CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2026/01/09 10:46 a.m.•4 views

CVE-2022-31556

The rusyasoft/TrainEnergyServer repository through 2017-08-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS7AI score0.00432EPSS

Exploits1References1

ATTACKERKB•added 2022/07/11 1:15 a.m.•0 views

CVE-2022-31556

The rusyasoft/TrainEnergyServer repository through 2017-08-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.00432EPSS

Exploits1References2

OSV•added 2022/07/11 1:15 a.m.•0 views

CVE-2022-31556

The rusyasoft/TrainEnergyServer repository through 2017-08-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score

Exploits0References1

Prion•added 2022/07/11 1:15 a.m.•6 views

Path traversal

The rusyasoft/TrainEnergyServer repository through 2017-08-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

6.4CVSS9.3AI score0.00432EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/07/11 12:0 a.m.•1 views

TrainEnergyServer 路径遍历漏洞

TrainEnergyServer is a train energy server by an individual developer in Rustam, South Korea. A security vulnerability exists in GitHub's rusyasoft/TrainEnergyServer project version 2017-08-03 and earlier, which stems from an incorrect call to Flask's sendfile function resulting in absolute path...

9.3CVSS8.3AI score0.00432EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by