Vulnerabilities > Setupbox Project

DATE CVE VULNERABILITY TITLE RISK
2022-07-11 CVE-2022-31543 Path Traversal vulnerability in Setupbox Project Setupbox
The maxtortime/SetupBox repository through 1.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
network
low complexity
setupbox-project CWE-22
6.4
6.4