12 matches found
CVE-2022-31513
The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
EUVD-2022-52969
Malicious code in bioql PyPI...
CVE-2022-31513
The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31513
The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31513
The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
Path traversal
The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31513
CVE-2022-31513 affects the BolunHan/Krypton project (GitHub) prior to 2021-06-03, where an unsafe use of Flask send_file enables absolute path traversal. The Red Hat and CVE records corroborate the same root cause: unsafely handled file paths allow traversal, potentially impacting confidentiality...
Krypton 路径遍历漏洞
Krypton is a KryptoCurrency data relay service by Bolun Han Personal Developer. A security vulnerability exists in Krypton version 2021-06-03 and earlier, which stems from an incorrect call to Flask's sendfile function that results in absolute path traversal...
Hydrogen Krypton Travel App for Android has logic design flaws
Hydrogen Krypton Travel APP is a comprehensive service platform in the field of new energy vehicles. Hydrogen Krypton Mobility APP for Android has a logical design vulnerability that allows an attacker to log in to any user account by means of a cell phone number and brute force breaking of the...
Hydrogen Krypton Travel App for Android suffers from an override access vulnerability
Hydrogen Krypton Travel APP is a comprehensive service platform in the field of new energy vehicles. The vulnerability exists in "My Wallet" and "My Orders" in the Android version of Hydrogen Krypton Mobility APP, which allows an attacker to view any user's details by using their cell phone numbe...
Matriux Krypton security distribution Released
Matriux Krypton security distribution Released The Matriux is a fully featured security distribution consisting of a bunch of powerful, open source and free tools that can be used for various purposes including, but not limited to, penetration testing, ethical hacking, system and network...
Matriux Krypton security distribution Released
Matriux Krypton security distribution Released The Matriux is a fully featured security distribution consisting of a bunch of powerful, open source and free tools that can be used for various purposes including, but not limited to, penetration testing, ethical hacking, system and network...