Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:1 a.m.3 views

CVE-2022-31526

The ThundeRatz/ThunderDocs repository through 2020-05-01 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS7AI score0.01118EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/07/11 1:15 a.m.3 views

CVE-2022-31526

The ThundeRatz/ThunderDocs repository through 2020-05-01 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.01118EPSS
Exploits1References2
NVD
NVD
added 2022/07/11 1:15 a.m.8 views

CVE-2022-31526

The ThundeRatz/ThunderDocs repository through 2020-05-01 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS0.01118EPSS
Exploits1References1
OSV
OSV
added 2022/07/11 1:15 a.m.4 views

CVE-2022-31526

The ThundeRatz/ThunderDocs repository through 2020-05-01 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score0.01118EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/07/11 12:55 a.m.17 views

CVE-2022-31526

The ThundeRatz/ThunderDocs repository through 2020-05-01 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.6AI score0.01118EPSS
Exploits1References1
CVE
CVE
added 2022/07/11 12:55 a.m.46 views

CVE-2022-31526

The CVE-2022-31526 entry concerns the ThundeRatz/ThunderDocs repository up to 2020-05-01, where an unsafe use of Flask send_file enables absolute path traversal. The vulnerability arises from improper handling of file paths, allowing a potential attacker to access files outside the intended direc...

9.3CVSS9.3AI score0.01118EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder