Python Flask-Security - Open Redirect

Python Flask-Security contains an open redirect vulnerability. Existing code validates that the URL specified in the next parameter is either relative or has the same network location as the requesting URL. Certain browsers accept and fill in the blanks of possibly incomplete or malformed URLs. A...

Fedora: Security Advisory (FEDORA-2024-f34963bef8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:2263-2 Security update for python-Flask

This update for python-Flask fixes the following issues: - CVE-2023-30861: Fixed a potential cookie confusion due to incorrect caching bsc1211246...

MGASA-2023-0193 Updated python-flask packages fix security vulnerability

Client 'session' cookie sent to other clients CVE-2023-30861...

SUSE-SU-2023:2263-1 Security update for python-Flask

This update for python-Flask fixes the following issues: - CVE-2023-30861: Fixed a potential cookie confusion due to incorrect caching bsc1211246...

SUSE-SU-2023:1928-1 Security update for python-Flask

This update for python-Flask fixes the following issues: - CVE-2019-1010083: Fixed DoS via crafted encoded JSON data bsc1141968...

Mageia: Security Advisory (MGASA-2023-0105)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2023-0105 Updated python-flask-security packages fix security vulnerability

Open redirect CVE-2021-23385...

openSUSE 15 Security Update : python-Flask-Security (SUSE-SU-2022:3834-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:3834-1 advisory. - This affects all versions of package Flask-Security. When using the getpostlogoutredirect and getpostloginredirect functions, it is possible to bypass URL...

SUSE: Security Advisory (SUSE-SU-2022:3867-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:3867-1 Security update for python-Flask-Security-Too

This update for python-Flask-Security-Too fixes the following issues: - CVE-2021-23385: Fixed open redirect bsc1202105...

SUSE-SU-2022:3834-1 Security update for python-Flask-Security

This update for python-Flask-Security fixes the following issues: - CVE-2021-23385: Fixed open redirect bsc1202105...

SUSE SLED15 / SLES15 Security Update : python-Flask-Security-Too (SUSE-SU-2022:3093-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3093-1 advisory. - The Python Flask-Security-Too package is used for adding security features to your Flask application. It is an is a...

openSUSE: Security Advisory for python-Flask-Security-Too (SUSE-SU-2022:3093-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE: Security Advisory (SUSE-SU-2022:3093-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:3093-1 Security update for python-Flask-Security-Too

This update for python-Flask-Security-Too fixes the following issues: - CVE-2021-21241: Fixed an issue where GET requests lacking CSRF protection to certain endpoints could return the user's authentication token bsc1181058...

OPENSUSE-SU-2019:1112-1 Security update for python-Flask

This update for python-Flask to version 0.12.4 fixes the following issues: Security issue fixed: - CVE-2018-1000656: Fixed an improper input validation vulnerability in flask that can result in Large amount of memory usage possibly leading to denial of service. bsc1106279 This update was imported...