PyPI / trytond

trytond does not enforce access rights for data export

Modified: 12/2/2025

Tryton allows users to read the hashed password

Modified: 11/22/2024

Tryton Information Disclosure Vulnerability

Modified: 11/18/2024

trytond arbitrary fields write via a sequence of records

Modified: 11/29/2024

Improper Restriction of XML External Entity Reference in trytond and proteus

Modified: 11/21/2024

Trytond allows modification of privileges of arbitrary users

Modified: 11/18/2024

Tryton Improper Access Control

Modified: 11/18/2024

trytond Incorrect Authorization vulnerability

Modified: 11/18/2024

Tryton allow authenticated users with certain permissions to read arbitrary files via the name parameter

Modified: 11/22/2024

trytond allows remote attackers to obtain sensitive trace-back (server setup) information

Modified: 12/2/2025

Tryton vulnerable to arbitrary command execution

Modified: 11/18/2024

trytond does not enforce access rights for the route of the HTML editor.

Modified: 12/2/2025

XML Entity Expansion in trytond and proteus

Modified: 11/21/2024

Tryton Directory Traversal vulnerability

Modified: 11/18/2024

Modified: 1/12/2024

Modified: 4/29/2024

Modified: 11/21/2024

Modified: 11/21/2024

Modified: 4/22/2024

Modified: 6/8/2026

Modified: 11/8/2023

Modified: 4/29/2024