CVE-2022-31584

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

EUVD-2022-53038

Malicious code in bioql PyPI...

CVE-2022-31584

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

CVE-2022-31584

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

Path traversal

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

CVE-2022-31584

The CVE-2022-31584 entry concerns the stonethree/s3label repository (GitHub) up to 2019-08-14, where absolute path traversal is possible due to unsafe use of Flask’s send_file. Connected sources corroborate it as a path traversal vulnerability in the file-serving logic, with no explicit remediati...

CVE-2022-31584

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

s3label 路径遍历漏洞

S3Label is an open source browser-based tool for quickly labeling images from Stone Three. A path traversal vulnerability exists in s3label on 2019-08-14 and prior versions, which stems from an unsafe use of Flask's sendfile function that allows absolute path traversal...