Flask-appbuilder@* Security Vulnerabilities and Issues — Flask-appbuilder@* CVE List

Lucene search

DpgasparFlask-appbuilder*

3 matches found

CVE•added 2021/09/08 6:15 p.m.•74 views

CVE-2021-32805

Flask-AppBuilder is an application development framework, built on top of Flask. In affected versions if using Flask-AppBuilder OAuth, an attacker can share a carefully crafted URL with a trusted domain for an application built with Flask-AppBuilder, this URL can redirect a user to a malicious site...

7.2CVSS6.2AI score0.00189EPSS

CVE•added 2021/06/07 7:15 p.m.•68 views

CVE-2021-29621

Flask-AppBuilder is a development framework, built on top of Flask. User enumeration in database authentication in Flask-AppBuilder

5.3CVSS5.2AI score0.0029EPSS

CVE•added 2021/12/09 5:15 p.m.•60 views

CVE-2021-41265

Flask-AppBuilder is a development framework built on top of Flask. Verions prior to 3.3.4 contain an improper authentication vulnerability in the REST API. The issue allows for a malicious actor with a carefully crafted request to successfully authenticate and gain access to existing protected REST...

8.8CVSS8.5AI score0.00328EPSS