Beaker@0.9.1 vulnerabilities

A Session and Caching library with WSGI Middleware

Known vulnerabilities in the Beaker package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
C Deserialization of Untrusted Data Affected versions of this package are vulnerable to Deserialization of Untrusted Data which could lead to arbitrary code execution. How to fix Deserialization of Untrusted Data? There is no fixed version for `Beaker`.	[0,)
M Cross-site Scripting (XSS) Affected versions of `beaker` are vulnerable to Cross-Site Scripting (XSS). How to fix Cross-site Scripting (XSS)? Upgrade `beaker` to version 0.9.4 or higher.	[,0.9.4)
M Information Exposure `beaker` is a Session and Caching library with WSGI Middleware Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors. How to fix Information Exposure? Upgrade `beaker` to version 1.6.4 or higher.	[0.5,1.6.4)