diff --git a/vulnerable-app/requirements.txt b/vulnerable-app/requirements.txt
index 2a4d9ce..1f6dee8 100644
--- a/vulnerable-app/requirements.txt
+++ b/vulnerable-app/requirements.txt
@@ -48,7 +48,7 @@ PyYAML==5.3
 # -----------------------------------------------------------------------------
 # requests 2.20.0 has:
 # - CVE-2018-18074 (Session fixation attack)
-requests==2.20.0
+requests==2.32.5
 
 # urllib3 1.24.1 has:
 # - CVE-2019-11324 (Improper Certificate Validation)