2 matches found
uWSGI Directory Traversal Vulnerability
uWSGI is a software application designed to develop a complete stack for building managed services. A directory traversal vulnerability exists in uWSGI prior to 2.0.17. The vulnerability arises because uWSGI fails to properly handle DOCUMENTROOT checks during the use of the --php-docroot option,...
DEBIAN-CVE-2018-7490
uWSGI before 2.0.17 mishandles a DOCUMENTROOT check during use of the --php-docroot option, allowing directory traversal...