CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2026/01/09 10:48 a.m.•3 views

CVE-2022-31531

The dainst/cilantro repository through 0.0.4 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS7AI score0.00432EPSS

Exploits1References1

ATTACKERKB•added 2022/07/11 1:15 a.m.•1 views

CVE-2022-31531

The dainst/cilantro repository through 0.0.4 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.00432EPSS

Exploits1References2

OSV•added 2022/07/11 1:15 a.m.•9 views

CVE-2022-31531

The dainst/cilantro repository through 0.0.4 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS6.9AI score

Exploits0References1

CVE•added 2022/07/11 12:56 a.m.•59 views

CVE-2022-31531

The CVE-2022-31531 entry concerns the dainst/cilantro repository (GitHub) up to version 0.0.4. Root cause is unsafe use of Flask’s send_file, enabling absolute path traversal. Impacts are noted as partial confidentiality and partial availability (per CVSS), with no explicit exploitation details o...

9.3CVSS9.3AI score0.00432EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/07/11 12:0 a.m.•2 views

cilantro 路径遍历漏洞

cilantro is an open source task runner from Deutsches Archäologisches Institut in Germany. Designed to manage long running distributed jobs that operate on file system objects . cilantro version 0.0.4 and earlier versions of a security vulnerability , the vulnerability stems from Flask's sendfile...

9.3CVSS8.2AI score0.00432EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by