Package impact
PyPI / sanic
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-16762 | high | 7.5 | 7.5 | 9y ago | Sanic before 0.5.1 allows reading arbitrary files with directory traversal, as demonstrated by the /static/..%2f substring. | |||
| CVE-2022-35920 | unknown | — | — | 4y ago | sanic vulnerable to Path Traversal when using `app.static` if using encoded `%2F` URLs |