CVE-2022-31587 – Directory Traversal

The yuriyouzhou/KG-fashion-chatbot repository through 2018-05-22 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. (CVSS:6.4) (Last Update:2022-07-15)Latest security vulnerabilities (Directory Traversal) (CVSS score >= 4) 

​   

More To Explore

ZERO Days Security

Pwn2Own Returns to Miami Beach for 2023

¡Bienvenidos de nuevo a Miami! Even as we make our final preparations for our consumer-focused contest in Toronto, we’re already looking ahead to warmer climes

Do You Want To Secure Your Business?

drop us a line and keep in touch

Cyber Security Automation
Generated by Feedzy