Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

litestar-org — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting litestar-org. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Litestar-org develops a Python web framework focused on building high-performance APIs and applications. Historically, its vulnerabilities have included remote code execution (RCE) through unsafe deserialization, cross-site scripting (XSS) from improper input validation, and privilege escalation via misconfigured authentication mechanisms. While no major public security incidents have been documented, the project maintains a moderate CVE count with 7 records to date. Security characteristics include regular security updates and a responsive disclosure process, though developers should remain vigilant about input handling and authentication implementations when using the framework in production environments.

Top products by litestar-org: litestar
CVE IDTitleCVSSSeverityPublished
CVE-2026-25480 FileStore key canonicalization collisions allow response cache mixup/poisoning (ASCII ord + Unicode NFKD) — litestarCWE-176 6.5 Medium2026-02-09
CVE-2026-25479 Litestar has an AllowedHosts validation bypass due to unescaped regex metacharacters in configured host patterns — litestarCWE-185 6.5 Medium2026-02-09
CVE-2026-25478 Litestar has a CORS origin allowlist bypass due to unescaped regex metacharacters in allowed origins — litestarCWE-942 7.4 High2026-02-09
CVE-2025-59152 X-Forwarded-For Header Spoofing Bypasses Litestar Rate Limiting — litestarCWE-807 7.5 High2025-10-06
CVE-2024-52581 Litestar allows unbounded resource consumption (DoS vulnerability) — litestarCWE-770 5.9AIMediumAI2024-11-20
CVE-2024-42370 Litestar repository vulnerable to Environment Variable injection in `docs-preview.yml` workflow — litestarCWE-78 8.3 High2024-08-09
CVE-2024-32982 Litestar and Starlite affected by Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') — litestarCWE-22 8.2 High2024-05-06

This page lists every published CVE security advisory associated with litestar-org. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.