← Back to CVE List
CVE-2022-31503
Published:
2022-07-11T01:15Z
Last Modified:
2024-11-21T07:04Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The orchest/orchest repository before 2022.05.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt