2 matches found
CVE-2022-31538
The joaopedro-fg/mp-m08-interface repository through 2020-12-10 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31538
CVE-2022-31538 affects the repository joaopedro-fg/mp-m08-interface (up to 2020-12-10 on GitHub). The underlying issue is an absolute path traversal caused by unsafe use of Flaskās send_file function. Multiple connected sources (Red Hat advisory, CVE listings, CNNVD/CVE records) confirm the same ...