2 matches found
GHSA-8JF4-FCJR-68C2 Upsonic is vulnerable to Path Traversal attack through its os.path.join function
A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerability affects the function os.path.join of the file markdown/server.py. The manipulation of the argument file.filename leads to path traversal. The exploit has been disclosed to the public and may be used...
CVE-2025-6278 Upsonic server.py os.path.join path traversal
A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerability affects the function os.path.join of the file markdown/server.py. The manipulation of the argument file.filename leads to path traversal. The exploit has been disclosed to the public and may be used...