Browse all 12 CVE security advisories affecting Pylons. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Pylons is a Python web framework used for building web applications and APIs. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure default configurations. While no major public security incidents have been widely documented, the 12 recorded CVEs highlight consistent security concerns, particularly in versions prior to 1.0. Developers should implement strict input sanitization, update regularly, and follow secure coding practices to mitigate risks associated with this framework.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2014-125056 | Pylons horus services.py timing discrepancy — horusCWE-208 | 2.6 | Low | 2023-01-07 |
This page lists every published CVE security advisory associated with Pylons. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.