Description In Pallets Werkzeug before 0.15.5, SharedDataMiddleware mishandles drive names (such as C:) in Windows pathnames. Remediation References CVE-2019-14322 Related Vulnerabilities WordPress Plugin Survey Maker-Best WordPress Survey Cross-Site Scripting (3.1.3) WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Request Forgery (3.6.4) WordPress Plugin Search Meter CSV Injection (2.13.2) WordPress Plugin All Video Gallery SQL Injection (1.2) Django Uncontrolled Resource Consumption Vulnerability (CVE-2021-45115) Severity High Classification CVE-2019-14322 CWE-22 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities