Known Vulnerabilities for products from Encode
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Encode".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-61876 json | Not Provided | 2026-07-12 | 2026-07-12 | |
| CVE-2026-56813 json | Not Provided | 2026-07-10 | 2026-07-10 | |
| CVE-2026-55746 json | Not Provided | 2026-06-18 | 2026-06-18 | |
| CVE-2026-54911 json | Not Provided | 2026-06-22 | 2026-06-23 | |
| CVE-2026-54283 json | Starlette is a lightweight ASGI framework/toolkit. From 0.4.1 until 1.3.1, request.form() accepts max_fields and max_part_siz... | Not Provided | 2026-06-22 | 2026-06-26 |
| CVE-2026-54282 json | Starlette is a lightweight ASGI framework/toolkit. Prior to 1.3.0, the HTTP request path is not validated before being used t... | Not Provided | 2026-06-22 | 2026-06-26 |
| CVE-2026-48818 json | Starlette is a lightweight ASGI framework/toolkit. In versions 1.0.1 and earlier, StaticFiles on Windows is vulnerable to SSR... | Not Provided | 2026-06-17 | 2026-06-30 |
| CVE-2026-48817 json | Starlette is a lightweight ASGI framework/toolkit. In versions 1.0.1 and below, when dispatching a request, HTTPEndpoint sele... | Not Provided | 2026-06-17 | 2026-06-26 |
| CVE-2026-48710 json | Starlette is a lightweight ASGI framework/toolkit. Prior to version 1.0.1, the HTTP `Host` request header was not validated b... | Not Provided | 2026-05-26 | 2026-07-10 |
| CVE-2026-47075 json | Not Provided | 2026-05-25 | 2026-05-27 | |
| CVE-2026-46363 json | Not Provided | 2026-05-15 | 2026-05-28 | |
| CVE-2026-46058 json | Not Provided | 2026-05-27 | 2026-06-14 | |
| CVE-2026-46011 json | Not Provided | 2026-05-27 | 2026-06-14 | |
| CVE-2026-45409 json | Not Provided | 2026-06-05 | 2026-06-08 | |
| CVE-2026-44905 json | Not Provided | 2026-05-26 | 2026-05-27 | |
| CVE-2023-30798 json | There MultipartParser usage in Encode's Starlette python framework before versions 0.25.0 allows an unauthenticated and remot... | 7.5 - HIGH | 2023-04-21 | 2023-04-28 |
| CVE-2023-29159 json | Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated ... | 7.5 - HIGH | 2023-06-01 | 2023-06-08 |
| CVE-2021-41945 json | Encode OSS httpx < 0.23.0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `h... | Not Provided | 2022-04-28 | 2026-07-09 |
| CVE-2020-25626 json | A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Dja... | 6.1 - MEDIUM | 2020-09-30 | 2023-11-07 |
| CVE-2020-7695 json | Uvicorn before 0.11.7 is vulnerable to HTTP response splitting. CRLF sequences are not escaped in the value of HTTP headers. ... | 5.3 - MEDIUM | 2020-07-27 | 2023-01-31 |
Known software with vulnerabilities from Encode
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Encode | Django Rest Framework | - |
| Application | Encode | Uvicorn | - |