Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Werkzeug WSGI Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2019-14322 - Vulnerability Database
Werkzeug WSGI

Werkzeug WSGI Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2019-14322

High
Reference: CVE-2019-14322
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-14322
Title: Werkzeug WSGI Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

In Pallets Werkzeug before 0.15.5 SharedDataMiddleware mishandles drive names (such as C:) in Windows pathnames.