Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In July 2022
CVE-2022-31547
The noamezekiel/sphere repository through 2020-05-31 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.004
Published
2022-07-11
CVE-2022-31548
The nrlakin/homepage repository through 2017-03-06 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.004
Published
2022-07-11
CVE-2022-31549
The olmax99/helm-flask-celery repository before 2022-05-25 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31472
Browse restriction bypass vulnerability in Cabinet of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to obtain the data of Cabinet.
CVSS Score
4.3
EPSS Score
0.002
Published
2022-07-11
CVE-2022-31501
The ChaoticOnyx/OnyxForum repository before 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31502
The operatorequals/wormnest repository through 0.4.7 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.005
Published
2022-07-11
CVE-2022-31503
The orchest/orchest repository before 2022.05.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.006
Published
2022-07-11
CVE-2022-31504
The ChangeWeDer/BaiduWenkuSpider_flaskWeb repository before 2021-11-29 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.004
Published
2022-07-11
CVE-2022-31505
The cheo0/MercadoEnLineaBack repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.004
Published
2022-07-11
CVE-2022-31506
The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
CVSS Score
9.3
EPSS Score
0.004
Published
2022-07-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved