fastapi-users@10.1.0 vulnerabilities

Ready-to-use and customizable users management for FastAPI

Direct Vulnerabilities

Known vulnerabilities in the fastapi-users package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Observable Response Discrepancy

fastapi-users is a Ready-to-use and customizable users management for FastAPI

Affected versions of this package are vulnerable to Observable Response Discrepancy. Exploiting this vulnerability is possible by sending web requests enumerating over values for an HTTP header in an attempt to find Redis keys.

How to fix Observable Response Discrepancy?

Upgrade fastapi-users to version 10.1.3 or higher.

(,10.1.3)