Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
absolute vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2022-31543
The maxtortime/SetupBox repository up to and including 1.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Setupbox Project Setupbox
6.4
CVSSv2
CVE-2022-31544
The meerstein/rbtm repository up to and including 1.5 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Xtomo Robo-tom
6.4
CVSSv2
CVE-2022-31567
The DSABenchmark/DSAB repository up to and including 2.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Data Stream Algorithm Benchmark Project Data Stream Algorithm Benchmark
7.5
CVSSv2
CVE-2020-27730
In versions 3.0.0-3.9.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller Agent does not use absolute paths when calling system utilities.
F5 Nginx Controller
F5 Nginx Controller 1.0.1
Netapp Cloud Backup -
7.2
CVSSv2
CVE-2005-3749
Unspecified "absolute path vulnerabilities" in the diagela command (diagela.sh) in IBM AIX 5.2 and 5.3 have unknown impact and attack vectors.
Ibm Aix 5.3
Ibm Aix 5.2
6.4
CVSSv2
CVE-2022-31507
The ganga-devs/ganga repository prior to 8.5.10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Ganga Project Ganga
6.4
CVSSv2
CVE-2022-31521
The Niyaz-Mohamed/mosaic repository up to and including 1.0.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Mosaic Project Mosaic 1.0.0
6.4
CVSSv2
CVE-2022-31524
The PureStorage-OpenConnect/swagger repository up to and including 1.1.5 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Purestorage Pure Swagger
6.4
CVSSv2
CVE-2022-31530
The csm-aut/csm repository up to and including 3.5 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Csm Server Project Csm Server
6.4
CVSSv2
CVE-2022-31558
The tooxie/shiva-server repository up to and including 0.10.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Shiva-server Project Shiva-server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »