CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-33175

ToUI is a Python package for creating user interfaces (websites and desktop apps) from HTML. ToUI is using Flask-Caching (SimpleCache) to store user variables. Websites that use `Website.user_vars` property. It affects versions 2.0.1 to 2.4.0. This issue has been patched in version 2.4.1.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.6%

CVSS Severity

CVSS v3 Score 9.1

References

https://github.com/mubarakalmehairbi/ToUI/releases/tag/v2.4.1
https://github.com/mubarakalmehairbi/ToUI/security/advisories/GHSA-hh7j-pg39-q563
https://github.com/mubarakalmehairbi/ToUI/releases/tag/v2.4.1
https://github.com/mubarakalmehairbi/ToUI/security/advisories/GHSA-hh7j-pg39-q563

Products affected by CVE-2023-33175

Toui Project » Toui » Version: Any

cpe:2.3:a:toui_project:toui:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-33175

Products

Pricing

Contact Us