Total
6552 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-31520 | 1 Logstash-management-api Project | 1 Logstash-management-api | 2024-08-03 | 9.3 Critical |
The Luxas98/logstash-management-api repository through 2020-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31514 | 1 Fan Platform Project | 1 Fan Platform | 2024-08-03 | 9.3 Critical |
The Caoyongqi912/Fan_Platform repository through 2021-04-20 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31516 | 1 Harveyzyh Python Project | 1 Harveyzyh Python | 2024-08-03 | 9.3 Critical |
The Harveyzyh/Python repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31521 | 1 Mosaic Project | 1 Mosaic | 2024-08-03 | 9.3 Critical |
The Niyaz-Mohamed/mosaic repository through 1.0.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31474 | 1 Ithemes | 1 Backupbuddy | 2024-08-03 | 7.5 High |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in iThemes BackupBuddy allows Path Traversal.This issue affects BackupBuddy: from 8.5.8.0 through 8.7.4.1. | ||||
CVE-2022-31512 | 1 Flask-mvc Project | 1 Flask-mvc | 2024-08-03 | 9.3 Critical |
The Atom02/flask-mvc repository through 2020-09-14 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31523 | 1 Paddlepaddle | 1 Anakin | 2024-08-03 | 9.3 Critical |
The PaddlePaddle/Anakin repository through 0.1.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31508 | 1 Idayrus | 1 E-voting | 2024-08-03 | 9.3 Critical |
The idayrus/evoting repository before 2022-05-08 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31504 | 1 Baiduwenkuspider Flaskweb Project | 1 Baiduwenkuspider Flaskweb | 2024-08-03 | 9.3 Critical |
The ChangeWeDer/BaiduWenkuSpider_flaskWeb repository before 2021-11-29 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31524 | 1 Purestorage | 1 Pure Swagger | 2024-08-03 | 9.3 Critical |
The PureStorage-OpenConnect/swagger repository through 1.1.5 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31511 | 1 Equanimity Project | 1 Equanimity | 2024-08-03 | 9.3 Critical |
The AFDudley/equanimity repository through 2014-04-23 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31518 | 1 Python-recipe-database Project | 1 Python-recipe-database | 2024-08-03 | 9.3 Critical |
The JustAnotherSoftwareDeveloper/Python-Recipe-Database repository through 2021-03-31 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31505 | 1 Mercadoenlineaback Project | 1 Mercadoenlineaback | 2024-08-03 | 9.3 Critical |
The cheo0/MercadoEnLineaBack repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31513 | 1 Krypton Project | 1 Krypton | 2024-08-03 | 9.3 Critical |
The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31522 | 1 Karaokey Project | 1 Karaokey | 2024-08-03 | 9.3 Critical |
The NotVinay/karaokey repository through 2019-12-11 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31509 | 1 Iedadata | 1 Usap-dc Web Submission And Dataset Search | 2024-08-03 | 9.3 Critical |
The iedadata/usap-dc-website repository through 1.0.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31519 | 1 Windmill Project | 1 Windmill | 2024-08-03 | 9.3 Critical |
The Lukasavicus/WindMill repository through 1.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31517 | 1 Mercury Sample Manager Project | 1 Mercury Sample Manager | 2024-08-03 | 9.3 Critical |
The HolgerGraef/MSM repository through 2021-04-20 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31501 | 1 Onyxforum Project | 1 Onyxforum | 2024-08-03 | 9.3 Critical |
The ChaoticOnyx/OnyxForum repository before 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | ||||
CVE-2022-31457 | 1 Rtx Trap Project | 1 Rtx Trap | 2024-08-03 | 7.5 High |
RTX TRAP v1.0 allows attackers to perform a directory traversal via a crafted request sent to the endpoint /data/. |