Vulnerabilities (CVE)

Filtered by vendor Sphere Imagebackend Project Subscribe
Filtered by product Sphere Imagebackend
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-31561 1 Sphere Imagebackend Project 1 Sphere Imagebackend 2024-02-28 6.4 MEDIUM 9.3 CRITICAL
The varijkapil13/Sphere_ImageBackend repository through 2019-10-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.