Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:54 p.m.9 views

CVE-2020-7965

flaskparser.py in Webargs 5.x through 5.5.2 doesn't check that the Content-Type header is application/json when receiving JSON input. If the request body is valid JSON, it will accept it even if the content type is application/x-www-form-urlencoded. This allows for JSON POST requests to be made...

8.8CVSS6.7AI score0.00488EPSS
Exploits0References1
OSV
OSV
added 2020/01/29 3:15 p.m.13 views

CVE-2020-7965

flaskparser.py in Webargs 5.x through 5.5.2 doesn't check that the Content-Type header is application/json when receiving JSON input. If the request body is valid JSON, it will accept it even if the content type is application/x-www-form-urlencoded. This allows for JSON POST requests to be made...

8.8CVSS8.6AI score
Exploits0References1
vulnersOsv
vulnersOsv
added 2020/01/29 3:15 p.m.6 views

aiowrpr (>=0.0.1a1 <=0.0.1a7), infiniguard-api (>=1.2.10 <=1.2.11) +5 more potentially affected by CVE-2020-7965 via webargs (>=5.1.1 <=5.5.2)

webargs PYPI version =5.1.1, =0.0.1a1, =1.2.10, =1.1.0b1, =0.3.0, =1.1.0, =0.100.3, =0.1.0, =0.10.0 Source cves: CVE-2020-7965 Source advisory: OSV:PYSEC-2020-156...

8.8CVSS7.2AI score0.00488EPSS
Exploits0
Cvelist
Cvelist
added 2020/01/29 2:33 p.m.34 views

CVE-2020-7965

flaskparser.py in Webargs 5.x through 5.5.2 doesn't check that the Content-Type header is application/json when receiving JSON input. If the request body is valid JSON, it will accept it even if the content type is application/x-www-form-urlencoded. This allows for JSON POST requests to be made...

8.7AI score0.00488EPSS
Exploits0References1
CVE
CVE
added 2020/01/29 2:33 p.m.72 views

CVE-2020-7965

The CVE-2020-7965 entry concerns the Python Webargs project (flaskparser.py) in the 5.x line up to 5.5.2. Vulnerability detail: the code does not validate that the Content-Type header is application/json when handling JSON input; if the request body is valid JSON, it is accepted even when Content...

8.8CVSS8.5AI score0.00488EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder