Home/Product/dpgaspar flask appbuilder
Product

dpgaspar flask appbuilder

14 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-58065
< 4.8.1
Flask-AppBuilder is an application development framework. Prior to version 4.8.1, when Flask-AppBuilder is configured to use OAuth
6.5MEDIUM
 CVE-2025-32962
< 4.6.2
Flask-AppBuilder is an application development framework built on top of Flask. Versions prior to 4.6.2 would allow for a maliciou
4.3MEDIUM
 CVE-2025-24023
< 4.5.3
Flask-AppBuilder is an application development framework. Prior to 4.5.3, Flask-AppBuilder allows unauthenticated users to enumera
3.7LOW
 CVE-2024-45314
< 4.5.1
Flask-AppBuilder is an application development framework. Prior to version 4.5.1, the auth DB login form default cache directives
3.6LOW
 CVE-2024-27083
>= 4.1.4 and < 4.2.1
Flask-AppBuilder is an application development framework, built on top of Flask. A Cross-Site Scripting (XSS) vulnerability has be
4.3MEDIUM
 CVE-2024-25128
< 4.3.11
Flask-AppBuilder is an application development framework, built on top of Flask. When Flask-AppBuilder is set to AUTH_TYPE AUTH_OI
9.1CRITICAL
 CVE-2023-34110
< 4.3.2
Flask-AppBuilder is an application development framework, built on top of Flask. Prior to version 4.3.2, an authenticated maliciou
2.7LOW
 CVE-2023-29005
< 4.3.0
Flask-AppBuilder versions before 4.3.0 lack rate limiting which can allow an attacker to brute-force user credentials. Version 4.3
7.5HIGH
 CVE-2022-31177
< 4.1.3
Flask-AppBuilder is an application development framework built on top of Flask python framework. In versions prior to 4.1.3 an aut
2.7LOW
 CVE-2022-24776
< 3.4.5
Flask-AppBuilder is an application development framework, built on top of the Flask web framework. Flask-AppBuilder contains an op
6.1MEDIUM
 CVE-2022-21659
< 3.4.2
Flask-AppBuilder is an application development framework, built on top of the Flask web framework. In affected versions there exis
5.3MEDIUM
 CVE-2021-41265
< 3.3.4
Flask-AppBuilder is a development framework built on top of Flask. Verions prior to 3.3.4 contain an improper authentication vulne
8.1HIGH
 CVE-2021-32805
< 3.3.2
Flask-AppBuilder is an application development framework, built on top of Flask. In affected versions if using Flask-AppBuilder OA
7.2HIGH
 CVE-2021-29621
<= 3.2.3
Flask-AppBuilder is a development framework, built on top of Flask. User enumeration in database authentication in Flask-AppBuilde
5.3MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin