pkg:PyPI/strawberry-graphql

8 total CVEsHIGH4MEDIUM2LOW2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-35526strawberry-graphql: Denial of Service via unbounded WebSocket subscriptions
    from 0, < 0.312.3
  • HIGH7.5CVE-2026-35526strawberry-graphql: Denial of Service via unbounded WebSocket subscriptions
    from 0, < 0.312.3
  • HIGH7.5CVE-2026-35523strawberry-graphql: Authentication bypass via legacy graphql-ws WebSocket subprotocol
    from 0, < 0.312.3
  • HIGH7.5CVE-2026-35523strawberry-graphql: Authentication bypass via legacy graphql-ws WebSocket subprotocol
    from 0, < 0.312.3
  • MEDIUM4.6CVE-2024-47082Cross-Site Request Forgery (CSRF) in strawberry-graphql
    from 0, < 0.243.0
  • MEDIUM4.6CVE-2024-47082Cross-Site Request Forgery (CSRF) in strawberry-graphql
    from 0, < 37265b230e511480a9ceace492f9f6a484be1387 | from 0, < 0.243.0
  • LOW3.7CVE-2025-22151Strawberry GraphQL has type resolution vulnerability in node interface that allows potential data leakage through incorrect type resolution
    >= 0.182.0, < 0.257.0
  • LOW3.1CVE-2026-45739Strawberry GraphQL: Default GraphiQL may expose HTTP headers in URLs
    >= 0.288.4, < 0.315.4