Lucene search
K

5 matches found

CNVD
CNVD
added 2022/07/13 12:0 a.m.23 views

caretakerr-api path traversal vulnerability

caretakerr-api is a Flask API endpoint for the Caretakerr application from sanoj tharindu personal developer. caretakerr-api 2021-05-17 and earlier versions are vulnerable to a path traversal vulnerability that stems from Flask's sendfile function failing to properly filter resource or special...

9.3CVSS3.9AI score0.01293EPSS
Exploits1References1
Prion
Prion
added 2022/07/11 1:15 a.m.16 views

Path traversal

The sanojtharindu/caretakerr-api repository through 2021-05-17 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

6.4CVSS9.3AI score0.01293EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/07/11 1:1 a.m.23 views

CVE-2022-31580

The sanojtharindu/caretakerr-api repository through 2021-05-17 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.6AI score0.01293EPSS
Exploits1References1
CVE
CVE
added 2022/07/11 1:1 a.m.461 views

CVE-2022-31580

The CVE-2022-31580 case applies to the caretakerr-api Flask API (Sanoj Tharindu) and is caused by unsafe usage of Flask’s send_file, enabling absolute path traversal. Affected as of 2021-05-17 and earlier builds of caretakerr-api, the vulnerability allows an attacker to access arbitrary files on ...

9.3CVSS9.3AI score0.01293EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/07/11 12:0 a.m.7 views

caretakerr-api 路径遍历漏洞

caretakerr-api is a Flask API endpoint for the Caretakerr application from sanoj tharindu personal developer. caretakerr-api 2021-05-17 and earlier versions are vulnerable to a path traversal vulnerability that stems from Flask's sendfile function failing to properly filter resource or special...

9.3CVSS5.7AI score0.01293EPSS
Exploits1References2
Rows per page
Query Builder