AZL-73526 CVE-2025-69226 affecting package python-aiohttp 3.6.2-3

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below enable an attacker to ascertain the existence of absolute path components through the path normalization logic for static files meant to prevent path traversal. If an application uses...

EUVD-2002-0519

Malware in sbrugna...

EUVD-2020-7777

Malware in sbrugna...

CVE-2023-50955

IBM InfoSphere Information Server 11.7 could allow an authenticated privileged user to obtain the absolute path of the web server installation which could aid in further attacks against the system. IBM X-Force ID: 275777...

syrabond 路径遍历漏洞

syrabond is an MQTT-based smart home system. A security vulnerability exists in syrabond version 2020-05-25 and earlier, which stems from an incorrect call to Flask's sendfile function that results in absolute path traversal...

Python-Recipe-Database 路径遍历漏洞

Python-Recipe-Database is a recipe storage and retrieval system using Python and Mongo. A path traversal vulnerability exists in Python-Recipe-Database version 2021-03-31 and earlier, which stems from an incorrect call to Flask's sendfile function that results in absolute path traversal...