OESA-2025-1981 python-Flask-Cors security update

A Flask extension for handling Cross Origin Resource Sharing CORS, making cross-origin AJAX possible. Security Fixes: corydolphin/flask-cors version 4.0.1 contains an improper regex path matching vulnerability. The plugin prioritizes longer regex patterns over more specific ones when matching...

aact-openhands (>=0.0.4 <=0.0.5), aberoth-ephemeris (>=1.0.0 <=1.0.2) +213 more potentially affected by CVE-2024-6844 via flask-cors (>=3.0.9 <=5.0.1)

flask-cors PYPI version =3.0.9, =0.0.4, =1.0.0, =1.8.8, =1.1.4, =0.0.1, =0.1.0, =0.1.1, =0.1.0, =1.1.0, =0.0.1, =0.0.18, =1.0.4, =1.0.0, =0.1.0, =0.1.2, =0.1.3 and more Source cves: CVE-2024-6844 Source advisory: SNYK:PYTHON-FLASKCORS-9668952...