Skip to main content
Loading…
    CVE-2025-55734 — flaskBlog is a blog app built with Flask. In 2.8.0 and earlier, the code checks if the userRole is "admin" only when visiting the /admin page, but not when visiting its subroutes. Specifically — CVE Database · The Intelligence Room