pkg:PyPI/scitokens

All known vulnerabilities

• CRITICAL9.8CVE-2026-32714SciTokens is vulnerable to SQL Injection in KeyCache
  from 0, < 1.9.6
• HIGH8.1CVE-2026-32727SciTokens has an Authorization Bypass via Path Traversal in Scope Validation
  from 0, < 1.9.7
• HIGH8.1CVE-2026-32716SciTokens has an Authorization Bypass via Incorrect Scope Path Prefix Checking
  from 0, < 1.9.6