Flower 1.0.0 has XSS via the name parameter in an @app.task call. Source: NIST CVE-2019-16925
Name (required)
Mail (will not be published) (required)
Website
Leave a Reply