6 matches found
EUVD-2022-53001
Malicious code in bioql PyPI...
CVE-2022-31545
The ml-inory/ModelConverter repository through 2021-04-26 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31545
The ml-inory/ModelConverter repository through 2021-04-26 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31545
The ml-inory/ModelConverter repository through 2021-04-26 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31545
The CVE-2022-31545 vulnerability affects the ml-inory/ModelConverter repository (up to 2021-04-26). It is caused by unsafe usage of Flask send_file, enabling absolute path traversal. The public description explicitly states this leads to path traversal in that repository.
ModelConverter 路径遍历漏洞
ModelConverter is a repository for ml-inory individual developers. It is used to convert models. A security vulnerability exists in ModelConverter version 2021-04-26 and earlier, which stems from an incorrect call to Flask's sendfile function that results in absolute path traversal...