VYPR

PyPI package

flask-reuploaded

pkg:pypi/flask-reuploaded

Vulnerabilities (1)

  • CVE-2026-27641Feb 25, 2026
    affected < 1.5.0fixed 1.5.0

    Flask-Reuploaded provides file uploads for Flask. A critical path traversal and extension bypass vulnerability in versions prior to 1.5.0 allows remote attackers to achieve arbitrary file write and remote code execution through Server-Side Template Injection (SSTI). Flask-Reuploa