CWE-22

CVE-2022-31512

February 23, 2023 by godfreyd94

The Atom02/flask-mvc repository through 2020-09-14 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

CVE-2022-31513

February 23, 2023 by godfreyd94

The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

CVE-2022-31514

February 23, 2023 by godfreyd94

The Caoyongqi912/Fan_Platform repository through 2021-04-20 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

CVE-2022-31515

February 23, 2023 by godfreyd94

The Delor4/CarceresBE repository through 1.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

CVE-2022-31516

February 23, 2023 by godfreyd94

The Harveyzyh/Python repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

CVE-2022-31517

February 23, 2023 by godfreyd94

The HolgerGraef/MSM repository through 2021-04-20 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.