CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/22 10:54 p.m.•4 views

CVE-2022-31579

The ralphjzhang/iasset repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS7AI score0.00432EPSS

Exploits0References1

OSV•added 2022/07/11 1:15 a.m.•2 views

CVE-2022-31579

The ralphjzhang/iasset repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score0.00432EPSS

Exploits0References1

Cvelist•added 2022/07/11 1:1 a.m.•11 views

CVE-2022-31579

The ralphjzhang/iasset repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.6AI score0.00432EPSS

Exploits0References1

CVE•added 2022/07/11 1:1 a.m.•49 views

CVE-2022-31579

The CVE-2022-31579 entry involves the ralphjzhang/iasset repository (through 2022-05-04) with unsafe use of Flask’s send_file, enabling absolute path traversal. Affected component: repository code using Flask send_file; root cause: unsafe file path handling. Potential impact: absolute path traver...

9.3CVSS9.3AI score0.00432EPSS

Exploits0References1Affected Software1

CNNVD•added 2022/07/11 12:0 a.m.•2 views

iasset 路径遍历漏洞

iasset is a repository by Ralph Zhang, a personal developer. iasset has a security vulnerability in version 2022-05-04 and earlier that stems from an unsafe use of Flask's sendfile function that allows absolute path traversal...

9.3CVSS8.2AI score0.00432EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by