Lucene search
+L

8 matches found

Nuclei
Nuclei
added yesterday104 views

Python Flask-Security - Open Redirect

Python Flask-Security contains an open redirect vulnerability. Existing code validates that the URL specified in the next parameter is either relative or has the same network location as the requesting URL. Certain browsers accept and fill in the blanks of possibly incomplete or malformed URLs. A...

6.1CVSS6.6AI score0.03289EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-32618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Python Flask-Security-Too package is used for adding security features to your Flask application. It is an is an independently maintained version of...

6.1CVSS6.5AI score0.03289EPSS
Exploits0References2
Circl
Circl
added 2023/04/27 9:58 a.m.13 views

CVE-2021-32618

creationtimestamp| type| source ---|---|--- 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-32618.yaml...

6.1CVSS6.9AI score0.03289EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2021/05/18 10:38 a.m.8 views

faradaysec (>=3.14.1 <=3.14.4), flask-authoob (>=0.0.21 <=0.0.34) +4 more potentially affected by CVE-2021-32618 via flask-security-too (>=3.2.0rc1 <=4.0.1)

flask-security-too PYPI version =3.2.0rc1, =3.14.1, =0.0.21, =0.3.1, =4.22.0, =6.0.1, =6.0.0, =6.4.0 Source cves: CVE-2021-32618 Source advisory: SNYK:PYTHON-FLASKSECURITYTOO-1293190...

6.1CVSS6.5AI score0.03289EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/05/17 8:51 p.m.2 views

faradaysec (>=3.14.1 <=3.14.4), flask-authoob (>=0.0.21 <=0.0.34) +4 more potentially affected by CVE-2021-32618 via flask-security-too (>=3.2.0rc1 <=4.0.1)

flask-security-too PYPI version =3.2.0rc1, =3.14.1, =0.0.21, =0.3.1, =4.22.0, =6.0.1, =6.0.0, =6.4.0 Source cves: CVE-2021-32618 Source advisory: OSV:GHSA-6QMF-FJ6M-686C...

6.1CVSS6.5AI score0.03289EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/05/17 6:15 p.m.8 views

faradaysec (>=3.14.1 <=3.14.4), flask-authoob (>=0.0.21 <=0.0.34) +4 more potentially affected by CVE-2021-32618 via flask-security-too (>=3.2.0rc1 <=4.0.1)

flask-security-too PYPI version =3.2.0rc1, =3.14.1, =0.0.21, =0.3.1, =4.22.0, =6.0.1, =6.0.0, =6.4.0 Source cves: CVE-2021-32618 Source advisory: OSV:PYSEC-2021-123...

6.1CVSS6.5AI score0.03289EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/05/17 6:15 p.m.37 views

CVE-2021-32618

The Python "Flask-Security-Too" package is used for adding security features to your Flask application. It is an is an independently maintained version of Flask-Security based on the 3.0.0 version of Flask-Security. All versions of Flask-Security-Too allow redirects after many successful views e....

6.1CVSS6.5AI score0.03289EPSS
Exploits0References3
CVE
CVE
added 2021/05/17 6:5 p.m.111 views

CVE-2021-32618

CVE-2021-32618 – Open Redirect in Flask-Security-Too . The Flask extension Flask-Security-Too contains logic to validate the URL in the next parameter, attempting to allow only relative URLs or URLs with the same netloc. However, some browsers may transform incomplete URLs (for example next=\gith...

6.1CVSS5.4AI score0.03289EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder