CVE-2024-45314 | dpgaspar Flask-AppBuilder up to 4.5.0 /login web browser cache containing sensitive information (GHSA-fw5r-6m3x-rh7p)

Posted by Angelo Barbosa | Sep 4, 2024 | CVE

A vulnerability was found in dpgaspar Flask-AppBuilder up to 4.5.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /login. The manipulation leads to use of web browser cache containing sensitive information.

This vulnerability is handled as CVE-2024-45314. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45314 | dpgaspar Flask-AppBuilder up to 4.5.0 /login web browser cache containing sensitive information (GHSA-fw5r-6m3x-rh7p)

Related Posts

CVE-2024-32477 | denoland Deno up to 1.42.1 libc::tcflush race condition (GHSA-95cj-3hr2-7j5j)

CVE-2024-34144 | Script Security Plugin up to 1335.vf07d9ce377a_e on Jenkins sandbox

CVE-2024-35171 | Academy LMS Plugin up to 1.9.25 on WordPress information disclosure

CVE-2024-6427 | MESbook 20221021.03 message cross site scripting