Changepop-back Project - Changepop-back CVE - CVE Search - CVE Details

Filtered by vendor Changepop-back Project Subscribe

Filtered by product Changepop-back

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-31586	1 Changepop-back Project	1 Changepop-back	2022-07-15	6.4 MEDIUM	9.3 CRITICAL
The unizar-30226-2019-06/ChangePop-Back repository through 2019-06-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

Vulnerabilities (CVE)