[SECURITY] Fedora 42 Update: python-flask-3.1.2-2.fc42

Flask is called a =E2=80=9Cmicro-framework=E2=80=9D because the idea to keep the core simple but extensible. There is no database abstraction layer, no form validation or anything else where different libraries already exist that can handle that. However Flask knows the concept of extensions that...

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.0 (python-flask) security update

An update for python-flask is now available for Red Hat OpenStack Platform 17.0 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1 (python-flask) security update

An update for python-flask is now available for Red Hat OpenStack Platform 16.1 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (python-flask) security update

An update for python-flask is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Fedora: Security Advisory for python-flask (FEDORA-2023-729a50a7e1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 38 Update: python-flask-2.2.3-1.fc38

Flask is called a =EF=BF=BD=EF=BF=BD=EF=BF=BDmicro-framework=EF=BF=BD=EF=BF =BD=EF=BF=BD because the idea to keep the core simple but extensible. There is no database abstraction layer, no form validation or anything else where different libraries already exist that can handle that. However Flask...

[SECURITY] Fedora 35 Update: python-bottle-0.12.21-2.fc35

Bottle is a fast and simple micro-framework for small web-applications. It offers request dispatching Routes with URL parameter support, Templates, a built-in HTTP Server and adapters for many third party WSGI/HTTP-server and template engines. All in a single file and with no dependencies other...

CVE-2017-16194

Picard (a Node.js micro framework) is vulnerable to a directory traversal flaw: an attacker can access the filesystem by including ../ in the URL. The issue is documented across multiple sources (GHSA/NPM advisory, Veracode, CNVD, OSV, etc.), with no patch available in the advisories and recommen...

[SECURITY] Fedora 26 Update: python-bottle-0.12.13-1.fc26

Bottle is a fast and simple micro-framework for small web-applications. It offers request dispatching Routes with URL parameter support, Template s, a built-in HTTP Server and adapters for many third party WSGI/HTTP-server a nd template engines. All in a single file and with no dependencies other...

Spark 2.5 Arbitrary File Read Vulnerability

Exploit for php platform in category web applications Spark sparkjava.com is a mildly hyped Java micro web framework that also provides functionality to serve static files. Unfortunately, there's no protection against directory traversal attacks and I haven't been able to contact anyone related t...