← voltar
CVE-2021-46897

CVE-2021-46897

EPSS 0.7%
views.py in Wagtail CRX CodeRed Extensions (formerly CodeRed CMS or coderedcms) before 0.22.3 allows upward protected/..%2f..%2f path traversal when serving protected media.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/coderedcorp/coderedcms/compare/v0.22.2...v0.22.3https://github.com/coderedcorp/coderedcms/issues/448https://github.com/coderedcorp/coderedcms/pull/450