Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2022-07-11 CVE-2022-31538 Path Traversal vulnerability in Mp-M08-Interface Project Mp-M08-Interface
The joaopedro-fg/mp-m08-interface repository through 2020-12-10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
mp-m08-interface-project CWE-22
6.4
2022-07-11 CVE-2022-31539 Path Traversal vulnerability in Kotekan Project Kotekan
The kotekan/kotekan repository through 2021.11 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
kotekan-project CWE-22
6.4
2022-07-11 CVE-2022-31540 Path Traversal vulnerability in Hin-Eng-Preprocessing Project Hin-Eng-Preprocessing
The kumardeepak/hin-eng-preprocessing repository through 2019-07-16 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
hin-eng-preprocessing-project CWE-22
6.4
2022-07-11 CVE-2022-31541 Path Traversal vulnerability in Barry Voice Assistant Project Barry Voice Assistant
The lyubolp/Barry-Voice-Assistant repository through 2021-01-18 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
barry-voice-assistant-project CWE-22
6.4
2022-07-11 CVE-2022-31542 Path Traversal vulnerability in Mdweb Project Mdweb
The mandoku/mdweb repository through 2015-05-07 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
mdweb-project CWE-22
6.4
2022-07-11 CVE-2022-31543 Path Traversal vulnerability in Setupbox Project Setupbox
The maxtortime/SetupBox repository through 1.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
setupbox-project CWE-22
6.4
2022-07-11 CVE-2022-31544 Path Traversal vulnerability in Xtomo Robo-Tom
The meerstein/rbtm repository through 1.5 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
xtomo CWE-22
6.4
2022-07-11 CVE-2022-31545 Path Traversal vulnerability in Modelconverter Project Modelconverter
The ml-inory/ModelConverter repository through 2021-04-26 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
modelconverter-project CWE-22
6.4
2022-07-11 CVE-2022-31546 Path Traversal vulnerability in Glance Project Glance
The nlpweb/glance repository through 2014-06-27 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
glance-project CWE-22
6.4
2022-07-11 CVE-2022-31547 Path Traversal vulnerability in Sphere Project Sphere
The noamezekiel/sphere repository through 2020-05-31 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
sphere-project CWE-22
6.4