VYPR
Vendor

Miguelgrinberg

Products
4
CVEs
3
Across products
3
Status
Private

Products

4

Recent CVEs

3
  • CVE-2026-34531MedApr 1, 2026
    risk 0.35cvss 6.5epss 0.00

    Flask-HTTPAuth provides Basic, Digest and Token HTTP authentication for Flask routes. Prior to version 4.8.1, in a situation where the client makes a request to a token protected resource without passing a token, or passing an empty token, Flask-HTTPAuth would invoke the…

  • CVE-2025-61765MedOct 6, 2025
    risk 0.35cvss 6.4epss 0.00

    python-socketio is a Python implementation of the Socket.IO realtime client and server. A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code through malicious pickle deserialization in multi-server…

  • CVE-2026-42874LowMay 11, 2026
    risk 0.17cvss 3.7epss 0.00

    Microdot is a minimalistic Python web framework. Prior to 2.6.1, the Response.set_cookie() method does not sanitize its string arguments, and in particular will not detect the presence of the \r\n sequence in them. This can be a potential source of header injection attacks. For…