CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2022/07/11 1:15 a.m.•2 views

CVE-2022-31534

The echoleegroup/PythonWeb repository through 2018-10-31 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score0.00432EPSS

Exploits1References1

NVD•added 2022/07/11 1:15 a.m.•6 views

CVE-2022-31534

The echoleegroup/PythonWeb repository through 2018-10-31 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS0.00432EPSS

Exploits1References1

ATTACKERKB•added 2022/07/11 1:15 a.m.•2 views

CVE-2022-31534

The echoleegroup/PythonWeb repository through 2018-10-31 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.00432EPSS

Exploits1References2

Prion•added 2022/07/11 1:15 a.m.•11 views

Path traversal

The echoleegroup/PythonWeb repository through 2018-10-31 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

6.4CVSS9.3AI score0.00432EPSS

Exploits1References1Affected Software1

CVE•added 2022/07/11 12:56 a.m.•52 views

CVE-2022-31534

CVE-2022-31534 affects the echoleegroup/PythonWeb repository up to 2018-10-31. The issue is an absolute path traversal caused by unsafe use of Flask’s send_file, enabling an attacker to access files outside the intended directory. The Red Hat/NVD entries substantiate the same description. No expl...

9.3CVSS9.3AI score0.00432EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/07/11 12:0 a.m.•2 views

PythonWeb 路径遍历漏洞

PythonWeb is a repository. A security vulnerability exists in PythonWeb version 2018-10-31 and earlier, which stems from an incorrect call to Flask's sendfile function resulting in absolute path traversal...

9.3CVSS8.3AI score0.00432EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by