Описание
The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 exposes controller methods even when an @expose decoration is not used, which has unspecified impact and attack vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 2.0.3-2 |
| hardy | DNE | |
| karmic | not-affected | 2.0.3-1 |
| lucid | not-affected | 2.0.3-1 |
| maverick | not-affected | 2.0.3-2 |
| upstream | released | 2.0.2 |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 53%
0.00296
Низкий
7.5 High
CVSS2
Связанные уязвимости
nvd
больше 15 лет назад
The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 exposes controller methods even when an @expose decoration is not used, which has unspecified impact and attack vectors.
debian
больше 15 лет назад
The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 expos ...
github
почти 4 года назад
The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 exposes controller methods even when an @expose decoration is not used, which has unspecified impact and attack vectors.
EPSS
Процентиль: 53%
0.00296
Низкий
7.5 High
CVSS2