Lucene search
K

2427 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/27 12:0 a.m.7 views

Fedora 44 : python-flask-httpauth (2026-fd53570465)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-fd53570465 advisory. Update to version 4.8.1 2454342 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

8.2CVSS5.8AI score0.00324EPSS
Exploits0References2
NVD
NVD
added 2026/04/25 11:16 a.m.10 views

CVE-2026-6977

A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The affected element is an unknown function of the component Legacy Flask API. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and ma...

7.5CVSS0.00278EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/25 10:15 a.m.4 views

CVE-2026-6977

A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The affected element is an unknown function of the component Legacy Flask API. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and ma...

7.5CVSS6.9AI score0.00278EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/25 10:15 a.m.42 views

CVE-2026-6977 vanna-ai vanna Legacy Flask API improper authorization

A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The affected element is an unknown function of the component Legacy Flask API. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and ma...

7.5CVSS0.00278EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/25 10:15 a.m.8 views

EUVD-2026-25653

A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The affected element is an unknown function of the component Legacy Flask API. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and ma...

7.5CVSS6.9AI score0.00278EPSS
Exploits0References4
CVE
CVE
added 2026/04/25 10:15 a.m.33 views

CVE-2026-6977

CVE-2026-6977 affects vanna-ai vanna up to 2.0.2, arising from an unknown function in the Legacy Flask API that leads to improper authorization. The vulnerability is exploitable remotely and has been disclosed publicly; exploitation status is indicated as a public disclosure with potential use. T...

7.5CVSS7AI score0.00278EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/25 10:15 a.m.7 views

CVE-2026-6977 vanna-ai vanna Legacy Flask API improper authorization

A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The affected element is an unknown function of the component Legacy Flask API. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and ma...

7.5CVSS7AI score0.00278EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/04/25 7:31 a.m.117 views

SafeVault

SafeVault - Security and Authentication Capstone Project A pr...

6.5AI score
Exploits0
Fedora
Fedora
added 2026/04/25 1:55 a.m.9 views

[SECURITY] Fedora 44 Update: python-flask-httpauth-4.8.1-1.fc44

FlaskHTTPAuth Basic and Digest HTTP authentication for Flask routes...

8.2CVSS5.6AI score0.00324EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/25 12:0 a.m.11 views

Vanna 安全漏洞

Vanna is a personalized AI SQL proxy from Vanna Corporation. Versions of Vanna 2.0.2 and earlier contained security vulnerabilities, which were caused by improper authorization in the Legacy Flask API component. These vulnerabilities could lead to remote attacks...

7.5CVSS7.2AI score0.00278EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.11 views

PT-2026-35147

A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The affected element is an unknown function of the component Legacy Flask API. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and ma...

7.5CVSS7AI score0.00278EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2026/04/23 12:0 a.m.112 views

📄 Keras 3.13.0 Malicious ML Model Server HDF5 Shape Bomb

This script is a Flask-based web server that distributes .keras machine learning model files, but it is designed in a malicious way for security research/testing scenarios. The main idea is a denial of service via memory exhaustion, where generated Keras models contain artificially declared...

7.5CVSS6.5AI score0.00299EPSS
Exploits3
PyPA
PyPA
added 2026/04/21 6:16 p.m.14 views

PYSEC-2026-125

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev98, the setsessioncookiesecure beforerequest handler in src/pyload/webui/app/init.py reads the X-Forwarded-Proto header from any HTTP request without validating that the request originates from a trusted prox...

4.8CVSS5.8AI score0.00171EPSS
Exploits1References1Affected Software1
GithubExploit
GithubExploit
added 2026/04/18 10:5 a.m.206 views

Exploit for Improper Input Validation in Python

CVE-2023-24329 — Parser Differential Lab Educational use...

7.5CVSS7AI score0.20459EPSS
Exploits3
Fedora
Fedora
added 2026/04/16 12:55 a.m.6 views

[SECURITY] Fedora 43 Update: python-flask-httpauth-4.8.1-1.fc43

FlaskHTTPAuth Basic and Digest HTTP authentication for Flask routes...

8.2CVSS5.8AI score0.00324EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/04/16 12:0 a.m.16 views

Fedora: Security Advisory (FEDORA-2026-04d6f223e0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS5.8AI score0.00324EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.4 views

Fedora 43 : python-flask-httpauth (2026-04d6f223e0)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-04d6f223e0 advisory. Update to version 4.8.1 2454342 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

8.2CVSS5.8AI score0.00324EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/14 4:45 a.m.88 views

Vulnerable-Web-App-Scanner

Vulnerable-Web-App-Scanner Pent...

5.8AI score
Exploits0
OSV
OSV
added 2026/04/13 8:30 a.m.4 views

OPENSUSE-SU-2026:20576-1 Security update for python-Flask-HTTPAuth

This update for python-Flask-HTTPAuth fixes the following issues: Changes in python-Flask-HTTPAuth: - CVE-2026-34531: Do not accept empty tokens bsc1261355...

8.2CVSS5.7AI score0.00324EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/12 7:27 p.m.106 views

web-pentest-tool

🛡️ AutoPenTest — Automated Penetration Testing Tool ⚠️ DI...

5.8AI score
Exploits0
Rows per page
Query Builder