pkg:PyPI/flask-cors

10 total CVEsHIGH5MEDIUM5

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2024-6221Flask-CORS allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default
    from 0, < 4.0.2
  • HIGH7.5CVE-2024-6221Flask-CORS allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default
    from 0, < 4.0.2
  • HIGH7.5CVE-2024-6221Flask-CORS allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default
    from 0, <= 4.0.1
  • HIGH7.5CVE-2020-25032python-flask-cors - security update
    from 0, < 3.0.9
  • HIGH7.5CVE-2020-25032python-flask-cors - security update
    from 0, < 3.0.9
  • MEDIUM5.3CVE-2024-6866Flask-CORS vulnerable to Improper Handling of Case Sensitivity
    from 0, < 6.0.0
  • MEDIUM5.3CVE-2024-6844Flask-CORS allows for inconsistent CORS matching
    from 0, < 6.0.0
  • MEDIUM5.3CVE-2024-1681flask-cors vulnerable to log injection when the log level is set to debug
    from 0, < 4.0.1
  • MEDIUM5.3CVE-2024-1681flask-cors vulnerable to log injection when the log level is set to debug
    from 0, <= 4.0.0
  • MEDIUM4.3CVE-2024-6839Flask-CORS improper regex path matching vulnerability
    from 0, < 6.0.0