Package impact
PyPI / compliance-trestle
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-46439 | unknown | — | — | 2d ago | compliance-trestle Vulnerable to Remote Code Execution via Recursive Server-Side Template Injection (SSTI) | |||
| CVE-2026-46380 | unknown | — | — | 2d ago | compliance-trestle Vulnerable to SSRF in Remote Fetching Subsystem | |||
| CVE-2026-46345 | unknown | — | — | 2d ago | compliance-trestle - jinja has an Arbitrary File Write via Path Traversal | |||
| CVE-2026-45774 | unknown | — | — | 2d ago | compliance-trestle Profile Import has an Arbitrary File Read via trestle:// URI and Relative Path Traversal |