Lucene search

K
osvGoogleOSV:CVE-2021-45452
HistoryJan 05, 2022 - 12:15 a.m.

CVE-2021-45452

2022-01-0500:15:07
Google
osv.dev
18
cve-2021-45452
directory traversal
django 2.2
django 3.2
django 4.0
file storage

AI Score

6.6

Confidence

Low

EPSS

0.002

Percentile

55.3%

Storage.save in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1 allows directory traversal if crafted filenames are directly passed to it.