Количество 3
Количество 3
CVE-2018-14886
The module-description renderer in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier does not disable RST's local file inclusion, which allows privileged authenticated users to read local files via a crafted module description.
CVE-2018-14886
The module-description renderer in Odoo Community 11.0 and earlier and ...
GHSA-3h3h-vg74-fvqw
The module-description renderer in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier does not disable RST's local file inclusion, which allows privileged authenticated users to read local files via a crafted module description.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-14886 The module-description renderer in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier does not disable RST's local file inclusion, which allows privileged authenticated users to read local files via a crafted module description. | CVSS3: 4.9 | 0% Низкий | больше 6 лет назад |
| CVE-2018-14886 The module-description renderer in Odoo Community 11.0 and earlier and ... | CVSS3: 4.9 | 0% Низкий | больше 6 лет назад |
| GHSA-3h3h-vg74-fvqw The module-description renderer in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier does not disable RST's local file inclusion, which allows privileged authenticated users to read local files via a crafted module description. | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу