Corydolphin Flask-cors — known CVE vulnerabilities
Every CVE whose affected-product data names Corydolphin Flask-cors, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-6221 — CVSS 7.5 (high): A vulnerability in corydolphin/flask-cors version 4.0.1 allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by…
CVE-2024-1681 — CVSS 5.3 (medium): corydolphin/flask-cors is vulnerable to log injection when the log level is set to debug. An attacker can inject fake log entries into the…