CVE-2022-31510
The CVE-2022-31510 entry concerns the sergeKashkin/Simple-RAT repository (before 2022-05-03) where an unsafe use of Flask send_file enables absolute path traversal. The root cause is improper handling of file paths in the Flask call, leading to potential access to arbitrary files on the server. T...