2 matches found
CVE-2020-18704
Unrestricted Upload of File with Dangerous Type in Django-Widgy v0.8.4 allows remote attackers to execute arbitrary code via the 'image' widget in the component 'Change Widgy Page'...
CVE-2020-18704
CVE-2020-18704 affects Django-Widgy v0.8.4 . The issue is an unrestricted upload of a file with a dangerous type via the image widget in the component “Change Widgy Page” , which can allow remote attackers to execute arbitrary code. The provided documents do not include specific exploitation deta...