| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-58065 | Flask App Builder has an Authentication Bypass vulnerability when using non AUTH_DB methods | dpgaspar | Flask-AppBuilder | Medium | 6.5 | 2025-09-11 17:55:49 | Deep Dive |
| CVE-2025-32962 | Flask-AppBuilder open redirect vulnerability using HTTP host injection | dpgaspar | Flask-AppBuilder | Medium | 4.3 | 2025-05-16 13:51:56 | Deep Dive |
| CVE-2025-24023 | Observable Response Discrepancy in flask-appbuilder | dpgaspar | Flask-AppBuilder | Low | 3.7 | 2025-03-03 15:25:55 | Deep Dive |
| CVE-2024-45314 | Flask-AppBuilder login form allows browser to cache sensitive fields | dpgaspar | Flask-AppBuilder | Low | 3.6 | 2024-09-04 16:08:41 | Deep Dive |
| CVE-2024-27083 | Flask-AppBuilder's OAuth login page subject to Cross Site Scripting (XSS) | dpgaspar | Flask-AppBuilder | Medium | 4.3 | 2024-02-28 15:34:02 | Deep Dive |
| CVE-2024-25128 | Flask-AppBuilder incorrect authentication when using auth type OpenID | dpgaspar | Flask-AppBuilder | Critical | 9.1 | 2024-02-28 15:30:28 | Deep Dive |
| CVE-2023-34110 | Flask-AppBuilder vulnerable to possible disclosure of sensitive information on user error | dpgaspar | Flask-AppBuilder | Low | 2.7 | 2023-06-22 22:34:40 | Deep Dive |
| CVE-2023-29005 | No Rate Limiting on Login AUTH DB | dpgaspar | Flask-AppBuilder | High | 7.5 | 2023-04-10 20:47:18 | Deep Dive |
| CVE-2022-31177 | Possible to infer sensitive information through query strings in Flask-AppBuilder | dpgaspar | Flask-AppBuilder | Low | 2.7 | 2022-08-01 19:05:11 | Deep Dive |
| CVE-2022-24776 | Open Redirect in Flask-AppBuilder | dpgaspar | Flask-AppBuilder | Medium | 6.1 | 2022-03-24 19:45:14 | Deep Dive |
| CVE-2021-41265 | Improper Authentication in Flask-AppBuilder | dpgaspar | Flask-AppBuilder | High | 8.1 | 2021-12-09 16:40:11 | Deep Dive |
| CVE-2021-32805 | URL Redirection to Untrusted Site ('Open Redirect') in Flask-AppBuilder | dpgaspar | Flask-AppBuilder | High | 7.2 | 2021-09-08 17:45:14 | Deep Dive |
| CVE-2021-29621 | Observable Response Discrepancy in Flask-AppBuilder | dpgaspar | Flask-AppBuilder | Medium | 5.3 | 2021-06-07 19:00:12 | Deep Dive |