2 matches found
CVE-2022-31564
The woduq1414/munhak-moa repository before 2022-05-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31564
The CVE-2022-31564 entries affect the woduq1414/munhak-moa repository (before 2022-05-03) where unsafe usage of Flaskās send_file enables absolute path traversal. The vulnerability arises from how file paths are processed, potentially allowing access to arbitrary files. Public references confirm ...