VYPR

Requests

by Psf

pypi: requests

Source repositories

CVEs (5)

  • CVE-2024-35195MedMay 20, 2024
    risk 0.29cvss 5.6epss 0.00

    Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests `Session`, if the first request is made with `verify=False` to disable cert verification, all subsequent requests to the same host will continue to ignore cert verification regardless of changes…

  • CVE-2024-47081MedJun 9, 2025
    risk 0.28cvss 5.3epss 0.01

    Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the…

  • CVE-2024-1682MedNov 14, 2024
    risk 0.21cvss 4.3epss 0.00

    An unclaimed Amazon S3 bucket, 'codeconf', is referenced in an audio file link within the .rst documentation file. This bucket has been claimed by an external party. The use of this unclaimed S3 bucket could lead to data integrity issues, data leakage, availability problems,…

  • CVE-2026-25645Mar 25, 2026
    risk 0.00cvss epss 0.00

    Requests is a HTTP library. Prior to version 2.33.0, the `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without…

  • CVE-2023-32681May 26, 2023
    risk 0.00cvss epss 0.03

    Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when redirected to an HTTPS endpoint. This is a product of how we use `rebuild_proxies` to reattach the `Proxy-Authorization` header to requests. For…