CVE-2015-0846

Опубликовано: 24 апр. 2015

Источник: debian

EPSS Низкий

Описание

django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXT_FILTER_SETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
django-markupfield	fixed	1.3.2-1		package

Примечания

https://github.com/jamesturk/django-markupfield/commit/b45734ea1d206abc1ed2a90bdc779708066d49f3

EPSS

Процентиль: 48%

0.0025

Низкий

Связанные уязвимости

CVE-2015-0846

ubuntu

почти 11 лет назад

django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXT_FILTER_SETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors.

CVE-2015-0846

nvd

почти 11 лет назад

django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXT_FILTER_SETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors.

GHSA-wxmr-7xjv-8xqw

CVSS3: 7.5

github

больше 3 лет назад

django-markupfield Arbitrary File Read

EPSS

Процентиль: 48%

0.0025

Низкий