CVE-2022-31586 – Directory Traversal

The unizar-30226-2019-06/ChangePop-Back repository through 2019-06-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. (CVSS:6.4) (Last Update:2022-07-15)Latest security vulnerabilities (Directory Traversal) (CVSS score >= 4) 

​   

More To Explore

ZERO Days Security

Pwn2Own Returns to Miami Beach for 2023

¡Bienvenidos de nuevo a Miami! Even as we make our final preparations for our consumer-focused contest in Toronto, we’re already looking ahead to warmer climes

Do You Want To Secure Your Business?

drop us a line and keep in touch

Cyber Security Automation
Generated by Feedzy