Описание
Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 allows remote attackers to read arbitrary files via ".." sequences in unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 3.0.2-1 |
| edgy | DNE | |
| feisty | DNE | |
| gutsy | released | 3.0.2-1 |
| hardy | released | 3.0.2-1 |
| intrepid | released | 3.0.2-1 |
| jaunty | released | 3.0.2-1 |
| karmic | released | 3.0.2-1 |
| upstream | needs-triage |
Показывать по
10
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 2.2.1-3 |
| edgy | released | 2.2.1-3 |
| feisty | released | 2.2.1-3 |
| gutsy | released | 2.2.1-3 |
| hardy | released | 2.2.1-3 |
| intrepid | released | 2.2.1-3 |
| jaunty | released | 2.2.1-3 |
| karmic | released | 2.2.1-3 |
| upstream | needs-triage |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 74%
0.00848
Низкий
5 Medium
CVSS2
Связанные уязвимости
nvd
больше 19 лет назад
Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 allows remote attackers to read arbitrary files via ".." sequences in unspecified vectors.
debian
больше 19 лет назад
Directory traversal vulnerability in the staticfilter component in Che ...
EPSS
Процентиль: 74%
0.00848
Низкий
5 Medium
CVSS2