Critical severity9.3NVD Advisory· Published Jul 11, 2022· Updated Jun 17, 2026
CVE-2022-31572
CVE-2022-31572
Description
The ceee-vip/cockybook repository through 2015-04-16 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Affected products
2- ceee-vip/cockybookdescription
Patches
Vulnerability mechanics
References
1- github.com/github/securitylab/issues/669nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.