2 matches found
CVE-2022-31511
The AFDudley/equanimity repository through 2014-04-23 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31511
CVE-2022-31511 affects the AFDudley/equanimity repository (up to 2014-04-23). The root cause is unsafe use of Flaskās send_file, enabling absolute path traversal. This could let an attacker access arbitrary files/directories on the file system. The connected documents do not specify a patched ver...