Skip to main content

E Voting

1 CVEs product

Monthly

CVE-2022-31508 CRITICAL POC PATCH Act Now

The idayrus/evoting repository before 2022-05-08 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python Path Traversal E Voting
NVD GitHub
CVSS 3.1
9.3
EPSS
1.4%
EPSS 1% CVSS 9.3
CRITICAL POC PATCH Act Now

The idayrus/evoting repository before 2022-05-08 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python Path Traversal E Voting
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy