PyPI package
ganga
pkg:pypi/ganga
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-31507 | Cri | 9.3 | < 8.5.10 | 8.5.10 | Jul 11, 2022 | The ganga-devs/ganga repository before 8.5.10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. |
- affected < 8.5.10fixed 8.5.10
The ganga-devs/ganga repository before 8.5.10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.