|
|
Subscribe / Log in / New account

python-django: directory traversal

Package(s):python-django CVE #(s):CVE-2011-0698
Created:February 21, 2011 Updated:February 23, 2011
Description: From the Mandriva advisory:

Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session cookie, related to session replays.

Alerts:
Mandriva MDVSA-2011:031 python-django 2011-02-18
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds