Описание
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| djblets | removed | package | ||
| python-django-djblets | removed | package | ||
| python-django-djblets | no-dsa | squeeze | package |
Примечания
Fix: https://github.com/djblets/djblets/commit/36cd15763742652ca990f913b44e91c69c707269
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 6 лет назад
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests.
CVSS3: 9.8
nvd
больше 6 лет назад
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests.
CVSS3: 9.8
github
почти 4 года назад
ReviewBoard and Djblets library are vulnerable to code execution