26 matches found
EUVD-2015-0004
Malware in sbrugna...
Debian: Security Advisory (DLA-206-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
django-markupfield Arbitrary File Read
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
django-kb (>=0.1.0 <=0.2.0) potentially affected by CVE-2015-0846 via django-markupfield (=1.2.1)
django-markupfield PYPI version =1.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on django-markupfield and may be impacted: - django-kb =0.1.0, =0.2.0 Source cves: CVE-2015-0846 Source advisory: OSV:GHSA-WXMR-7XJV-8XQW...
GHSA-WXMR-7XJV-8XQW django-markupfield Arbitrary File Read
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
[SECURITY] [DSA 3230-1] django-markupfield security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3230-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini April 20, 2015 http://www.debian.org/security/faq -...
django-markupfield Arbitrary File Read Vulnerability
Django is the Python programming language driven by an open source model-view-controller style Web application framework. Versions prior to django-markupfield 1.3.2 use the default docutils RESTRUCTUREDTEXTFILTERSETTINGS setting, which allows remote attackers to exploit vulnerabilities to include...
DEBIAN-CVE-2015-0846
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
CVE-2015-0846
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
CVE-2015-0846
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
Default credentials
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
PYSEC-2015-12
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
CVE-2015-0846
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
PYSEC-2015-12
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
django-kb (>=0.1.0 <=0.2.0) potentially affected by CVE-2015-0846 via django-markupfield (=1.2.1)
django-markupfield PYPI version =1.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on django-markupfield and may be impacted: - django-kb =0.1.0, =0.2.0 Source cves: CVE-2015-0846 Source advisory: OSV:PYSEC-2015-12...
CVE-2015-0846
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
CVE-2015-0846
django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXTFILTERSETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors...
CVE-2015-0846
The CVE affects django-markupfield prior to 1.3.2. The vulnerability stems from using the default docutils RESTRUCTUREDTEXT_FILTER_SETTINGS, allowing a remote attacker to include and read arbitrary files via unspecified vectors. Impact is read access to arbitrary files on the server. A fix is ava...
Debian DSA-3230-1 : django-markupfield - security update
James P. Turk discovered that the ReST renderer in django-markupfield, a custom Django field for easy use of markup in text fields, didn't disable the ..raw directive, allowing remote attackers to include arbitrary files. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...
Debian DLA-206-1 : python-django-markupfield security update
James P. Turk discovered that the ReST renderer in django-markupfield, a custom Django field for easy use of markup in text fields, didn't disable the ..raw directive, allowing remote attackers to include arbitrary files. NOTE: Tenable Network Security has extracted the preceding description bloc...