CVE-2015-5601

EPSS 1.5%

edx-platform before 2015-07-20 allows code execution by privileged users because the course import endpoint mishandles .tar.gz files.

Affected products