CVE-2022-31527
The CVE-2022-31527 issue affects the Wildog/flask-file-server project up to 2020-02-20, where unsafe use of Flask's send_file allows absolute path traversal. This can enable an attacker to view arbitrary files or directories on the host. Public sources assign CVSS scores (e.g., 6.4/3.1 9.3), but ...