Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/flask-appbuilder@4.5.3
purl pkg:pypi/flask-appbuilder@4.5.3
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-cezb-crna-wbgc Flask-AppBuilder is an application development framework. Prior to 4.5.3, Flask-AppBuilder allows unauthenticated users to enumerate existing usernames by timing the response time from the server when brute forcing requests to login. This vulnerability is fixed in 4.5.3. CVE-2025-24023
GHSA-p8q5-cvwx-wvwp
PYSEC-2025-15

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-31T19:20:50.670057+00:00 GitLab Importer Fixing VCID-cezb-crna-wbgc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Flask-AppBuilder/CVE-2025-24023.yml 38.6.0
2026-05-31T11:02:20.634340+00:00 GithubOSV Importer Fixing VCID-cezb-crna-wbgc https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-p8q5-cvwx-wvwp/GHSA-p8q5-cvwx-wvwp.json 38.6.0
2026-05-31T09:46:51.171206+00:00 PyPI Importer Fixing VCID-cezb-crna-wbgc https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.6.0
2026-05-30T20:36:05.896438+00:00 Pypa Importer Fixing VCID-cezb-crna-wbgc https://github.com/pypa/advisory-database/blob/main/vulns/flask-appbuilder/PYSEC-2025-15.yaml 38.6.0