Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
PyPI/spotipy — 3 CVEs · VulnScope
pkg:PyPI/
spotipy
3 total CVEs
CRITICAL
1
MEDIUM
1
LOW
1
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
9.8
CVE-2025-27154
Spotipy's cache file, containing spotify auth token, is created with overly broad permissions
from 0, < 2.25.1
MEDIUM
5.4
CVE-2023-23608
Path traversal in spotipy
from 0, < 2.22.1
LOW
3.6
CVE-2025-66040
Spotipy has a XSS vulnerability in its OAuth callback server
from 0, < 2.25.2