Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
•added 2022/07/11 1:15 a.m.•1 views

CVE-2022-31565

The yogson/syrabond repository through 2020-05-25 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.01041EPSS
Exploits0References2
NVD
NVD
•added 2022/07/11 1:15 a.m.•13 views

CVE-2022-31565

The yogson/syrabond repository through 2020-05-25 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS0.01041EPSS
Exploits0References1
OSV
OSV
•added 2022/07/11 1:15 a.m.•3 views

CVE-2022-31565

The yogson/syrabond repository through 2020-05-25 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score0.01041EPSS
Exploits0References1
Prion
Prion
•added 2022/07/11 1:15 a.m.•14 views

Path traversal

The yogson/syrabond repository through 2020-05-25 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

6.4CVSS9.3AI score0.01041EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
•added 2022/07/11 1:0 a.m.•14 views

CVE-2022-31565

The yogson/syrabond repository through 2020-05-25 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.6AI score0.01041EPSS
Exploits0References1
CVE
CVE
•added 2022/07/11 1:0 a.m.•58 views

CVE-2022-31565

CVE-2022-31565 concerns absolute path traversal in the yogson/syrabond repository (up to 2020-05-25) caused by unsafe use of Flask’s send_file. Red Hat, NVD and CVE records corroborate the same issue across multiple feeds. The vulnerability stems from how send_file is invoked, enabling an attacke...

9.3CVSS9.2AI score0.01041EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder