Lucene search
K

216 matches found

OSV
OSV
added 3 days ago4 views

PYSEC-2026-340 Flask-AppBuilder vulnerable to incorrect authentication when using auth type OpenID

Impact When Flask-AppBuilder is set to AUTHTYPE AUTHOID, allows an attacker to forge an HTTP request, that could deceive the backend into using any requested OpenID service. This vulnerability could grant an attacker unauthorised privilege access if a custom OpenID service is deployed by the...

9.1CVSS5.8AI score0.00857EPSS
Exploits0References6
OSV
OSV
added 2026/06/03 2:54 p.m.6 views

ROOT-APP-PYPI-CVE-2024-25128 CVE-2024-25128 in rootio-Flask-AppBuilder - Patched by Root

Root has patched CVE-2024-25128 in the rootio-Flask-AppBuilder package for Root:PyPI. Multiple fixed versions available...

9.1CVSS5.4AI score0.00857EPSS
Exploits0
OSV
OSV
added 2026/06/03 2:53 p.m.10 views

ROOT-APP-PYPI-CVE-2023-34110 CVE-2023-34110 in rootio-Flask-AppBuilder - Patched by Root

Root has patched CVE-2023-34110 in the rootio-Flask-AppBuilder package for Root:PyPI. Multiple fixed versions available...

2.7CVSS5.4AI score0.00676EPSS
Exploits0
OSV
OSV
added 2026/06/03 2:53 p.m.7 views

ROOT-APP-PYPI-CVE-2025-58065 CVE-2025-58065 in rootio-Flask-AppBuilder - Patched by Root

Root has patched CVE-2025-58065 in the rootio-Flask-AppBuilder package for Root:PyPI. Multiple fixed versions available...

6.5CVSS5.4AI score0.00376EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:47 a.m.10 views

CVE-2022-31177

Flask-AppBuilder is an application development framework built on top of Flask python framework. In versions prior to 4.1.3 an authenticated Admin user could query other users by their salted and hashed passwords strings. These filters could be made by using partial hashed password strings. The...

2.7CVSS6.5AI score0.00594EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-0082

Malware in sbrugna...

8.8CVSS8.5AI score0.0125EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2021-0083

Malware in sbrugna...

5.3CVSS5.2AI score0.03404EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.14 views

EUVD-2021-0081

Malware in sbrugna...

7.2CVSS6.4AI score0.00678EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-2784

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00262EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-1268

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00923EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2022-0103

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00953EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-0104

Malicious code in bioql PyPI...

2.7CVSS3.7AI score0.00594EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-0659

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.00857EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-28980

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00376EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-15450

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00191EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2024-0631

Malicious code in bioql PyPI...

6.1CVSS5.5AI score0.00567EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-1250

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00629EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-5564

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00304EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-0078

Malicious code in bioql PyPI...

2.7CVSS3.7AI score0.00676EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/09/13 6:26 p.m.13 views

CVE-2025-58065

Flask-AppBuilder is an application development framework. Prior to version 4.8.1, when Flask-AppBuilder is configured to use OAuth, LDAP, or other non-database authentication methods, the password reset endpoint remains registered and accessible, despite not being displayed in the user interface...

6.5CVSS7.2AI score0.00376EPSS
Exploits0References1
Rows per page
Query Builder