Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| pagure | unfixed | package |
Примечания
https://bugzilla.redhat.com/show_bug.cgi?id=2443259
Связанные уязвимости
CVSS3: 7.7
redhat
14 дней назад
A flaw was found in Pagure's rendering engine for reStructuredText (RST) files. An authenticated user can exploit an unrestricted `.. include::` directive within RST files to read arbitrary internal files from the server hosting Pagure. This information disclosure vulnerability allows unauthorized access to sensitive data on the server.