Filtered by vendor Wormnest Project Subscriptions
Filtered by product Wormnest Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-31502 1 Wormnest Project 1 Wormnest 2024-11-21 9.3 Critical
The operatorequals/wormnest repository through 0.4.7 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.