Known Vulnerabilities for Requests by Python
Listed below are 6 of the newest known vulnerabilities associated with "Requests" by "Python".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56342 json | AVideo through version 27.0 contains a server-side request forgery vulnerability in plugin/Live/test.php that allows authenti... | Not Provided | 2026-06-20 | 2026-06-22 |
| CVE-2026-56341 json | AVideo through version 26.0 contains multiple unauthenticated list.json.php endpoints in payment plugins lacking authorizatio... | Not Provided | 2026-06-20 | 2026-06-20 |
| CVE-2026-56340 json | vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing. Because PyTorc... | Not Provided | 2026-06-20 | 2026-06-20 |
| CVE-2026-56299 json | Capgo before 12.128.2 contains an authentication bypass vulnerability in the /build/upload/:jobId/* endpoint that allows unau... | Not Provided | 2026-06-21 | 2026-06-21 |
| CVE-2026-56267 json | Flowise before 3.0.13 contains an information exposure vulnerability in the POST /api/v1/account/forgot-password endpoint tha... | Not Provided | 2026-06-20 | 2026-06-20 |
| CVE-2026-56227 json | Capgo before 12.128.2 contains a server-side request forgery vulnerability in webhook URL validation that allows loopback and... | Not Provided | 2026-06-20 | 2026-06-22 |
| CVE-2026-56076 json | PraisonAI before 1.5.128 contains a cross-origin agent execution vulnerability in the AGUI endpoint that allows remote attack... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-56073 json | Cap-go before 12.128.2 contains an authentication bypass vulnerability in OTP verification that allows attackers to bypass em... | Not Provided | 2026-06-19 | 2026-06-22 |
| CVE-2026-55205 json | Hermes WebUI before 0.51.468 contains a resource exhaustion vulnerability in the unauthenticated POST /api/onboarding/oauth/s... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-55202 json | Tinyproxy through 1.11.3, fixed in commit 09312a1, fails to properly validate the Host header during stathost detection, allo... | Not Provided | 2026-06-17 | 2026-06-17 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Python | Requests | 2.9.2 | |||
| Application | Python | Requests | 2.9.1 | |||
| Application | Python | Requests | 2.9.0 | |||
| Application | Python | Requests | 2.8.1 | |||
| Application | Python | Requests | 2.8.0 | |||
| Application | Python | Requests | 2.7.0 | |||
| Application | Python | Requests | 2.6.2 | |||
| Application | Python | Requests | 2.6.1 | |||
| Application | Python | Requests | 2.6.0 | |||
| Application | Python | Requests | 2.5.3 | |||
| Application | Python | Requests | 2.5.2 | |||
| Application | Python | Requests | 2.5.1 | |||
| Application | Python | Requests | 2.5.0 | |||
| Application | Python | Requests | 2.4.3 | |||
| Application | Python | Requests | 2.4.2 | |||
| Application | Python | Requests | 2.4.1 | |||
| Application | Python | Requests | 2.4.0 | |||
| Application | Python | Requests | 2.3.0 | |||
| Application | Python | Requests | 2.25.1 | |||
| Application | Python | Requests | 2.25.0 |