Home

Description

flaskBlog is a blog app built with Flask. In 2.8.0 and earlier, when deleting a comment, there's no validation of the ownership of the comment. Every user can delete an arbitrary comment of another user on every post, by simply intercepting the delete request and changing the commentID. The code that causes the problem is in routes/post.py.

PUBLISHED Reserved 2025-08-14 | Published 2025-08-19 | Updated 2025-08-19 | Assigner GitHub_M




MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-639: Authorization Bypass Through User-Controlled Key

Product status

<= 2.8.0
affected

References

github.com/...skBlog/security/advisories/GHSA-6hp9-jv2f-88wr

cve.org (CVE-2025-55737)

nvd.nist.gov (CVE-2025-55737)

Download JSON