CVE-2022-31577

The longmaoteamtf/audioalignerapp repository through 2020-01-10 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

audio_aligner_app 路径遍历漏洞

audioalignerapp is a kaldi-based text alignment Web application open sourced by LongmaoTeamTf. audioalignerapp 2020-01-10 and earlier versions contain a path traversal vulnerability that stems from Flask's sendfile function failing to properly filter resources or file path, which can be exploited...