resources Without Limits or Throttling vulnerability in elixir-mint Mint allows attacker-controlled HTTP/2 serv... | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2026-49753 json | Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in elixir-mint Mint allows att... | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2026-49491 json | Pixa Bank 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to extract sensitive data by inje... | Not Provided | 2026-06-01 | 2026-06-02 |
| CVE-2026-49490 json | OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid filter handling that allows authenticated at... | Not Provided | 2026-05-31 | 2026-06-01 |
| CVE-2026-49433 json | The DeepAI endpoint 'https://api.deepai.org/change_user_email' accepts POST requests without any CSRF protection. If an attac... | Not Provided | 2026-06-01 | 2026-06-01 |
| CVE-2026-49370 json | In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on fetchApp requests | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-49328 json | Server-Side Request Forgery (SSRF) in the UrlImageConverter component of Apache Fesod (Incubating) fesod-sheet before 2.0.2-i... | Not Provided | 2026-06-01 | 2026-06-01 |
| CVE-2026-49197 json | Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests ... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-49139 json | Nanobot prior to version 0.2.1 contains a server-side request forgery vulnerability in the Microsoft Teams channel handler th... | Not Provided | 2026-06-01 | 2026-06-01 |
| CVE-2026-49138 json | Nanobot prior to version 0.2.1 contains a server-side request forgery vulnerability in the web_fetch tool that allows remote ... | Not Provided | 2026-06-01 | 2026-06-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Python-requests | Requests | 2.9.2 | |||
| Application | Python-requests | Requests | 2.9.1 | |||
| Application | Python-requests | Requests | 2.9.0 | |||
| Application | Python-requests | Requests | 2.8.1 | |||
| Application | Python-requests | Requests | 2.8.0 | |||
| Application | Python-requests | Requests | 2.7.0 | |||
| Application | Python-requests | Requests | 2.6.2 | |||
| Application | Python-requests | Requests | 2.6.1 | |||
| Application | Python-requests | Requests | 2.6.0 | |||
| Application | Python-requests | Requests | 2.5.3 | |||
| Application | Python-requests | Requests | 2.5.2 | |||
| Application | Python-requests | Requests | 2.5.1 | |||
| Application | Python-requests | Requests | 2.5.0 | |||
| Application | Python-requests | Requests | 2.4.3 | |||
| Application | Python-requests | Requests | 2.4.2 | |||
| Application | Python-requests | Requests | 2.4.1 | |||
| Application | Python-requests | Requests | 2.4.0 | |||
| Application | Python-requests | Requests | 2.3.0 | |||
| Application | Python-requests | Requests | 2.22.0 | |||
| Application | Python-requests | Requests | 2.21.0 |