Homepage
About Snyk

flaskcode@0.0.8 vulnerabilities

Web based code editor on python flask framework

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the flaskcode package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Path Traversal

flaskcode is a Web based code editor on python flask framework

Affected versions of this package are vulnerable to Path Traversal via a specially crafted GET request to a /resource-data/<file_path>.txt URI. An attacker can read arbitrary files on the server by exploiting the directory traversal vulnerability.

How to fix Path Traversal?

There is no fixed version for flaskcode.

[0,)
  • H
Directory Traversal

flaskcode is a Web based code editor on python flask framework

Affected versions of this package are vulnerable to Directory Traversal via a specially crafted POST request to the /update-resource-data/<file_path> URI. An attacker can write to arbitrary files on the server by exploiting the directory traversal vulnerability.

How to fix Directory Traversal?

There is no fixed version for flaskcode.

[0,)
Go back to all versions of this package