Search CVE reports


Toggle filters

1 – 2 of 2 results


CVE-2008-0252

Medium priority

Some fixes available 3 of 4

Directory traversal vulnerability in the _get_file_path function in (1) lib/sessions.py in CherryPy 3.0.x up to 3.0.2, (2) filter/sessionfilter.py in CherryPy 2.1, and (3) filter/sessionfilter.py in CherryPy 2.x allows remote...

2 affected packages

cherrypy3, python-cherrypy

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cherrypy3
python-cherrypy
Show less packages

CVE-2006-0847

Unknown priority

Some fixes available 12 of 13

Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 allows remote attackers to read arbitrary files via ".." sequences in unspecified vectors.

2 affected packages

cherrypy3, python-cherrypy

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cherrypy3
python-cherrypy
Show less packages