[Python] CWE-348: Client supplied ip used in security check

## Query

*Link to pull request with your CodeQL query:*

Relevant PR: https://github.com/github/codeql/pull/6214

## CVE ID(s)

*List the CVE ID(s) associated with this vulnerability. GitHub will automatically link CVE IDs to the [GitHub Advisory Database](https://github.com/advisories).*

- CVE-20nn-nnnnn

## Report

If an application trusts an HTTP request header like X-Forwarded-For to accurately specify the remote IP address of the connecting client.

- [X] Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc). *We would love to have you spread the word about the good work you are doing*

## Result(s)

*Provide at least one useful result found by your query, on some revision of a real project.*

- [ip0000h/flask-docker-compose](https://github.com/ip0000h/flask-docker-compose/blob/master/app/users/views.py): [source](https://github.com/ip0000h/flask-docker-compose/blob/master/app/users/views.py#L76) -> [sink](https://github.com/ip0000h/flask-docker-compose/blob/master/app/users/views.py#L83)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Python] CWE-348: Client supplied ip used in security check #397

Query

CVE ID(s)

Report

Result(s)

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

[Python] CWE-348: Client supplied ip used in security check #397

Description

Query

CVE ID(s)

Report

Result(s)

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions