ganga@7.0.1 vulnerabilities

Job management tool

Direct Vulnerabilities

Known vulnerabilities in the ganga package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • C
Directory Traversal

ganga is a Job management tool

Affected versions of this package are vulnerable to Directory Traversal due to improper input sanitization passed through the os.path.join call to the send_file function.

How to fix Directory Traversal?

Upgrade ganga to version 8.5.10 or higher.

[,8.5.10)