VYPR

Microdot

by Miguelgrinberg

pypi: microdot

Source repositories

CVEs (1)

  • CVE-2026-42874LowMay 11, 2026
    risk 0.17cvss 3.7epss 0.00

    Microdot is a minimalistic Python web framework. Prior to 2.6.1, the Response.set_cookie() method does not sanitize its string arguments, and in particular will not detect the presence of the \r\n sequence in them. This can be a potential source of header injection attacks. For…