Munhak Moa
1 CVEs
product
Monthly
The woduq1414/munhak-moa repository before 2022-05-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Python
Path Traversal
Munhak Moa
NVD
GitHub
CVSS 3.1
9.3
EPSS
1.3%
EPSS 1%
CVSS 9.3
CRITICAL
PATCH
Act Now
The woduq1414/munhak-moa repository before 2022-05-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Python
Path Traversal
Munhak Moa
NVD
GitHub