CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CVE•added 2026/04/05 3:30 p.m.•7 views

CVE-2026-5577

CVE-2026-5577 affects Song-Li cross_browser (up to commit ca690f0fe6954fd9bcda36d071b68ed8682a786a). The vulnerable component is the details Endpoint in the file flask/uniquemachine_app.py. Manipulating the argument ID can lead to an SQL injection vulnerability. The issue can be triggered remotel...

8.6CVSS6.7AI score0.00376EPSS

Exploits1References4Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-52983

Malicious code in bioql PyPI...

9.3CVSS9.2AI score0.01118EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:47 a.m.•6 views

CVE-2022-31527

The Wildog/flask-file-server repository through 2020-02-20 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS7AI score0.01118EPSS

Exploits1References1

CNVD•added 2022/07/13 12:0 a.m.•26 views

flask-file-server path traversal vulnerability

flask-file-server is a file server with a front-end for browsing, uploading, and streaming files from Wildog Personal Developer. flask-file-server 2020-02-20 and earlier versions are vulnerable to a path traversal vulnerability that stems from a failure of Flask's sendfile function to properly...

9.3CVSS3.6AI score0.01118EPSS

Exploits1References1

OSV•added 2022/07/11 1:15 a.m.•3 views

CVE-2022-31527

The Wildog/flask-file-server repository through 2020-02-20 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS7.3AI score0.01118EPSS

Exploits1References1

ATTACKERKB•added 2022/07/11 1:15 a.m.•3 views

CVE-2022-31527

The Wildog/flask-file-server repository through 2020-02-20 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.01118EPSS

Exploits1References2

NVD•added 2022/07/11 1:15 a.m.•13 views

CVE-2022-31527

The Wildog/flask-file-server repository through 2020-02-20 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS0.01118EPSS

Exploits1References1

ATTACKERKB•added 2022/07/11 1:15 a.m.•1 views

CVE-2022-31502

The operatorequals/wormnest repository through 0.4.7 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.01213EPSS

Exploits1References3

OSV•added 2022/07/11 1:15 a.m.•4 views

CVE-2022-31504

The ChangeWeDer/BaiduWenkuSpiderflaskWeb repository before 2021-11-29 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score0.01213EPSS

Exploits1References2

Cvelist•added 2022/07/11 12:56 a.m.•23 views

CVE-2022-31527

The Wildog/flask-file-server repository through 2020-02-20 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.5AI score0.01118EPSS

Exploits1References1

CVE•added 2022/07/11 12:56 a.m.•72 views

CVE-2022-31527

The CVE-2022-31527 issue affects the Wildog/flask-file-server project up to 2020-02-20, where unsafe use of Flask's send_file allows absolute path traversal. This can enable an attacker to view arbitrary files or directories on the host. Public sources assign CVSS scores (e.g., 6.4/3.1 9.3), but ...

9.3CVSS9.3AI score0.01118EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/07/11 12:0 a.m.•3 views

flask-file-server 路径遍历漏洞

9.3CVSS5.7AI score0.01118EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by