CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2026/01/09 10:47 a.m.•6 views

CVE-2022-31506

The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS6.9AI score0.0045EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-6444

Malicious code in bioql PyPI...

9.3CVSS9.1AI score0.0045EPSS

Exploits1References5

Veracode•added 2022/07/13 8:20 a.m.•27 views

Path Traversal

opendiamond is vulnerable to path traversal. The vulnerability exists due to a lack of sanitization of the Flask sendfile function allowing an attacker to traverse through the directory via the objpath...

9.3CVSS8.6AI score0.0045EPSS

Exploits1References4Affected Software1

OSV•added 2022/07/12 12:0 a.m.•23 views

GHSA-X2PC-FQRW-HC7F SatyaLab opendiamond 10.1.1 vulnerable to path traversal because Flask send_file function used unsafely

The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely. A patch is available on the master branch of the repository...

9.3CVSS9.4AI score0.0045EPSS

Exploits1References5

Github Security Blog•added 2022/07/12 12:0 a.m.•21 views

SatyaLab opendiamond 10.1.1 vulnerable to path traversal because Flask send_file function used unsafely

9.3CVSS8.9AI score0.0045EPSS

Exploits1References5Affected Software1

NVD•added 2022/07/11 1:15 a.m.•8 views

CVE-2022-31506

The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS0.0045EPSS

Exploits1References2

ATTACKERKB•added 2022/07/11 1:15 a.m.•2 views

CVE-2022-31506

The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.0045EPSS

Exploits1References3

OSV•added 2022/07/11 1:15 a.m.•10 views

CVE-2022-31506

The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS6.9AI score

Exploits0References2

Prion•added 2022/07/11 1:15 a.m.•8 views

Path traversal

The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

6.4CVSS9.3AI score0.0045EPSS

Exploits1References2Affected Software1

CVE•added 2022/07/11 12:54 a.m.•82 views

CVE-2022-31506

The CVE-2022-31506 entry concerns the cmusatyalab/opendiamond repository up to version 10.1.1, where an unsafe use of Flask's send_file enables absolute path traversal. The underlying issue is improper sanitization/validation when serving files, allowing an attacker to access arbitrary files on t...

9.3CVSS9.3AI score0.0045EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/07/11 12:54 a.m.•11 views

CVE-2022-31506

The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.6AI score0.0045EPSS

Exploits1References2

CNNVD•added 2022/07/11 12:0 a.m.•1 views

opendiamond 路径遍历漏洞

opendiamond is an interactive search for non-indexed data open-sourced by cmusatyalab in the United States. A path traversal vulnerability exists in opendiamond version 10.1.1, which stems from insecure use of the Flask sendfile function...

9.3CVSS8.3AI score0.0045EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by