Описание
Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session cookie, related to session replays.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | |
| hardy | not-affected | |
| karmic | not-affected | |
| lucid | not-affected | |
| maverick | not-affected | |
| upstream | released | 1.1.4,1.2.5 |
Показывать по
10
7.5 High
CVSS2
Связанные уязвимости
nvd
почти 15 лет назад
Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session cookie, related to session replays.
debian
почти 15 лет назад
Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2 ...
7.5 High
CVSS2