CVE-2022-35920 – Sanic is an opensource python web server/framework. Affected versions of sanic allow acces …

Vuln ID: CVE-2022-35920

Published:  2022-08-01  22:15:10Z

Description: Sanic is an opensource python web server/framework. Affected versions of sanic allow access to lateral directories when using `app.static` if using encoded `%2F` URLs. Parent directory traversal is not impacted. Users are advised to upgrade. There is no known workaround for this issue.

Source: NVD.NIST.GOV