Package impact

PyPI / cairosvg

CVE	Severity	CVSS	Risk	Published	Description
CVE-2021-21236	low	—	2.5	6y ago	CairoSVG is a Python (pypi) package. CairoSVG is an SVG converter based on Cairo. In CairoSVG before version 2.5.1, there is a regular expression denial of service (REDoS) vulnerability. When process…
CVE-2026-31899	unknown	—	—	3mo ago	CairoSVG vulnerable to Exponential DoS via recursive <use> element amplification
CVE-2023-27586	unknown	—	—	3y ago	CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a special…