Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description FastAPI framework, high performance, easy to learn, fast to code, ready for production
Version 0.111.0-1 [extra]


Group Affected Fixed Severity Status Ticket
AVG-2060 0.65.1-1 0.65.2-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2021-32677 AVG-2060 Medium Yes Cross-site request forgery
FastAPI versions lower than 0.65.2 that used cookies for authentication in path operations that received JSON payloads sent by browsers were vulnerable to a...


Date Advisory Group Severity Type
01 Jul 2021 ASA-202107-6 AVG-2060 Medium cross-site request forgery