Bounties
Partners
Community
Info
explosion / spacy
Project repository
💫 Industrial-strength Natural Language Processing (NLP) in Python
Submit a report
FIRST INTERACTION
WITHIN
10 DAYS
REVIEW
WITHIN
33 DAYS
FIX
WITHIN
N/A DAYS
The model downloading functionality in spaCy has a code execution vulnerability
Aug 13th 2024
mouchen626
•
informative
Critical
Two Reflected XSS with potential other attack vectors
Apr 1st 2024
maverickvn360
•
informative
Medium
Local Command Injection using cli module
Feb 22nd 2024
maverickvn360
•
self closed
Code injection in cli.download
Mar 5th 2024
mvlttt
•
informative
Medium
CRITICAL
$0
HIGH
$0
MEDIUM
$0
LOW
$0
