VYPR

PyPI package

lupa

pkg:pypi/lupa

Vulnerabilities (1)

  • CVE-2026-34444CriApr 6, 2026
    affected <= 2.6

    Lupa integrates the runtimes of Lua or LuaJIT2 into CPython. In 2.6 and earlier, attribute_filter is not consistently applied when attributes are accessed through built-in functions like getattr and setattr. This allows an attacker to bypass the intended restrictions and eventual