CVE-2022-31561

The varijkapil13/SphereImageBackend repository through 2019-10-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

Sphere_ImageBackend 路径遍历漏洞

SphereImageBackend is an image processing repository by the individual developer Varij Kapil in Germany. A security vulnerability exists in SphereImageBackend version 2019-10-03 and earlier, which stems from an incorrect call to Flask's sendfile function leading to absolute path traversal...