Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mercredi 7 avril 2021

Django up to 2.2.19/3.0.13/3.1.7 MultiPartParser pathname traversal

A vulnerability was found in Django up to 2.2.19/3.0.13/3.1.7 (Content Management System). It has been classified as critical. This affects an unknown code block of the component MultiPartParser. Upgrading to version 2.2.20, 3.0.14 or 3.1.8 eliminates this vulnerability. The upgrade is hosted for download at docs.djangoproject.com.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 20

x

Événements SSI