Use of Password Hash With Insufficient Computational Effort
packet.py uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack.
Advisories for Pypi/Pyrad package
2020
2009
Cross-site Scripting
pyrad is vulnerable to multiple XSS vulnerabilities.