GHSA-7r87-cj48-wj45

Source
https://github.com/advisories/GHSA-7r87-cj48-wj45
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/04/GHSA-7r87-cj48-wj45/GHSA-7r87-cj48-wj45.json
Aliases
Published
2022-04-26T21:19:52Z
Modified
2023-11-08T04:08:39.356991Z
Details

Impact

flask-session-captcha is a package which allows users to extend Flask by adding an image based captcha stored in a server side session.

The captcha.validate() function would return None if passed no value (e.g. by submitting a request with an empty form).

If implementing users were checking the return value to be False, the captcha verification check could be bypassed.

Sample vulnerable code:

if captcha.validate() == False:
    ... # abort
else:
   ... # do stuff

Patches

A new version (1.2.1) is available that fixes the issue.

Workarounds

Users can workaround the issue by not explicitly checking that the value is False.

Checking the return value less explicitly should still work.

if not captcha.validate():
    ... # abort
else:
   ... # do stuff
if captcha.validate():
    ... # do stuff
else:
   ... # abort

References

https://github.com/Tethik/flask-session-captcha/pull/27

For more information

If you have any questions or comments about this advisory: * Open an issue in the github repo

References

Affected packages

PyPI / flask-session-captcha

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
1.2.1

Affected versions

1.*

1.0.0
1.0.1
1.0.2
1.0.3
1.1.0
1.2.0

Ecosystem specific

{
    "affected_functions": [
        "flask_session_captcha.FlaskSessionCaptcha.validate"
    ]
}