CVE-2022-31562

The CVE-2022-31562 entry is linked to the waveyan/internshipsystem repository prior to 2018-05-22, where an unsafe use of Flask’s send_file enables absolute path traversal. Documented details specify that the vulnerability stems from how send_file is called, allowing traversal of the host filesys...