Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In July 2022
CVE-2022-31557
The seveas/golem repository through 2016-05-17 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31558
The tooxie/shiva-server repository through 0.10.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31559
The tsileo/flask-yeoman repository through 2013-09-13 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31560
The uncleYiba/photo_tag repository through 2020-08-31 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31561
The varijkapil13/Sphere_ImageBackend repository through 2019-10-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31562
The waveyan/internshipsystem repository through 2018-05-22 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31563
The whmacmac/vprj repository through 2022-04-06 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31564
The woduq1414/munhak-moa repository before 2022-05-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31565
The yogson/syrabond repository through 2020-05-25 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31566
The DSAB-local/DSAB repository through 2019-02-18 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
8.6
EPSS Score
0.004
Published
2022-07-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved