Vulnerability	Vulnerable Version
H Class Pollution mesop is a Build UIs in Python Affected versions of this package are vulnerable to Class Pollution in the `_recursive_update_dataclass_from_json_obj()` function, which doesn't raise an exception for dunder (`__`) properties. An attacker can cause denial of service by overwriting these elements, leading to server unresponsiveness. If the resulting values of these elements can be controlled in a given runtime, this could facilitate further exploits such as user impersonation and data corruption. How to fix Class Pollution? Upgrade `mesop` to version 0.14.1 or higher.	[,0.14.1)
H Class Pollution mesop is a Build UIs in Python Affected versions of this package are vulnerable to Class Pollution via the `dataclass_utils` component. How to fix Class Pollution? Upgrade `mesop` to version 0.14.1 or higher.	[,0.14.1)
H Path Traversal mesop is a Build UIs in Python Affected versions of this package are vulnerable to Path Traversal due to insufficient input validation in the static file serving functionality. An attacker can access files not intended to be served by manipulating the input to the endpoint. How to fix Path Traversal? Upgrade `mesop` to version 0.12.4 or higher.	[0.9.0,0.12.4)

Go back to all versions of this package