3 matches found
PT-2024-16298 · Vince · Vince
Name of the Vulnerable Software and Affected Versions: VINCE versions prior to 3.0.9 Description: The issue allows exposure of user information to authenticated users. Recommendations: For versions prior to 3.0.9, update to version 3.0.9 or later to resolve the issue...
PT-2023-23506 · Teampass · Teampass
Name of the Vulnerable Software and Affected Versions: teampass versions prior to 3.0.9 Description: The issue is related to improper encoding or escaping of output in the GitHub repository nilsteampassnet/teampass. This may have led to stored cross-site scripting XSS vectors in the application d...
PT-2020-5746 · Flask +3 · Flask-Cors +3
Name of the Vulnerable Software and Affected Versions: Flask-CORS versions prior to 3.0.9 Description: The issue is related to incorrect path naming checks in the Flask-CORS extension for handling resource sharing between sources. This allows a remote attacker to access private resources by...