Security Advisory

CVE-2022-35920

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-01 21:35:27

Last updated 2025-04-22 17:45:43

Assigner GitHub_M

State PUBLISHED

Description

Sanic is an opensource python web server/framework. Affected versions of sanic allow access to lateral directories when using `app.static` if using encoded `%2F` URLs. Parent directory traversal is not impacted. Users are advised to upgrade. There is no known workaround for this issue.

← Browse all CVEs View on cve.org ↗