PYSEC-2010-20

2010-10-1920:00:00

Google

osv.dev

EPSS

0.003

Percentile

69.1%

JSON

Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.2.0 allow remote authenticated users to access arbitrary files and directories via a … (dot dot) in a (1) LIST, (2) STOR, or (3) RETR command.

References

code.google.com/p/pyftpdlib/issues/detail?id=9

code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY

code.google.com/p/pyftpdlib/source/detail?r=16

code.google.com/p/pyftpdlib/source/diff?spec=svn16&r=16&format=side&path=/trunk/pyftpdlib/FTPServer.py

EPSS

0.003

Percentile

69.1%

JSON

Related for OSV:PYSEC-2010-20