encode
Security Risk Profile
40
/100
mediumSecurity Risk Score
Comprehensive risk assessment based on 9 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from July 27, 2020 to present
9
Total CVEs
6
Critical+High
0
Exploited
0
Unpatched
Threat Assessment
Avg CVSS
7
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
0
Critical/High
Risk Level
40/100
medium
📈 1 in Last 30 Days
Severity Distribution
Critical
1High
5Medium
3Low
0Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
1Age Distribution
Common Weaknesses (CWE)
1
XSS
2
2
Input Validation
2
3
Path Traversal
1
4
Command Injection
1
5
Code Injection
1
Most Affected Products
1. Encode Starlette python3
2. pip/starlette3
3. IBM Cloud Pak for Business Automation3
4. Encode Django Rest Framework2
5. Fastapiexpert Python-multipart Python2
Recent Vulnerabilities
See more →CVE-2026-48710
CVSS 6.5medium
Starlette has missing Host header validation that poisons request.url.path, bypassing path-based security checks
5/26/2026
REDHAT-BUG-2294457
CVSS 4.0medium
6/27/2024🔧 No Patch
CVE-2024-24762
CVSS 7.5EPSS 0%high
python-multipart vulnerable to content-type header Regular expression Denial of Service
2/5/2024
CVE-2023-29159
CVSS 7.5high
5/17/2023
CVE-2023-30798
CVSS 7.5high
MultipartParser DOS with too many fields or files in Starlette Framework
2/14/2023
CVE-2021-41945
CVSS 9.1critical
4/28/2022
CVE-2020-25626
CVSS 6.1medium
9/14/2020
CVE-2020-7695
CVSS 7.5high
HTTP Response Splitting
7/27/2020
CVE-2020-7694
CVSS 7.5high
Log Injection
7/27/2020
Monitor encode in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.